Tag Archive for: multi-factor authentication

IT Security & Compliance FAQ: Essential Terms Explained

Navigating IT security and compliance can feel overwhelming, especially when dealing with complex technical jargon. To help, we’ve compiled a list of frequently asked questions that break down key IT security concepts in a straightforward way.

1. What is Endpoint Detection & Response (EDR)?

Answer: EDR is a cybersecurity solution that continuously monitors user devices like computers and servers to detect and respond to threats like malware or ransomware. It provides real-time threat analysis and response to help prevent cyberattacks before they cause major damage.

2. What is a Firewall, and why is it important?

Answer: A firewall is a security barrier that monitors and controls incoming and outgoing network traffic based on security rules. It acts as a protective shield between trusted internal networks and untrusted external sources, blocking malicious activity and unauthorized access.

3. What does ‘End of Life (EOL)’ mean for software?

Answer: EOL refers to the point when a software vendor stops providing updates, patches, or technical support for a product. Running outdated, unsupported software increases security risks, as vulnerabilities are no longer fixed.

4. How does Multi-Factor Authentication (MFA) enhance security?

Answer: MFA requires users to verify their identity using two or more authentication factors, such as a password and a temporary code sent to their phone. This extra layer of security helps prevent unauthorized access, even if a password is compromised.

5. What is Dark Web Monitoring?

Answer: Dark Web Monitoring involves scanning hidden areas of the internet where stolen data is bought and sold. Businesses use this service to detect leaked passwords, financial information, or other sensitive data before it is exploited.

6. What is the difference between a Security Event, Security Incident, and a Breach?

Answer:

  • Security Event – Any observable occurrence related to an organization’s security, such as receiving a phishing email.  Events occur regularly and do not always lead to a security incident or breach.
  • Security Incident – When a security event leads to a violation of a company’s security policy or controls.  A security incident is often a pre-cursor to a breach but early detection of and reaction to an incident may prevent a breach. 
  • Breach – Unauthorized access to data, applications, network, or devices that results in or may result in information being exposed, leaked, stolen, destroyed, or altered. 

7. What does a Password Manager do?

Answer: A password manager securely stores and encrypts passwords for various accounts. It helps users improve password hygiene by making it easier to create and store long, strong, unique passwords.  Improved password hygiene  reduces the risk of security breaches caused by weak or reused passwords.

8. How does a VPN (Virtual Private Network) improve cybersecurity?

Answer: A VPN encrypts traffic (data) as it is passed across the public Internet.  A VPN connection might be established between a user’s device and a corporate network, or between two networks, or by using a VPN service which encrypts and anonymizes Internet browsing from a specific device.  Encrypting traffic, with A VPN, helps prevent hackers from intercepting sensitive information, especially when employees work remotely or use public Wi-Fi.  However, a VPN does not make a device or network impervious to threat actors.   

9. Why is regular Patching important for businesses?

Answer: Patching involves updating software to fix vulnerabilities, bugs, and security gaps. Cybercriminals often exploit outdated software, so applying patches regularly reduces the risk of threat actors taking advantage of known vulnerabilities.

10. What is Phishing Training, and why does it matter?

Answer: Phishing training educates employees on how to recognize and report fraudulent emails designed to steal sensitive information. Regular simulated phishing campaigns help reduce the likelihood of falling victim to real phishing attacks.

11. What is DMARC, and why is it critical for email security?

Answer: DMARC (Domain-based Message Authentication, Reporting & Conformance) is an email authentication protocol that prevents attackers from sending fraudulent emails using your domain. Implementing DMARC protects businesses from phishing, email spoofing, and brand impersonation.

13. What is Secure Access Service Edge (SASE)?

Answer:  SASE is a service that combines always-on VPN encryption with robust network traffic monitoring to prevent and detect malicious or unauthorized activities.  SASE can also provide a very secure remote access solution to supplant traditional VPN services and it provides a conditional access additional mechanism to only allow certain user devices to connect to corporate resources on the network or in the cloud.

