Stars-image

Blog

Welcome to Silent Sector's blog, news, and resource area.
0 Comments

Start With Why... My next chapter with Silent Sector

One of the best business books I have read is “Start with Why” by Simon Sinek. The reason I liked it so much is the author makes the point that many of the great companies in America have a noble cause as their mission that differentiate them from their competitors.

Read More
0 Comments

Preparing for a NIST Risk Assessment

Regardless of your organization’s security posture, a NIST cyber risk assessment can add immense value to your business. The National Institute of Standards and Technology, or more commonly known as NIST, is a non-regulatory federal agency that develops standards for a plethora of commonly relied on services and products.

Read More
0 Comments

Cybersecurity Software to Protect Small Businesses?

Although Silent Sector tends to work with mid-market and emerging companies, we get asked regularly by small businesses, "What tools or software can we buy to protect our company?"
Read More
0 Comments

Despite the increase of cyber security awareness, employees are still neglecting security policies

Security awareness increasing, but numbers show employees are still not listening

Read More
0 Comments

SOC 2 Audit Process and Best Practices

Wondering what to expect as you go through your first SOC 2 Audit?  This post covers each step of the process.  At every step, keep in mind that the entire goal of the SOC 2 audit is to measure how well your organization handles its business processes, users, data (proprietary, customer, etc.). A SOC 2 security audit can help your company demonstrate it has applied the best control mechanism to assure security, availability, processing integrity, confidentiality, and privacy of client data. This then generates trust and confidence from inquiring vendors and prospective customers.

Read More
0 Comments

Use Cybersecurity to Grow Your Revenue

The cybersecurity industry has a few really exciting trends and others that are mostly fluff and hype.  We are seeing   one particularly interesting dynamic  as we build and test cybersecurity programs for our clients.
Read More
0 Comments

Hacktivism and the Rise in DDoS Attacks

It is no secret that many protests have erupted after the death last month of George Floyd. However, a lesser-known fact is that a significant amount of online protesting has also emerged. This blog aims to focus on how protestors and various social organizations are using hacking as a vehicle to accomplish their objectives. The term ‘hacktivist” is used to describe cyber threat actors who are politically motivated.

Read More
0 Comments

Report Reveals 53% of Attacks Are Going Unnoticed

Whether or not companies want to admit it, every company is in the cybersecurity industry. This even applies to organizations like manufacturing who are not historically associated with technology. Unfortunately, in the age of digital transformation, many companies believe that simply allocating a couple of bucks to purchase “state of the art” security tools is enough to fend off threat actors. In an analysis conducted by the well respected FireEye Mandiant Security Validation team, it was uncovered that 53% of successful intrusions remain undetected despite having several security products. The research indicates that the majority of organizations need an overhaul of their cybersecurity strategy. In a previous article, we examined how the saturated vendor market has encouraged organizations to hastily purchase tools without really considering their organization’s specific need and thus, giving them a false sense of security. However, this blog seeks to expose why high ticketed solutions are unable to effectively detect and prevent the growing number of cyber-attacks.

Read More
0 Comments

A Cybersecurity Wake up Call in Response to the Pandemic

In a global survey commissioned by Barracuda, a prominent security company, 46% of global businesses have encountered at least one cyber scare since adopting a remote workforce as a result of the stay at home orders from COVID-19. While the security scares vary in severity, they all present a diverse range of new risks, threats, and challenges for organizations. These elements are only expected to increase as cybercriminals seize the situation to make a profit or nation-states try to gather intel.

Read More
0 Comments

Web Shell Malware, a growing concern for the US and Australia Wake Up Call on a common kind of Attack

This past week the US National Surveillance Agency (NSA) joined up with Australian Signals Directorate (ASD) to issue an information packet on how to detect and mitigate web shell malware. Web shell malware is a type of malicious code that executes arbitrary instructions on a targeted web server. It is becoming such a large growing cybersecurity problem that government agencies like the NSA and ASD released a 17-page guidance on how to approach it.

Read More