What is CMMC? CMMC Update Archives CMMC Links
Security Awareness Training Public Speaking Expert Witness
Newsletters Whitepapers Articles Videos Interviews Additional Resources
Cyber Security News & Tips by Glenda R. Snodgrass for The Net Effect
[ View this email in your web browser ] [ Visit our archives ] [ Sign Up for this Newsletter ]

March 26, 2024

Good morning, everyone!

This week’s critical vulnerabilities:
  • Apple has issued an "update now" notice, important security fixes in iOS 17.4.1
  • Both Chrome and Firefox released critical fixes this past week (remember, you have to close Chrome and restart manually for automatic updates to take effect)
  • FortiNet has released yet another critical fix for a vulnerability under active exploit

    Did your "automatic" updates get installed?

Patch All the Things!



Be cautious when making changes

A couple of weeks ago I talked about the recent AT&T outage1 which was caused by human error during an overnight system update.

This week, we learned that McDonald's experienced a global outage2 due to "a third-party service provider's configuration change."

What lessons can be learned from these two experiences?

First, be cautious about making system changes. Make sure you have recent, clean, complete backups. (I do this even for my mobile devices, before running an update, I manually back them up to a computer.) Test changes on a small sample first, whenever possible.

Second, have a fall-back plan! When AT&T had no service, did you have any means of contacting family, friends, employees, or anyone at all? McDonald's lost its point-of-sale systems: "Employees also shared on social media that they could not take orders, open cash registers, or process payments because POS systems were down." Do you have a secondary means of continuing critical functions when your primary system is down?

Plan ahead and stay cyber safe this week!

Glenda R. Snodgrass

Glenda R. Snodgrass
grs@theneteffect.com
(251) 433-0196 x107
https://www.theneteffect.com
For information security news & tips, follow me!



Security Awareness Training Available Here, There, Everywhere!

Thanks to COVID-19, lots of things went virtual, including my employee Security Awareness Training. Live training made a comeback a few months ago, but many organizations are retreating. No worries. Wherever you and your employees may be, I can deliver an interesting and informative training session in whatever format you prefer.

Contact me to schedule your employee training sessions. They're fun! ☺

TNE. Cybersecurity. Possible.

Speak with an Expert

Contact

The Net Effect, L.L.C.
Post Office Box 885
Mobile, Alabama 36601-0885 (US)
phone: (251) 433-0196
fax: (251) 433-5371
email: sales at theneteffect dot com
Secure Payment Center

Site Map

Home
Employee Training
Security Awareness Training
Public Speaking
Expert Witness
Workshops
About

Resources


CMMC
Newsletter
Whitepapers
Articles
Videos
Interviews

The Net Effect, LLC

Copyright 1996-2024 The Net Effect, L.L.C. All rights reserved. Read our privacy policy