Author Archives: Mike Meyers

Why Your Passwords Stink and How to Fix Them

Passwords…we all have them…lots of them!! And to be safe, we need a different password for each log-in site. Why? Because otherwise, if one gets compromised, then they all get compromised.

In 2021, 123456 was the most commonly used password. What does this tell you? Yup, we aren’t giving much thought to our passwords. And do you suppose we’re changing them frequently, as we should? Nope.

Ah, you say, we now have multi-factor authentication confirming our identity, so passwords are less important. True, multi-factor authentication protects us a bit more, but NOT TRUE that we can be less diligent about password management.

Strong passwords do help to protect your accounts. But a strong, compromised password that’s used on every one of your accounts is still a compromised password that potentially opens all of your accounts to the bad guys. Too many people use the same password for every account, and the bad guys know this.

What to do?

The new CompTIA A+ Core 1 and Core 2 Exams are out! Ready to take on the challenge of being an IT Tech superhero? Check out the details:

From CompTIA:

CompTIA A+ certified professionals are proven problem solvers. They support today’s core technologies from security to networking to virtualization and more. CompTIA A+ is the industry standard for launching IT careers into today’s digital world.

CompTIA A+ is the only industry recognized credential with performance testing to prove pros can think on their feet to perform critical IT support tasks. It is trusted by employers around the world to identify the go-to person in end point management & technical support roles. CompTIA A+ appears in more tech support job listings than any other IT credential.

The CompTIA A+ Core Series requires candidates to pass two exams: Core 1 (220-1101) and Core 2 (220-1102) covering the following new content, emphasizing the technologies and skills IT pros need to support a hybrid workforce.

The need for trained cyber professionals is so mission-critical that we want to help you advance no matter where you are on your path.

My pal, Hasan Eksi, at my sister company CyberNow Labs, is conducting a live cyber resume review workshop tomorrow to provide you with tips that will help you secure the interview!

As co-founder of CyberNow Labs and National Cyber Group, Hasan has helped thousands of people – with or without an IT background – successfully enter this rewarding career. Former SOC Director for multinational companies MasterCard and Capital One; Hasan has 10 years in the industry and is prepared to share his expertise.

Whether you want to have YOUR cybersecurity resume reviewed during this live session or you just want to sit in to learn the tips and tricks, simply:

1) Join the live steam event on LinkedIn tomorrow (Monday, Oct 10) at 12-1 pm ET.

Add the event to your calendar when you log in so you get reminded: 

2) Submit your resume if you’d like to be considered for live review at info@cybernowlabs.com and they’ll confirm with you.

BONUS LEARNING: If you do attend the live session, you’ll hear about a complimentary personal resume review as another mentoring opportunity.

Hope to see you online tomorrow

Mike

Something Fishy about Phishing 

(A Proofpoint Tool Scenario) 

I sat down with my pal Richard Chapman, Program Director for CyberNow Labs, with this question, how to tell if an email is a phishing expedition?

Ironically, the largest threat to organizations is not necessarily the bad actors themselves, but rather that the employees are easily hooked into engaging with phishing emails because they’re in a hurry.

Usually, the phishing signs are visible to an end-user if they’re looking carefully, but…many don’t.

A big part of being a Cybersecurity Analyst is dealing with Alerts.

Top 5 Technical Interview Questions for Security+ Certified Job Interview 

 I sat down with my pal Richard Chapman, Program Director for CyberNow Labs, to go through frequently asked interview questions to help those who have Security+ Certification prepare, when they may not have the contextual experience yet. 

 I have made it a mission in technical interviews to get candidates to respond with an answer that is completely OK to say. But there is a key element to the response. 

And that is: “I Don’t Know.” 

The key is to finish that response with: “But I know how to find the answer.” 

We started off this episode with Question 1: What is the CIA Triad of Security? 

 It’s easy to repeat what the acronym stands for: Confidentiality, Integrity, Availability.  But these days there’s the extra layer of Compliance, Laws, Regulations, Standards. 

 So, it really goes from CIA to CYA. And you can figure out what that means. 

 By the way, we did get into a tangent discussion about Star Trek mid-way through. 

Watch this episode of 2 Bald Guys for our Top 5 Technical Interview Questions and expected responses.

Opportunities to learn more about accelerating your career to the next level in an upcoming Free Live Info Session with your 2 favorite bald guys (me and Richard):