Should your company have the misfortune of having their lottery number drawn and the hackers come calling, there are two things in those following moments that will save your company. At Cyber Samurai, we teach and perform them both through the Way of the Samurai. It boils down to two aspects.
The first element, we call pause. It’s a discipline we all should employ. It involves critical thinking and common sense. If your job is answering phones, it’s remember that Microsoft will never call and ask you to download a remote access tool. If you open email, it’s that 2 second delay where you stop to consider, “But I didn’t order anything from UPS, so why would I get a pdf receipt from them right now?” It’s remembering that no matter how good the deal is on that Honda cruiser you’ve wanted for 10 years, eBay doesn’t send legitimate messages from 1aas3t3234@gmail.com. You’re being “phished” or “whaled” and if you simply pause and consider the facts, you know it. We teach this common defense through our All Staff training. Whether your company is only yourself or several hundred people, we offer training to think critically about security.
The second aspect is this. Should the bad guys get through your initial common-sense-human-defense (hey, we all make mistakes!) and the link is clicked, the seed of their code still must find fertile soil to execute. Only if their code is successful will it germinate into a foothold. When it executes, “success” or “fail” is entirely dependent on the current settings of that device. If the device is still in its default state (like Windows 11 allowing any msi installer to execute with the highest privileges possible), they’ll likely get in. But if someone skilled in security has hardened those settings, malicious actors will be rewarded only with the dreaded “access denied.” At that point, they’ll be faced with the nagging decision to pivot and invest hours of custom work to try another way into your organization or simply move on to greener pastures. At Cyber Samurai, that’s one of our main goals: keep your organization from being an easy target so the bad guys just move on.
But how can an organization be locked down without causing disruption of critical functions? Who can keep track of what the bad guys are up to today and how to orient the fleet of company devices to combat those hacks?
This is what Cyber Samurai is honored to give.