Cyber Tips Guide

@cybertipsguide
19 Followers
6 Following
291 Posts
Cybersecurity expert sharing cyber safety advice & tips with 20+ years of experience | CISSP, CISM, CRISC, and CISA. Tweets and opinions are my own. Thanks for following.
Websitecybertipsguide.com
All Social Media Linkshttps://linktr.ee/cybertipsguide
Cyber Tips Guide7h ago
The DBIR shows mobile-centric social engineering attacks are outperforming many traditional phishing campaigns. Security awareness training can’t be email-only anymore. Voice, SMS, and helpdesk impersonation are growing risks. #CyberSecurity #DBIR🔗https://zurl.co/oiNTr
Cyber Tips Guide1d ago
Modern ransomware attacks are now communication crises too. Customers & CTI platforms may learn about your breach from the attackers before your company responds. My latest article explores ransomware leak sites, trust, & incident response. 🔗 https://zurl.co/1Yvp7 #Ransomware
Cyber Tips Guide1d ago
Modern ransomware attacks are now communication crises too. Customers & CTI platforms may learn about your breach from the attackers before your company responds. My latest article explores ransomware leak sites, trust, & incident response. 🔗https://zurl.co/6jOgm #Ransomware
Cyber Tips Guide1d ago
The DBIR highlights a major shift: third-party breaches are increasingly tied to identity weaknesses like missing MFA, excessive permissions, and credential exposure. Vendor risk is rapidly becoming identity risk. #CyberSecurity #DBIR #ZeroTrust🔗https://zurl.co/WZQ0G
Cyber Tips Guide2d ago
The 2026 DBIR shows vulnerability exploitation is now the top initial access vector. The challenge for many orgs isn’t awareness anymore — it’s scale, prioritization, and operational constraints. Risk-based remediation is critical. #CyberSecurity #DBIR🔗https://zurl.co/CdP20
Cyber Tips Guide6d ago
The Canvas breach has me thinking: prevention‑only security is over. ShinyHunters hit Canvas twice, stealing 3.65 TB of data on ~275M users via weak accounts & loose SaaS access. 🔗 More: https://zurl.co/6uo7N
#cybersecurity #SaaSsecurity #ZeroTrust #dataprotection #infosec
The Canvas breach proved that prevention is no longer enough

The Canvas breach exposed a fatal flaw in enterprise security: a total reliance on platform availability over data protection. Learn why identity governance and cryptographic resilience are the only ways to reduce the blast radius of the next inevitable SaaS attack.

CyberScoop
Cyber Tips GuideMay 26
FBI warning: “Kali365,” a Phishing-as-a-Service kit that hijacks MS 365 OAuth tokens, bypasses MFA, & gives persistent access without stealing passwords. Time to tighten app consent, conditional access, & user training. 🔗 https://zurl.co/c2eza #CyberSecurity #Microsoft365
Cyber Tips GuideMay 25
CISA left plain-text passwords, SSH keys, & AWS GovCloud creds in a public GitHub repo for ~6 months (with secret scanning reportedly disabled). If it can happen to the US cyber agency, it can happen to anyone.
#cybersecurity #DevSecOps #GitHubSecurity https://zurl.co/Em3WP
Cyber Tips GuideMay 19
AI voice cloning scams are becoming alarmingly convincing. Criminals can now impersonate loved ones (very easily) during fake emergencies to steal money & sensitive information. Learn the warning signs + protection measures. https://zurl.co/hpOEa #CyberSecurity #AIScams
Cyber Tips GuideMay 18
New research shows top AI assistants (Perplexity, Claude, Grok, ChatGPT) send chat URLs, titles & IDs to ad trackers, sometimes exposing full “private” conversations. Time to rethink how we use and govern LLMs? #AIsecurity #privacy #cybersecurity 🔗https://zurl.co/QLlVN