Resources

Happy Spring! As Spring break looms for most of you, I once again need to be a killjoy and remind you of a stark reality. Whenever you and your team are enjoying some downtime and have more limited staffing, the bad guys are working extra shifts trying to break into your and your peer’s networks.

I know of three CIAs: The Central Intelligence Agency (CIA) The Hudson Valley’s Culinary Institute of America (CIA) The Triad of Information Security – Confidentiality, Integrity, and Availability (CIA) The first chapter of every Certified Information Systems Security Professional (CISSP) training is always about this Triad of Information Security.

Please join us on Wednesday, March 8th, as Scott Quimby delivers a special update addressing the current K-12 cybersecurity challenges, NIST Cybersecurity Framework (CSF) alignment as it relates to Ed Law 2-d, and NEW actions to improve your district’s security posture, help you with documentation, and measure your technology teams productivity.

It seems like Cyber Attacks are happening everywhere these days. Whether it’s a national news report of an attack against a company that has your credit card information or local news reporting a school district like yours that’s been hit with a ransomware/data breach, these stories are plentiful.

Everyone knows the adage “No one is perfect”. Unfortunately for anyone with a computer network, the bad actors who want to infiltrate your system are ready to take full advantage of any mistake they can find. The Cybersecurity and Infrastructure Security Agency (CISA) knows this, as they called out CPG 1.E (Mitigate Known Exploited Vulnerabilities) in […]

Join Cisco and CSI for a very special upcoming webinar. We will be joined by several specialists from Cisco (including Cisco Talos) who will discuss the dangers of spyware, deep links, content manipulation, malware, and keyloggers, and how to protect your school district from these threats.

Scott Quimby discusses the following: Reading DMARC reports – In preparation for achieving DMARC Quarantine status, Scott will walk you through reading DMARC reports and look at what they mean and what actions are required based on the data.

My wife works for a multi-billion dollar hospital network you all will know. Every time she signs into their mandated VPN and MFA solution she curses out, “How annoying it is to have to do this each time to do anything!” I was the only “IT guy” in earshot to hear her frustration.

New York State K-12 school districts must follow EdLaw 2-d. We all know that is easier said than done. It is hard work with limited staff and limited resources to properly protect student and staff personally identifiable data while protecting the integrity of the district’s network and making sure there are proper controls to protect […]

Microsoft has tried hard to increase awareness of “pass the hash” attacks. They have been patching, but the threats keep coming. Back in April Microsoft released something quite awesome – their next-generation Local Administrator Password Solution (LAPS). Quite simply LAPS allows you to automatically rotate the password for a designated “local administrator” account on endpoints.