Security

The Time To Review Cybersecurity and Disruption Plans Is Now

by

If you haven’t done so already, it’s time to make sure you’re as prepared as you can for disruptions to digital platforms because of cyberattacks resulting from events unfolding in Ukraine. To a large degree, there’s only so much you can do and while the risk to arts and culture organizations being targeted deliberately is low, the systems and platforms they rely on are much higher priority targets. At the most basic level, groups would be wise to consider the following: Confirm critical data is backed up. Reset account passwords for email, … Read more

GoDaddy’s Managed WordPress Data Breach And What You Should Do If It Impacts Your Organization

by

On November 22, 2021, GoDaddy informed the Securities and Exchange Commission (SEC) of a security breach for 1.2 million users on its managed WordPress servers. According to the report, the breach impacted users as far back as September 6, 2021. Let’s review what that means and what your organization should do if you utilize GoDaddy’s hosted WordPress management. Confirm Whether You Use The Service If your org uses WordPress, that doesn’t mean it is part of the data breach. The breach only impacts organizations and individuals that use GoDaddy’s managed hosting solutions … Read more

It’s Time For An Admin User Audit

by

Even in non-pandemic times, scheduling regular admin user audits is a good idea. What we’re talking about is going through all the online platforms your organization maintains and making sure the existing admin user accounts are for active employees. Any others should be removed. When we talk about online platforms, these include, but are not limited to: Website CRM/ticketing platform Email marketing platform Social media accounts Transactional email providers Institutional email accounts (G Suites, MS Exchange, etc.) Software as a Service (SaaS) accounts (Zapier, Zoom, Slack, etc.) In a nutshell, there’s a … Read more