How does Go West IT help businesses with IT security and compliance?

Answer: Go West IT helps businesses secure their IT infrastructure in alignment with compliance requirements. Our services include:

  • Managed next-generation antivirus, patch management, and devices monitoring.
  • Managed firewall configuration, vulnerability patching, and alert monitoring.
  • Managed Endpoint Detection & Response (EDR)
  • Managed password manager solutions including dark web monitoring.
  • Vulnerability scanning
  • DMARC configuration and ongoing monitoring.
  • Managed backup, login analysis, threat detection, and phishing protection for the Microsoft 365 environment.
  • By providing a SASE solution for remote access security, monitoring, and conditional access controls.

Understanding IT security terminology is key to protecting your business from evolving threats. If you have questions about your organization’s cybersecurity posture or need expert guidance, Go West IT is here to help.

Need IT security support? Contact Go West IT today to ensure your business stays secure and compliant.

Avoiding a Cybersecurity Upset: How One Business Lost Big During Tax Season

March Madness isn’t just for basketball—it’s also the perfect metaphor for cybersecurity. In the world of college hoops, you can’t rely on last year’s strategies to win this year’s championship. Your competitors are constantly improving, analyzing past plays, and adjusting their tactics. The same applies to cybersecurity—especially for businesses handling sensitive financial data.

Unfortunately, one accounting firm learned this lesson the hard way last tax season. Before working with us, they believed their existing security measures were enough to protect them, but cybercriminals were playing a much more advanced game. Their lack of email security and data hygiene left them vulnerable, and when tax season rolled around, they suffered a devastating loss.

The Play-by-Play: A Costly Mistake

Everything seemed normal in early March. The firm’s accountants were busy filing returns and managing financial documents for their clients. Then, it happened—one of their employees received an urgent email that appeared to be from a longtime client requesting a tax return update. The email was well-crafted, used the client’s real name, and contained no obvious red flags. Without second-guessing, the employee responded, attaching sensitive financial documents.

A few days later, the real client called, confused. They hadn’t sent that email. It was a business email compromise (BEC) attack, and now, the cybercriminal had access to highly confidential tax documents, Social Security numbers, and financial records. By the time the firm realized what had happened, thousands of dollars were stolen in fraudulent tax refunds, and their reputation was on the line.

What Went Wrong?

Just like trying to rely on the same roster year after year in basketball, the firm was relying on outdated security strategies. Here’s where they fell short:

  • No DMARC Policy – Their email domain lacked proper authentication protections, allowing cybercriminals to spoof their email addresses and trick employees.
  • No Multi-Factor Authentication (MFA) – A hacker had previously compromised an employee’s email account, and without MFA, it was easy to use that access to gather more intelligence.
  • No Secure File Transfer Policy – Employees were sharing sensitive tax documents over email instead of using encrypted portals.
  • Lack of Employee Awareness – The firm had no regular cybersecurity training, so employees weren’t trained to spot sophisticated phishing scams.

Adjusting the Game Plan: How They Recovered

After the breach, they reached out to Go West IT for help, and we immediately stepped in to strengthen their cybersecurity, ensuring they never faced an upset like this again. We implemented:

DMARC, DKIM, and SPF Policies – To prevent email spoofing and ensure only legitimate emails were sent from their domain.

Multi-Factor Authentication (MFA) – Adding an extra layer of security for email logins and financial platforms.

Encrypted File Sharing – Transitioning the firm to a secure document-sharing platform rather than using email attachments.

Phishing Awareness Training – Conducting simulated phishing campaigns to test and train employees to recognize scams.

24/7 Email Monitoring – Installing advanced email security solutions to detect and block suspicious activity before it reaches employees.

Tax Season & Cybersecurity: Don’t Leave Your Business Vulnerable

Tax season is already stressful enough—don’t make it harder by leaving your business exposed to cyber threats. Cybercriminals are constantly evolving, just like the competition in March Madness. If your security strategy hasn’t been updated recently, you’re taking a gamble on your business.

