Skookum Cyber Dashboard – Your Monthly update on Skookum Cyber Security

Thank you everyone for completing the October training, 100%!

October: Spot the Phish Game - Foundational

Just so you can see what an impact the training made…… we send phishing attempts related to the training throughout the month. The report makes us smile with the outstanding performance. There were only four people who clicked on the attempt.  That is good, almost great, but much better than we have seen in the past.  I suggest that the training works, and everyone keeping it in mind as we continue to challenge our teams to improve.  THANK YOU. 

What Scares Skookum?  (from a Cyber perspective) It is the ability to keep you as smart and aware as possible keeping Skookum safe as the threats are ever changing.

This month we are targeting internal threats, our November training is all about the three types.  This article discusses how the financial firm Robinhood was hacked causing a major breach.  This is real, it happens every day, and we again are the front line to keep Skookum safe.

“An unauthorized third party “socially engineered a customer support employee by phone,” Robinhood said, and was able to access its customer support systems. The attacker was able to get a list of email addresses for approximately 5 million people and full names for a separate group of 2 million people. For a smaller group of about 310 people, additional personal information, including names, dates of birth, and zip codes, was exposed, and for about 10 customers, “more extensive account details” were revealed.”

What is your IT department’s #1 priority at the moment?  So glad you asked……

CMMC (Cybersecurity Maturity Model Certification) is a new cybersecurity framework required by the US DoD and its contractors. The goal of CMMC compliance is to protect Federal Contract Information (FCI) and Controlled Unclassified Information (CUI). Skookum is working towards being CMMC compliant and will complete this by the end of 2021.  Your support with the monthly training is just one of the many ways we at Skookum are doing all that we can to be Cyber safe, thank you.

One of the hundereds of requirments with CMMC is a process that assures that any system access is eliminated or modified as employess move or leave Skookum.  We have tools in place that assist with this effort, up to and including an extensive process when IT professionals leave as they have greater access.