Your Password Policy Is Probably Outdated. Here’s What NIST Recommends in 2026.
The Short Version The National Institute of Standards and Technology (NIST) updated their digital identity guidelines in 2024, and the recommendations have shifted significantly from what most organizations currently enforce. Mandatory password expiration is out. Length requirements are more important than complexity rules. Password managers are officially recommended. And the focus has moved from making […]
Is Your Microsoft 365 Tenant Actually Secure? The 20 Settings Most Businesses Get Wrong
The Short Version Microsoft 365 ships with security settings tuned for usability, not protection. Most tenants go live with default configurations that leave significant gaps: no multi-factor authentication enforcement, legacy authentication protocols still active, admin accounts without dedicated privileged access, and Defender features switched off. This guide covers the 20 settings that matter most and […]
SPF, DKIM, and DMARC: What They Are and Why Your Business Email Domain Might Be Failing
The Short Version If your business sends email from its own domain — and every business does — you need three DNS records configured correctly: SPF, DKIM, and DMARC. Without them, anyone on the internet can send email that appears to come from your domain. Your customers can receive convincing fraud emails that show your […]
How to Tell If a Link Is Safe Before You Click: A Practical Guide for Small Businesses
The Short Version Before you click any link you didn’t explicitly request — whether it arrived in an email, a text message, a LinkedIn DM, or a Slack notification — you should verify it. Phishing attacks are responsible for more than 90% of successful data breaches, and the majority of them begin with a single […]
Cybersecurity Risk Alert
There is currently a heightened risk of cyber-attacks from hackers affiliated with the Iranian government. The Iranian government has vowed to retaliate against the United States for the death of Qassem Soleimani. Given Iranian capabilities and history, U.S. entities should prepare for the possibility of cyber-attacks. It is particularly concerning that Iran has a history […]
The Cloud, is it Safe?
With the growth of technology came the need to store data on a larger scale and have access to it from anywhere you are. Thus the cloud was created. With the creation of the cloud and storing data in cyberspace comes the question of is my data safe and secure? Can anyone access it? Cyber […]
October is Cyber Security Awareness: Week 1: Make Your Home and Office a Haven for Online Safety
About Cyber Security Awareness Month National Cyber Security Awareness Month (NCSAM) – observed every October – was created as a collaborative effort between government and industry to ensure every American has the resources they need to stay safer and more secure online. Since its inception under leadership from the U.S. Department of Homeland Security and […]