𝐑𝐞𝐡𝐞𝐚𝐫𝐬𝐢𝐧𝐠 𝐟𝐨𝐫 𝐑𝐞𝐚𝐥𝐢𝐭𝐲: 𝐖𝐡𝐲 𝐌𝐨𝐜𝐤 𝐃𝐢𝐬𝐚𝐬𝐭𝐞𝐫𝐬 𝐁𝐞𝐚𝐭 𝐭𝐡𝐞 𝐑𝐞𝐚𝐥 𝐃𝐞𝐚𝐥!

Ever watched a play where actors flawlessly recite lines, embody characters, and captivate you with their performance?

It’s mesmerizing, right?

But what you don’t see are the countless rehearsals, the forgotten lines, and the tripping over props.

All of that happens behind the scenes.

By the time they’re on stage, they’ve mastered their act.

Enter the world of tests and trials in cybersecurity!



As vexing as an actor forgetting lines for the tenth time.

But oh, so necessary.

Because when the actual cyber threats try to Gatecrash our systems, we want to be ready, not left fumbling for our lines or our defences.

Sure, in our ‘rehearsals’, things can go awry.

Unexpected glitches pop up, simulations may unveil problems we never considered.

A little chaos here, a little mayhem there.

But isn’t that the point?

To stumble, fall, and rise before the final act?

So, the next time a cybersecurity drill feels like a bothersome rehearsal, remember this: better a hiccup in practice than a disaster during the live show.

After all, in the grand theatre of cybersecurity, we’re aiming for a standing ovation, not stage fright! 

𝐁𝐨𝐠𝐠𝐞𝐝 𝐃𝐨𝐰𝐧 𝐛𝐲 𝐭𝐡𝐞 𝐃𝐢𝐟𝐟𝐢𝐜𝐮𝐥𝐭𝐲 𝐨𝐟 𝐓𝐫𝐚𝐢𝐧𝐢𝐧𝐠 𝐒𝐭𝐚𝐟𝐟 𝐀𝐛𝐨𝐮𝐭 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲? 𝐈𝐭’𝐬 𝐓𝐢𝐦𝐞 𝐭𝐨 𝐁𝐫𝐢𝐧𝐠 𝐨𝐧 𝐭𝐡𝐞 𝐓.𝐄.𝐀.𝐌!

Imagine this.

A world where the complex intricacies of cybersecurity are as familiar to your team as their morning cup of coffee.

Sounds too good to be true?

Not anymore!

At Care MIT, we believe in turning what seems impossible into your everyday reality.

Introducing our game-changing strategy, one that focuses on what’s often the most challenging aspect – your T.E.A.M!

Yes, that amazing group of individuals that fuel your organisation every single day.

It’s time to turn your team into your most powerful line of defence against cybersecurity threats.

T.E.A.M (Training, Awareness, and Monitoring) – Ever noticed how fear usually comes from not knowing?

It’s time to remove the ‘unknown’ from cybersecurity.

Our T.E.A.M strategy is centred around making cybersecurity second nature to your staff through interactive training and heightened awareness.

We take the complex concepts of cybersecurity, break them down into digestible bits, and serve them up in a way that everyone can understand, appreciate, and apply.

We don’t just tell your staff what to do; we show them why it matters.

But it doesn’t end at training.

Our constant monitoring ensures that the concepts learned are implemented, making sure your cyber fortifications stay strong.

To give you a taste of how we roll, join our FREE 60-minute webinar every week, where we delve into the power of the T.E.A.M strategy.

Understand how the T.E.A.M approach can transform your staff into an active line of defence, and how the rest of our A.C.T.I.O.N plan can bolster your cybersecurity infrastructure.

So, are you ready to take the difficulty out of cybersecurity training?

With Care MIT’s T.E.A.M strategy, let’s equip your staff with the knowledge to safeguard your digital frontiers.

Because when it comes to cybersecurity, your T.E.A.M is your biggest win!

The only action is inaction and why companies get hacked

Cybersecurity threats are becoming increasingly common and severe, and the cost of these attacks can be devastating for businesses.

Despite this, many organizations seem to be slow to take action and invest in cybersecurity measures.

