Blog Library
What You Should Do About the LastPass Breach
Welcome to 2023! What with the holidays (you do remember them, right?) and the end-of-year distractions (hello, bomb...
Top Phishing Trends in 2022
Our partners at cybersecurity firm INKY just came out with their “Email Security Annual Report” for 2022-2023, chock...
Try These 2023 New Year’s Resolutions
I am not a fan of New Year's resolutions. My reasoning is part philosophical, part curmudgeonly. That said, I would...
Some Things to be Grateful for in 2022
2022 has been a weird year. We have returned to some elements of our pre-pandemic lives (such as in-person...
How to Record and Share a Video Clip in Teams Chat
Let’s say you are in the middle of a chat with another person – or group – in Teams, and there is something that you...
What I Learned Working with a Nonprofit
I spend a lot of my time working with foundations. These foundations make grants to local nonprofits, providing the...
If Christmas Movies Were About IT
Alright, time for some fun. We are not at the end of the year, but (to paraphrase a politician) we can see it from...
Clone Phishing: A Scary New Tactic
Oh boy. These guys just don’t stop; they’re coming up with new tricks to steal our data, left, right and center. The...
The Online Holiday Scams You Need to Look Out For
Yes, my friends, it’s that time of year again. Time to start making our lists and checking them twice. Time to start...
TAG Conference Hot Takes
Talk about lightning round! I am here at the TAG Conference, getting on the bus shortly to go to the wrap-up event....
Match the Scale of the IT Provider to the Size of Your Nonprofit Budget
I recently wrote about the challenge facing foundations who want to fund IT and cybersecurity work in the nonprofits...
Phishing Business-Related Messages Still Most Successful
Back in April I gave you the results of a quarterly study by KnowBe4 that looks into which phishing subject lines...
Can We Please Stop Making it So Easy for the Hackers?
Ahhh, passwords. The bane of our collective existence. Yes, we know we need them to protect our private information....
If Security Compliance is Auditable, Get a Compliance Tool
I have written before about a security compliance tool we have been using, ComplyUp. (You can read about it here and...
CGNET and ActZero
Ricardo (our CTO) and I met with ActZero (in real life!) today to further develop our partnership. I have written...
Phishing in Your Own Pond: The Importance of Simulated Phish Tests
Phishing simulations are a key part of any comprehensive security awareness training program. By sending out fake...
What Would It Take to Deliver a Scaled-Down IT Roadmap?
We received an RFP this week from a nonprofit looking for an IT assessment and IT roadmap. At CGNET, we do this work...
Here are Some Cybersecurity Awareness Month Resources for You
Yes, Virginia, it is October and that means it is--wait for it--National Cybersecurity Awareness Month! Not just a...
We Are Here for You with Zero Trust Resources
Zero ____. It is one of this week’s New York Times crossword clues. (Don’t tell me the answer. I have not solved the...
Four Factors for Effective Security Awareness Training
Social engineering remains the top way criminals infiltrate an organization’s data, and the problem gets worse every...
Have You Seen These September Teams Features?
Ah, September. People resurrecting Earth, Wind & Fire’s iconic song. Microsoft rolling out a batch of September...
Surveil Can Probably Save You Money
“What if I could save you 25% on your expenses, would that get your attention?” Cough once for each time someone has...
Yes, MFA Can Be Hacked. Now What?
I read a blog post today from our friends and partners at cybersecurity firm KnowBe4 that was a bit unnerving. While...
ComplyUp and NIST 800-171 are Ruining My Life
Yes, I am exaggerating. Call it artistic license. But ComplyUp and NIST 800-171 are beginning to rewire my brain. This...
The Human Firewall: The MOST Important Part of Cybersecurity
Your organization may be guilty of a common misconception, that cybersecurity and risk management are the sole purview...
There’s Something About INKY
I wrote last week about our adoption of INKY and teased about the INKY logo. To spare you the searching, I have...
We Are Stepping Up Our Phish Protection Game
We have been evaluating a service called INKY, to step up our phish protection for customers. Wait. Phish protection....
DEI Helps You Build a More Robust Team
Let me offer another of those confluence-of-events posts for you. I have been thinking about diversity, equity, and...
Cisco Just Got Phished: Don’t Be Next!
Just this past week, according to an article at Forbes.com, Cisco was hacked by a ransomware group who claims to now...
Microsoft Nonprofit Price Increases are Just Around the Corner
If you are a subscriber to one of Microsoft’s nonprofit cloud subscriptions, let me remind you that nonprofit price...