All Posts
Browse through our complete collection of cybersecurity insights, tips, and company updates from STACK Cybersecurity.
Top 10 Cybersecurity Best Practices to Protect Your Business
Nov 15, 2024
From ransomware to phishing, businesses of all sizes are vulnerable to online threats. This checklist walks through 10 essential cybersecurity best practices to protect sensitive data, avoid expensive breaches, and maintain client trust—especially for regulated industries like healthcare, legal, and manufacturing.... Read More
Growing Danger of Business Email Compromise
Nov 14, 2024
Business Email Compromise (BEC) attacks are meticulously planned to target specific industries, professions, and individuals, maximizing the chances of cybercriminals accessing sensitive information and money.... Read More
2023 Cyber Vulnerabilities Revealed in Global Advisory
Nov 13, 2024
A comprehensive cybersecurity advisory details Common Vulnerabilities and Exposures (CVEs) that were most frequently exploited by cyber actors in 2023. This report highlights an increase in zero-day vulnerabilities, making it easier for attackers to infiltrate high-priority networks.... Read More
Implementing a Data Lifecycle Management Strategy
Nov 11, 2024
Data remains the driving force behind innovation and business growth. However, managing this wealth of information effectively requires a forward-thinking strategy.... Read More
Essential SOC 2 Type II Readiness Checklist
Nov 4, 2024
Prepare your business for a SOC 2 Type 2 audit with this compliance readiness checklist, covering critical areas like access control, data protection, and incident response. Ensure your organization meets the necessary security and compliance requirements to safeguard customer data and build trust.... Read More
SOC 2 vs NIST 800-171: Which Framework Does Your Business Actually Need?
Oct 23, 2024
When it comes to data security frameworks, SOC 2 Type 2 and NIST 800-171 are two widely recognized standards. Although both aim to strengthen data security, they serve different purposes and target distinct audiences.... Read More
Digital Insecurity Draining Business Resources
Oct 17, 2024
The rise of digital insecurity poses a serious threat to individuals, businesses, and critical infrastructure. Proactive investment in cybersecurity is no longer optional... Read More
Manufacturing Cybersecurity Guidance
Oct 16, 2024
Small manufacturers face distinct cybersecurity challenges but can leverage practical strategies to enhance their defenses. Incorporating recommendations from the National Institute of Standards and Technology (NIST) offers small manufacturers a roadmap for protecting their operations effectively.... Read More
How to Maximize SIEM Post Breach
Oct 15, 2024
By using SIEM effectively in the post-breach phase, organizations can reduce the financial and operational impact of a data compromise while taking proactive steps to prevent similar[...]... Read More
Salt Typhoon Reminds Leaders Cybersecurity Crucial
Oct 14, 2024
The rise of threat actors like Salt Typhoon serves as a stark reminder of the evolving nature of cyber threats. No business, regardless of size, is immune.... Read More
SIEM Crucial to Reduce Breach Costs
Oct 14, 2024
With the average data breach now costing about $5 million, businesses of all sizes need to step up their defenses. Security Information and Event Management (SIEM) stands as a vital defense mechanism for any organization serious about protecting itself from data breaches.... Read More
CMMC Final Rule Announced
Oct 11, 2024
The Department of Defense unveiled the final rule for Cybersecurity Maturity Model Certification (CMMC) 2.0, marking a pivotal moment for defense contractors.... Read More
Password Guidance Shifts Toward Simplicity
Oct 11, 2024
The National Institute of Standards and Technology (NIST) has recently updated its password security guidelines, marking a significant departure from traditional practices.... Read More
Risk Assessment Could Have Prevented Marriott Fine
Oct 10, 2024
The Marriott hotel chain cyber breach could have been prevented with a simple cybersecurity risk assessment (CSRA).... Read More
2025 Global Digital Trust Insights
Oct 8, 2024
The 2025 Global Digital Trust Insights report, titled "Bridging the Gaps to Cyber Resilience: The C-suite Playbook," highlights the pivotal role executives play in enhancing cyber resilience.... Read More
Start Your AI Journey, or Get Left Behind
Oct 7, 2024
Download the e-book from Microsoft to learn how AI is transforming how organizations function, innovate, and compete. This is the first in a series of blog posts regarding artificial intelligence.... Read More
How Criminals Attack & SIEM Defends
Oct 6, 2024
Imagine your computer and all the devices you use are like a house. Just like you lock your doors and windows to keep burglars out, we use special tools to protect computers from villains who want to steal information or cause trouble. One of these tools is called MITRE ATT&CK, and another powerful tool we use is SIEM.... Read More
How to Manage Sensitive Info in Manufacturing
Sept 17, 2024
In manufacturing, securing sensitive information is paramount. This encompasses confidential data, intellectual property, trade secrets, and security configurations. Effective protection of this information is crucial to mitigate cyber threats and ensure organizational integrity.... Read More
Advisory on Iran Cyber Actors Enabling Ransomware
Aug 28, 2024
This advisory highlights the activities of cyber actors, identified in the private sector as Pioneer Kitten, UNC757, Parisite, Rubidium, and Lemon Sandstorm, who are targeting and exploiting organizations across various sectors in the United States and abroad..... Read More
Telecommuting Cybersecurity: Protect Your Data Effectively
Aug 23, 2024
The shift to remote work has fundamentally transformed the modern workplace, eliminating the need for rigid office schedules and commutes. However, this flexibility introduces new challenges, particularly in cybersecurity. Remote work environments can expose your organization’s data and systems to vulnerabilities.... Read More
Phishing 2.0: How AI Makes Cyber Attacks Smarter, More Dangerous
Aug 16, 2024
Phishing has always posed a significant threat, but with the advent of artificial intelligence (AI), it has become even more dangerous. Welcome to Phishing 2.0: smarter, more convincing, and harder to detect.... Read More
STACK Cybersecurity Earns SOC 2 Type 2 Cert
Aug 15, 2024
Our SOC 2 Type 2 certification demonstrates we have robust controls in place to safeguard your data. This enhances trust and credibility, reassuring you that your information is in safe hands.... Read More
AM Data Service is now STACK Cybersecurity
May 1, 2024
Historically, managed service providers (MSPs) have operated on a flat-rate basis, offering unlimited support for a consistent monthly fee. The infrastructure MSPs manage ranges from computers to firewalls, routers, switches, active directories, email, and other network devices. This is done from a centralized software or technology stack to monitor and troubleshoot remotely. In short, MSPs serve as the IT department for many companies. STACK Cybersecurity chose to challenge this traditional model, arguing that... Read More
QR Code Phishing (Quishing) on the Rise
Mar 5, 2024
QR codes are ubiquitous nowadays, directing users to URLs with a simple tap. However, just like every coin has two sides, these Quick Response codes are also being exploited for nefarious purposes. In fact, a U.S.-based energy firm encountered nearly 29% of more than 1,000 malicious emails containing QR codes in May 2023. Adversaries are increasingly using QR codes in their phishing strategies to: Acquire credentials and personal details, trick victims into paying off hackers, install malware, gain remote access to devices.... Read More
Data Breach Aftermath: A Lingering Shadow
Mar 4, 2024
In our digital era, data serves as the lifeblood of businesses. It powers operations, informs decision-making, and shapes customer interactions. However, lurking beneath this data-centric landscape lies a sinister underbelly: the persistent menace of data breaches. These breaches have consequences that stretch far beyond the immediate aftermath, often haunting businesses for years to come. Surprisingly, only 51% of the total data breach costs materialize within the first year of an incident.... Read More