This inaction can be attributed to a variety of factors, including a lack of understanding of the risks, limited resources, and competing priorities.

One of the primary reasons for inaction when it comes to cybersecurity is a lack of understanding of the risks involved.

Many boards and C-suite executives may not be fully aware of the potential consequences of a cyberattack or the extent of the vulnerabilities within their organization.

Cybersecurity threats can be complex and constantly evolving, making it difficult for non-technical executives to keep up.

Another factor that contributes to inaction is limited resources.

Many organizations, especially smaller ones, may struggle to allocate the necessary budget and personnel to adequately address cybersecurity concerns.

This is especially true in industries where profit margins are thin, and there is intense pressure to prioritize cost-cutting measures over investing in cybersecurity.

Competing priorities can also be a factor in inaction on cybersecurity. Boards and C-suite executives are often responsible for overseeing multiple departments and initiatives, and it can be challenging to balance all of these competing demands.

Cybersecurity may be viewed as just one of many areas that require attention, and it may not always receive the level of priority it deserves.

In addition, some organizations may feel that they are not a likely target for cyberattacks, or that their current security measures are sufficient.

This complacency can be dangerous, as cybercriminals are constantly looking for new vulnerabilities to exploit. It is essential to remain vigilant and proactive in addressing cybersecurity risks.

In conclusion, inaction on cybersecurity by boards and C-suite executives can be attributed to a variety of factors, including a lack of understanding of the risks, limited resources, competing priorities, and complacency.

It is important for organizations to take a proactive approach to cybersecurity and ensure that it is given the attention and resources it deserves to protect against cyber threats.

Why we need to rethink Business Security

Security is an IT problem.

How many managers, owners, C Level Executives and board members agree with this statement?

More than 50% of small and medium businesses and not-for-profit organisations think that the ICT department is the go-to people when it comes to protecting your business’s crown jewels.

There has been a significant push in the last 5 to 10 years to get SMEs away from this thinking and to think about business risk, compliance, governance and business security.

Yes there is still a significant place for the ICT management of security around technology.   They are the ones who have to work with limited resources, doing more and more with less and less, and producing the same level of protection year in and year out.

When it comes to a cyber event, the problem in today’s business world is that not everything can be secured with technology.

At a basic level, there are 6 areas that create a secure business environment, technology and frameworks is one of them.   The others are risk management, people and education, policy and governance, resilience and finally continuous improvement.

As you can see, technology is only a small part of the solution.

The normal situation for SMEs and Charities is to think that ICT department knows it all.   We have had similar situations ever since computers have become an integral part of the business.

People who “know computers” were called on to fix the business infrastructure simply because of the know computers.   So a web designer was asked to fix a printer or a programmer was asked to set up an internet connection.   Yes, they could do it but in today’s world it is so much more complicated and complex.

Business security needs to be addressed by someone who knows security.   Someone who understands risk!   Someone who understands the fundamental security practices required to protect the organisation.

You would never go to an unqualified accountant to do your tax return, or an unqualified electrician to rewire your house, or even an unendorsed mechanic to repair you new BMW.

When it comes to protecting the business, especially from a cyber event, we rely on people who have minimal understanding of what needs to be done to create a secure business environment.

Ransomware and why it has the impact it does

Ok incoming RANT

On the last 3 Mondays, we have had to clean up 5 fully encrypted networks.

Small to Medium organisations, non-profits and businesses.

Each with a server with more than 10 computers and some cloud-based systems.

Their IT department or person who knows computers was in charge.

They were telling management that they were secure.

No tested backup

No resilience

No awareness training

No management systems.

No anti-virus

No updates

Where does that leave them?

At the moment, in a heap of trouble.

When it comes to cybersecurity, talk to an expert.

Everyone is a target of cybercrime, just some are more secure than others.

Not sure what to do – start with this audit here: https://Action.scoreapp.com

Is there recovery from ransomware?

That really does depend on you.

A ransomware attack can happen to anyone, at any time and on any systems.

If you think it will not happen to me then you could have a problem.

Ransomware is the scourge of cybercrime.

