Fake Email and Deepfakes

Posted Posted in Phishing

SPF, DKIM, and DMARC: Essential Explanations Everyone wants a magic bullet to mitigate the risk of email spoofing, as well as advice from security professionals on how to configure systems to prevent their domains being used as the source of fake emails. Security professionals know you can never remove all risk,  but you can reduce […]

PCI DSS 4.0 Release Date: Late 2020

Posted Posted in PCI DSS Compliance

Six specific areas that may change with the credit card data security standards. The areas will focus on security, customized implementation, authentication, encryption, monitoring, and critical control testing methods. PCI DSS 4.0 release date is projected for November 2020 or moved back into 2021. The standards from version 3 have remained fundamentally unchanged over 10 […]

Office 365 How Malicious actors are using your account to scam others

Posted Posted in Cloud

The problem is certainly getting worse and some security awareness training can help, but individuals feel safe within Office 365. But Microsoft doesn’t protect everything. They operate under a model of “shared responsibility” – this means they’re responsible for securing some things, and the customer is responsible for securing some things. Office 365 is a […]