By Brandon Bischoff, CISSP, Manager of Structured Managed Services -- As an IT managed services provider, I spend a lot of time thinking about crime fighting – but no capes. I’m preoccupied with how to shore up and safeguard what seems like an endless expanse of systems spread among a multiverse of clients. I think about the things Structured must inevitably manage and mitigate, the superhero comic strip equivalent of Thanos teaming up with Darkseid. I consider: important software patches that also could “break” end-user devices/access,end-of-life servers hosting obscure and ancient business-critical software, andusers who create rogue DHCP devices in a network. It’s a tough gig – and I haven’t even gotten to the stuff that’s really evil. Or REvil, in this case. REvil is a notorious ransomware-as-a-service organization that is widely believed to operate from Russia and is known for its high-profile and disruptive attacks. In a ransomware attack, the attacker infiltrates systems and installs software that encrypts, and sometimes exfiltrates, data. Once encrypted, the criminals demand a ransom -- usually in cryptocurrency such as Bitcoin --- to unlock the data. In the event of exfiltration, the criminals demand a ransom to keep the data private. I took pointed…

Protect Identities with MFA, Validation and Strict Management


National Identity Management Day 2021

By Brad Pierce, Structured Managing Director of Security, CISSP/CISA/PCIP -- Last week in the news were reports of more than a billion accounts being leaked online from just two sources (Facebook (533M) and LinkedIn (500M)). The data is still being validated, but the source seems to largely be public information that has been aggregated, bundled…

Read More

Supply Chain Hacks: Fallout from a nation-state-backed attack


By Jesse Wilson, CISSP, Sr. Security Engineer -- Two weeks have passed since the discovery of Sunburst (https://us-cert.cisa.gov/ncas/alerts/aa20-352a), an exploit so vast it likely will become the biggest breach in history – at least to date. Government agencies and private businesses alike are scrambling to detect indicators of compromise (IOCs), install patches and implement damage…

Read More

Community, Continuity


First, let us extend our most heartfelt wishes that you and those closest to you have been spared illness or financial hardship as a result of coronavirus. As a Pacific Northwest-based company with deep roots in Oregon and Washington state, this community and its collective health means everything to us. Second, we are keenly aware…

Read More