It can be enacted by people who have no technical knowledge and are just following a script and system that was downloaded from the internet.

It can be enacted by sending a couple of thousand email to a list of people that they purchased on the internet.

It can be enacted by targeting a group of internet addresses that they thought would be lucrative.

There use to be a thing called “security by obscurity” where you can hide on the internet and we’re relatively secure.


That capability is no longer a viable defence strategy.

If you think you will never be targeted, too small or have nothing worth stealing and you do have a cyber event there is little chance of you being able to recover.


If you have a different attitude.

If you think the opposite.

Then there is a chance that you will not be a victim.

If you think that you could be a target then you are already thinking about your response.

You are already thinking proactive.

You are ready to think of contingencies.

Even if you do have a ransomware attack then you already know and your team already knows what to do because you have thought about it.

You have plans, processes, procedures and policies in place.

If you have tested them and improved on them then that makes it even more possible that you will survive.

The old adage expects the best but plan for the worst is prevalent today against the cybercriminal.

How to avoid being a target of script kiddies!

There is a huge difference between a cyber attack generated by a script kiddy running an automated system and one where you are being targeted by a dedicated hacker.

For one, if you are targeted by a dedicated hacker then you already know that you have something worth protecting and you have, hopefully, done something about it.

The biggest problems with cyber attacks on the internet are that 95% of them are coming from an automated system controlled or managed by trainees (script kiddies).

Automated systems have three reasons they are used:

  • They are easy to get.
  • They are easy to use.
  • They are easy to make money out of.

They are easy to get!

There are a number of ways for anyone to get hold of an automated system. They can download an operating system that has an automated system running on it. Kali, Parrot OS or Black-arch are all very good examples but there are others.

Designed as penetration testing tools, these systems have all of the requirements that they need to target organisations, multinationals, or anyone connected to the digital world.

Before you ask, yes it is all legal and above board as long as you are not targeting someone else.

To make these systems more effective they allow them to either download additional components from GitHub or design and program your own applications.

They are easy to use!

The old saying that whenever anything is free you are the product rings true with these systems as well. The creators of these systems keep track of people using them and incorporate any updates into their own releases.

To set up one of these systems all you need is a computer. Once you have administrator access to a computer you can download a virtual environment (VMware if you have some money or Virtual Box for free) and you can then install these operating systems as a virtual operating system.

You can even run the operating system on a microcomputer (Raspberry Pi) for under $100.

Once set up you now have access to the tools and capabilities that, if used correctly, can rival someone who has been in the industry for years. Almost like a novice woodworker creating a dovetail joint on their first try without knowledge of what to do.

No training, just using other people’s knowledge.

In addition, and a bigger issue, what they do not know can be learned or discovered by simply searching google.

The capability and effectiveness of these systems allow them to set up the automated attack and target a huge number of vulnerable systems based on blocks of internet-based addresses.

Simply they can find out if there is a targetable vulnerability just by using facets of the automated systems.

They are easy to make money out of!

These free operating systems have the capability of making money.

To make serious money, though, you need to work with partners. Working with partners can be both beneficial as well as detrimental to their own security.

When it comes to making money it is either through selling information on the dark web, selling cryptovirus decryption keys to vulnerable people or selling access to compromised systems to leverage other attacks.

How to avoid being a target of script kiddies.

To avoid being a victim you need to implement some protective strategies.

You need to apply the CareMIT business security methodology to the organisation but to start at the basics this is what you need to do:

  • Patch and update everything – operating systems, application and to really be secure remove anything that you do not use from the system. This is applied to computers, websites, servers, and smart devices.
  • Disable macros – do not allow macros to run on the computers
  • Use complex, unique and more than 12 characters for every site, service or system in the digital world
  • Use 2 factor or multi-factor authentication. If you manage websites or other cloud-based services make sure the third level of security is in place – captcha
  • Only allow good applications to run on the system. This is called application whitelisting and only approved applications are allowed to run. There are some anti-virus systems that allow you to do this.
  • The last one is critical to your sanity – DO A BACKUP. All the bad guys have to do is win once. A backup ensures that if and when they win they have not really won.

