We always have the Paladin Sentinel Monitoring console up during the day.  I am still seeing mass use of the domain administrator account to RDP into servers and lots of daily RDP connections in general. There are legitimate reasons to RDP into servers.

    Please join us for CSI’s Cybersecurity Event, Session Three! We will continue to build the list of actions you can take to better protect your district from the current threat landscape. Speaker: Justin Pennock, Cisco Cybersecurity Sales Specialist Session Description: Go on the offensive and join us for a demo on Cisco Umbrella […]

  In August CISA added “Single Factor Authentication” to its list of practices it considers “exceptionally risky” as it exposes you to an “unnecessary risk from threat actors”. It has been officially added to CISA’s “Bad Practices Catalog”. My experience is that if CISA recommends it, Superintendent’s are much more amenable to implementing the recommendation.

  Controlled Use of Administrative Privileges / DETECT / PROTECT..Change Default Passwords..Ensure the Use of Dedicated Administrative Accounts There is a lot here to unpack. If you haven’t done so already, you should try very hard to break your reliance on the default “Administrator” account.

Last week I talked about the importance of Cloud Backup in our new remote teaching and learning and back-office school environments. This week I am going to talk about secure and reliable communications. The reality is that the number one threat to your network is your users clicking on attachments or web links that lead […]

I constantly harp on denying the bad guys access to your network, and if they are inside already, denying lateral movement.  At the last Tech Talk, I mentioned that I am watching many of the Paladin Sentinel Monitoring sites just RDP into all the servers with the true Domain Admin Administrator ID – just like […]

These have been extraordinary times for the world, our country, our school districts and our families.  We are implementing remote learning plans and remote access plans to keep the district functioning in this time of social distancing, crowd restrictions and mandated closings.

At some point in your life, you probably were locked out of something – your house, your car, your office.  I am sure it was awful trying to figure out how you were going to solve that problem.   However, to add to your stress, we now have all this sensitive data online and on our […]