@BitSight has released results from an independent analysis finding @BitSight's Security Rating and 13 @BitSight risk vectors are statistically significant and correlated with cybersecurity incidents. Learn more 👉🏼 https://t.co/tpJVZPQCAu
@Marsh_MMA A8c: However, employee training is still critical – if employees always respond to their #MFA pushes, they may inadvertently give the bad actor access to the network. https://t.co/RhyFKaFbEp (3/3) #MMAChats#CyberSecurityAwarenessMonth
@Marsh_MMA A7b: We’ve seen data that about 15% of people will click the fake scam email the first time they receive it, but far fewer click it the second time. #MMAChats#CyberSecurityAwarenessMonth
@Marsh_MMA A7: Many companies send out fake scam emails to see who clicks, and enroll those people in training programs. Sometimes, they are publicly shamed, which is supposed to prevent them from clicking the real scam email in the future. #MMAChats#CyberSecurityAwarenessMonth
@Marsh_MMA A6: People tend to be the weakest link in cybersecurity. It all starts with employee training. Employees need to be vigilant about what they click, aware of typical scams, and empowered to report malicious emails. https://t.co/918PJ7gjjb #MMAChats
@Marsh_MMA A5b: Other key controls include utilizing MFA, properly removing unused accounts, and segmenting your network. https://t.co/rsDTEpoTSK (2/2) #MMAChats
@Marsh_MMA A5: At the MMC Cyber Risk Analytics Center, we have worked to quantify the benefit of various cyber controls. For example, obvious controls like having a proper anti-malware, anti-virus, and firewall are absolutely critical. (1/2) #MMAChats
@Marsh_MMA A4c: Businesses should work to encrypt or tokenize sensitive personal data that they store to prevent it from being used even in the case of a breach. (3/3) #MMAChats#CyberSecurityAwarenessMonth
@Marsh_MMA A4b: Even with a good set of system backups, bad actors can use stolen private data to force ransom payments under the threat of it being released publicly. (2/3) #MMAChats