Instead of guessing who might attack next, fortify your defenses. Let Go West IT help you develop a winning cybersecurity game plan that protects your business from tax fraud, email compromise, and financial theft.

Are your cybersecurity defenses ready for the next big game? Contact Go West IT today to ensure you’re prepared for whatever threats come your way.

,

I hate being right, really!

I really hate hearing from customers and prospective customers that we were right and that they wish they had taken our advice to harden their systems and implement tighter security controls before their breach. Feedback from customers suggests the inconvenience of implementing additional controls is often what keeps them from taking action as opposed to the cost, which is negligible for some of the most effective controls like Multi-Factor Authentication (MFA). If you think the controls are inconvenient, you should spend some time visiting with someone who has been through a breach.

The most likely cyber-attack a small business will experience is an email breach which quickly lead to real payment fraud losses, reputational damage, and compliance risk. Once a criminal organization (yes, there are organizations attacking your small business) has success breaching one email account, you can expect the attacks to increase in volume and sophistication. Businesses can dramatically reduce email breach risk with relatively little cost and yes, some minor inconvenience.

Take the Next Steps

If you own a business or have are responsible for managing business risk, you need to take steps to protect your business, your shareholders, your employees, your vendors, and most importantly your customers. You must take action to implement additional controls. Start by asking your IT professionals to implement controls for yourself so you can understand first-hand how the controls protect your business and the level of inconvenience the controls may cause. This puts you in the best position possible to make informed decisions about how to protect your business and champion initiatives to tighten controls.

If you’ve done nothing to date, start with implementing MFA for your business email and then work with an IT professional to constantly review and improve security controls around all your systems and data.

I’m right and I hope I never have to tell you “I told you so”.

Please Implement Multi-Factor Authentication for Office 365, Please!

Your credentials can be phished, period.  If you think you’re above being phished, you’re wrong.  We all have weak moments and the criminals are really good at praying on our whims and emotions.  Trust me, you can be phished.  Don’t put so much pressure on yourself.  Implement multi-factor authentication (MFA) wherever possible to protect your accounts even if you are phished.  This is so important that we put together a video to show you how.  Watch this video.  Please just give us a call if you want help or want to discuss additional configuration options to ease implementation for your business.  We will be happy to help.

If you don’t know anything about Office 365 Multi-Factor Authentication please check out our blog and video from December 2017 for a complete overview https://www.gowestit.com/office-365-multi-factor-authentication.

 

 

,

Mitigating Cyber Risk – Top Ten Tasks

Your business is vulnerable to cybercriminals, period. So, workforce security should be top of mind for you and your business.

Workforce security matters

The truth is that no business is fully “secure”. Rather, businesses assume various amounts of acceptable risk. Your responsibility is to figure out where your organization lies on the workforce security spectrum, how much cyber risk you are willing to comfortably assume, and continually act to reduce your risk to those levels.

We understand that most businesses, especially SMB’s, can’t and won’t do everything their IT provider may recommend. This is true for a myriad of reasons including operational efficiency, timing, focus on your core business, and of course budget considerations. We also believe that most businesses do not realize the amount of risk which they currently assume. If you did, you would likely already be doing more!

To this end, Go West IT has developed our “Top Ten Task to Mitigate Cyber Risk”

Review your workforce security posture with your current IT provider and discuss how to implement the next best thing you can do to reduce your risk (HINT: If you’ve done nothing to date, start with backups, patching, and multi-factor authentication). If you need help please give us a shout, our experts will help you recognize, plan, and take the steps to mitigate your risk.

Understand where you are today… know where you want to be tomorrow… build the roadmap to get you there. You can reduce your risk, get started today! Give us a call, email us, or contact our support. You can get secured today! You can check out more about our Go Managed Security Plans here. If you have any questions, please reach out to us.

David Lewien
President, Go West IT

Download the PDF: Top Ten Tasks to Mitigate Cyber Risk
303-795-2200
info@gowestit.com
www.gowestit.com