Month: January 2022

nonprofit cybersecurity checklist
Blog

[2022 Upgraded] The Latest Cybersecurity Checklist for Nonprofits

The following Cybersecurity Checklist for Nonprofits is a great first step to better protect your organization. Nonprofit organizations face constant challenges in developing a tailored cybersecurity action plan which addresses the difficulty in managing sensitive information and keeping their staff up-to-date with the latest cybersecurity trends.

CONTINUE READING
nonprofit computing security
Blog

Is Your Nonprofit at Risk? Here’s What You Need to Know About Cyberattacks

Since the COVID-19 pandemic started back in 2020, we have seen several cybersecurity professionals banding together to form cybersecurity defense groups, focusing primarily on providing free protection to healthcare nonprofit at risk, for-profit organizations, and the critical infrastructure that is needed to combat security threats. An example of such a group is the CTI League. They’re a volunteer group of cybersecurity experts dedicated to defending and neutralizing cyberattacks targeting the healthcare industry. Groups like the CTI League are of extreme importance, even in 2022. A recent survey by IBM, for example, indicated that there has been a significant increase in COVID-19 related spam. Common attacks that we have seen here at Makaye infoSec include phishing emails, ransomware, malicious domains, and denial-of-service attacks. Ill-intended users continue to capitalize on the current situation to steal data, make money, and compromise nonprofit at risk operations. The last-minute shift that organizations had to make to remote work back in 2020 opened new loopholes for cybercriminals to exploit, resulting in a significant increase in cyberattacks. The most prominent attack happened in October of 2021, after an unauthorized user gained access to Planned Parenthood LA’s networks and 400,000 records. The information that cybercriminals accessed had personal

CONTINUE READING
cybersecurity for nonprofits computers and phone
Blog

A Simple Approach for Nonprofits to Protect Their Credentials

Cybercriminals will not go away after the pandemic. In fact, they’re now more emboldened because of the recent successful breaches. Let’s remember, for example, in the UN mega-breach this year, hackers obtained employee credentials from the dark web and performed illegal activities between April and August. While the UN has yet to assess the overall damage in its network, researchers discovered that at least 100,000 employee private records were exposed.

CONTINUE READING
protect your nonprofit
Blog

How To Protect Your Nonprofit from Hackers [Updated 2022]

When it comes to cybersecurity, there is both good news and bad news for nonprofits. Cybersecurity is a rapidly escalating issue that many organizations aren’t prepared to confront. Compromised financial and personal information can be sold on the dark web and used for identity theft, ransomware attacks, phishing scams, and any number of crimes. That’s bad news.  The good news is that the vast majority of cyberattacks are preventable. It’s your responsibility as a nonprofit to protect the staff’s, donors’, and volunteers’ data. The fact is that too many nonprofits don’t take cybersecurity seriously. Unfortunately, they don’t understand the very real and disruptive effect a security breach can have on their missions.  This can happen because most users think that IT is the same as cybersecurity. IT experts are critical to the everyday operation of digital resources and network communication. They ensure that users are able to stay productive and have access to network resources critical to their job functions. But it’s the security of information assets and the resources that store them that are cybersecurity professionals’ main concerns.  Both require trained experts to handle complicated and evolving solutions. But it’s unrealistic to rely on an IT company to protect

CONTINUE READING