WipfliSecurity brings you timely information that affects your organization’s security. Connect with Wipfli’s security experts and get up-to-date guidance on the latest threats and fixes. We’ll discuss new ideas for improving your organization’s security and tips to help you navigate your way through compliance and more.
Critical Vulnerability in Common File Sharing Service (Samba) CVE-2017-7494May 31, 2017
By Travis Kaun
As organizations recover and patch from the recent WannaCry ransom ware outbreak affecting the Microsoft Windows Server Message Block (SMB) protocol, a new vulnerability was disclosed which potentially is equally as devastating affecting UNIX.
Foiling Sophisticated HackersMar 24, 2017
Wipfli's Jeff Olejnik was recently interviewed by TwinCities Business for an article on protecting data from cyber attacks.
Cyber Criminals Target Law Firms: Are You Next? Probably.Dec 30, 2016
By Jeff Olejnik
On December 27, the media reported that federal prosecutors charged three Chinese citizens with cybercrime conducted against law firms. According to The New York Times, the three men made millions of dollars by hacking law firms and stealing the emails of partners who worked on mergers. The men then bought shares of target companies and sold them once those deals were announced.
6 Questions Boards of Directors Should Be Asking About CybersecurityOct 19, 2016
By Jeff Olejnik
According to the Allianz 2016 Global Risk Report, business interruption and cybersecurity occupied two of the top three risks to businesses. It’s no wonder that with the increased frequency of cyber attacks, data leaks, and computer fraud, cyber risk now nears the top of board and audit committee agendas.
Wipfli is a National Cyber Security Awareness Month ChampionSep 08, 2016
October is National Cyber Security Awareness Month and Wipfli has once again signed on as a champion for 2016.
It’s Time to Ensure Better Cybersecurity Communications to BoardsJul 27, 2016
By Jeff Olejnik
More boards of directors are now recognizing that security plays a key role in business operations and strategy. In fact, cyber risk is becoming a top governance priority for boards, landing right up there with financial and legal oversight.
Website Security Updates: Who Is Responsible?Jul 01, 2016
I recently read an email about a security update available for website maker WordPress. Right in the message they “strongly encourage users to perform this update.” Looking at how organizations manage this issue in their overall patch management begs the question: Who is responsible for maintaining security updates for websites? Oftentimes, there aren't clear lines of responsibility.
Look Out for “Locky”Mar 04, 2016
In mid-February, officials at Hollywood Presbyterian Medical Center in Los Angeles reported an internal emergency when its systems were hacked and held for ransom. Nicknamed “Locky,” the ransomware likely arrived in an e-mail with a Word document attached. Ultimately, the medical center paid almost $17,000 in Bitcoin to the hackers in exchange for the decryption key to unlock its systems and access its electronic health records. Add to this the cost of operational disruptions and the PR nightmare, and this was quite an expensive attack.