Blog

The CRA Cyber Attack: Here’s What You Need to Know
Blog

The CRA Cyber Attack: Here’s What You Need to Know

Fri, 08/21/2020
In mid-August, cybercriminals targeted the Canada Revenue Agency with two credential stuffing attacks, obtaining the usernames and passwords of 9,041 GCKey accounts, and 5,500 CRA accounts. The fraudsters then used the stolen login credentials to apply for the Canadian Emergency Response Benefit (CERB). In response to the attack, a statement released by the Office of the Chief Information Officer...
Data Breach
Data Privacy
Security Awareness Training
This is Why You Need Mobile Responsive Security Awareness Training
Blog

This is Why You Need Mobile Responsive Security Awareness Training

Tue, 06/30/2020
(7 min read) Hint: It has everything to do with effective mobile learning. The past decade’s explosion of smartphone and tablet usage has magnified the importance of well-designed mobile responsive content as a vital part of any training program. Recent studies echo clear mobile learning preference statistics, including how: 70% of learners feel more motivated when training on a mobile device. ...
Mobile Security
Security Awareness Training
Blog

Impending breach notification laws highlight importance of security awareness

Tue, 01/27/2015
New data breach notification proposals from President Obama and other political leaders will only exacerbate the impact of these incidents. The stakes surrounding cybersecurity aren’t just increasing – they are expanding. For years now, business leaders have understood that data breaches are a serious issue, one which firms must do everything in their power to avoid. After all, these incidents...
Cloud Security
Data Breach
Blog

Consumerization of IT Through BYOD: Is Your Company Ready?

Mon, 03/03/2014
The consumerization of IT is when employees use their own personal mobile devices, such as laptop computers, tablets, smart phones, etc. at work, referred to as BYOD (bring your own device). This use is becoming increasingly common and exposes companies to a variety of risks, including the protection of personal information. Canadian businesses appear to be leading the world in IT consumerization...
Bring Your Own Device (BYOD)
Data Privacy
Blog

Supplementary guide to achieving PCI-DSS compliance cloud computing

Tue, 05/28/2013
Cloud computing services require special attention in regards to information security and privacy. This is especially important when using credit card data while cloud computing in order to meet PCI-DSS ("Payment Card Industry – Data Security Standard") standards. To this end, the SSC ("Standard Security Council") published a document entitled “Information Supplement: PCI DSS Cloud Computing...
Cloud Security
Compliance
Blog

Secure information destruction

Tue, 04/09/2013
What is the value of the information stored on your computer equipment or paper documents? What would the impacts be if your personal or confidential information fell into the wrong hands (e.g. financial loss, loss of image / reputation, regulatory or legal non-compliance)? Can you be certain that a proper destruction method was used on the information (whether in digital or paper form) to ensure...
Data Privacy
Data Security
Security Awareness Training