Description of the Issue: In September 2025, more than 40 NPM packages were compromised in a large-scale supply-chain attack. The malware executes during installs, steals secrets, and persists through GitHub workflows. Read more here: StepSecurity: Task: Assume your organization is impacted. Write a short report covering: How you discovered the
Description: On Tuesday September 9, 2025, Microsoft released patches for several of its products. Analyze the CVEs and let us know which ones are most critical in your environment. [Hint: Go to Microsoft website, export the file and analyze.]. America CyberSquad (ACS)September 2025 1 Comment Bright AduakohSeptember 13, 2025 at
In today’s fast-paced digital economy, businesses face mounting pressure to innovate, scale, and cut costs while maintaining high-quality IT services. For small and medium-sized enterprises (SMEs) in the U.S., outsourcing IT work has become a strategic solution to meet these demands. While traditional outsourcing destinations like India and the Philippines
In today’s digital landscape, small businesses must prioritize cybersecurity to protect sensitive data and maintain customer trust. A Vulnerability Management (VM) program is a proactive approach to identifying, assessing, and mitigating security weaknesses in your IT infrastructure. Building a VM program from scratch may seem daunting, but with a structured
As someone who teaches vulnerability management, I can’t stress enough how this incident underscores key principles for protecting organizations from similar breaches. Here are the critical takeaways: Third-Party Risk Management The Ascension breach originated from a former business partner, not the organization itself. This highlights the importance of vetting and
The rise of remote work has opened unprecedented opportunities for African IT professionals to access high-paying roles with global companies, particularly U.S.-based SMEs supported by America CyberSquad (ACS). With Africa’s growing tech hubs in Nigeria, Kenya, South Africa, and Ghana, and a young, skilled workforce, the continent is a prime
Ethical hacking, or penetration testing, is a crucial skill for cybersecurity professionals to identify and fix vulnerabilities before malicious actors exploit them. For small and medium-sized businesses (SMEs) like those supported by America CyberSquad (ACS), hiring or training ethical hackers is essential to secure digital assets. A home lab offers
Cybersecurity is one of the fastest-growing fields globally, with a projected shortage of 3.5 million professionals by 2025, according to Cybersecurity Ventures. For small and medium-sized businesses (SMEs) like those supported by America CyberSquad (ACS), this demand opens doors for self-taught individuals to break into the industry without needing a
A business website is a critical asset for small and medium-sized enterprises (SMEs), serving as a digital storefront to attract customers, showcase services, and build credibility. For businesses like those supported by America CyberSquad (ACS), setting up a website safely and affordably is essential to compete in today’s online landscape.
Phishing emails remain one of the most common and dangerous cybersecurity threats facing businesses today. These deceptive messages trick employees into revealing sensitive information, clicking malicious links, or downloading harmful attachments, often leading to data breaches or financial losses. For small and medium-sized businesses (SMEs) like those supported by America