At the basic level, the users of these automated systems are just as vulnerable as the people that they are targeting. A severe case of “user beware”, because if you do not configure the system correctly you are just as vulnerable as your targets.

At the most fundamental level, we all know that most people between 13 and 30 have a limited ethical attitude and good and bad is debatable.

That’s why we have the proliferation of these systems.

Secure your business!

Get proactive!

Do the scorecard!

Read your report!

Linkto scorecard https://caremit.scoreapp.com

#ceo #ExecutivesAndManagement #ProfessionalWomen #CareMIT #cybersecurity #infosec

Why you need a new breed of Business security


In the last 20 years, there has been a slow change in how the business approaches the management of the ICT component.

As business and technology changes there have been significant changes in the management process of these systems.   The more complex and costly the systems the more dedicated the support has to be.   We have gone from onsite support from staff (I know computers) to off-site support from a service provider.

SME’s no longer have the resources available to manage their ICT and a new breed of company has been slowly taking more and more control over these parts of your business.

Managed Service Provider (MSP)

Originally these organisations were known as ICT or IT companies.   They were usually run out of hardware and software stores and were more focused on those areas.

It was eventually realized that just managing the hardware and software of small and medium business and not for profit organisations was not enough.   When technology broke, the most organisation still could not afford a technician to come to the site and an IT company need to make their resources go further.

The managed service provider did a number of additional things:

  • They had systems that remotely monitored and managed (RMM) the technology within the organisation.   This allowed them to give feedback to the clients in the way of comprehensive reports on their network
  • They had helpdesk capability to fix issues as they arose from the RMM systems or issues that arose from the users.
  • They started to become proactive, not reactive.
  • In a number of ways they even became vendor managers.  They looked after their clients from the internet down to the user.

Managed Security Service Provider (MSSP)

The business has changed and the requirements for ICT support have changed, the MSP needed to do more.

To be competitive and to be more productive they started adding on services.   These services included if not delivered by the MSP:

  • off site backup,
  • managed firewall,
  • web application firewalls,
  • web site management,
  • managed Anti Virus and many more.

In most cases, they were a bolt-on action to the MSP requirements and were supplied to maximize profit and reduce cost.   In a large number of situations, the customer was not getting value for money because the MSP was tied to a specific vendor.

In the last 5 – 10 years, the bigger the perceived problem with security was the more clients were going to purchase systems from their trusted advised – their MSP.   Once again increasing profits by reducing costs.

Any MSSP that does this is actually exposing their clients to huge problems.   Most of the service level agreements (SLA) reduce this down to “all care no responsibility”

Managed Business security service provider (MBSSP)

SME’s and NFP organisations needed to approach business security in today’s business world from a new direction.

Business security has to be approached from the top down.    Management and board members HAVE to get involved.   Your MSP or MSSP who is not recommending risk management and cybersecurity frameworks is in fact doing a huge disservice to your organisation.

Risk management and a risk management process looks at all of the risks to the organisations and allows you to think and work through the process and deliver strategies to protect the organisation.   It includes the ICT and technology area but there is so much more that has to be incorporated into a risk management plan.

The second part is a cybersecurity framework.   A framework does a number of things:

  • It focuses management on the required tasks to secure the organisation.
  • It removes knee jerk reactions to perceived threats.
  • The more you implement the framework the more secure your organisation.
  • It has to be done with the involvement of all areas of the organisation from management down and from coal face up.
  • It can be managed with reduced costs, expertise and time constraints

Most frameworks have a baseline requirement.   When you start to implement the framework you have to know how secure you are before you can start to improve.   The baseline also allows you to look at priorities within the organisation.


If your organisation is still using an MSP or an MSSP to manage your security without looking at the risk components or without implementing a cybersecurity framework (we recommend the National Institute of Standards and  Technology (NIST) cybersecurity framework) then you need to rethink your business security requirements.

Talk to an organisation that is focused on MBSSP capability.

Secure your business!

Get proactive!

Do the scorecard!

Read your report!

Link to scorecard https://caremit.scoreapp.com

#ceo #ExecutivesAndManagement #ProfessionalWomen #CareMIT #cybersecurity #infosec