Our Most Popular Blogs of 2024

It’s incredible how quickly another year has flown by! As we bid farewell to 2024, we’re taking a moment to reflect on the year’s highlights by revisiting our most popular blog posts. Let’s dive in:

1. Payment Card Fee Settlement Claim Submission: This article, which provides details about the 2005 class-action lawsuit against Visa and Mastercard along with actionable steps for submitting a claim, was our most popular blog post of the year. With the claims-filing deadline extended multiple times, it’s likely to rank among our top blog posts again in 2025. We’ve received several inquiries about submitting claims, and we’re committed to providing you with the best possible assistance.
2. The 10 Most Common PCI DSS Violations and How to Avoid Them: This article highlights the top 10 PCI DSS violations and the potential consequences of non-compliance, such as financial and legal penalties, loss of credit card processing privileges, compromised sensitive data, and damage to your organization’s trust and credibility. But don’t worry—we also provide actionable steps to help you prevent common PCI violations and meet compliance requirements.
3. How to Prepare for a GLBA Audit: If navigating the steps to achieve or maintain GLBA compliance feels overwhelming, this article is a must-read. We break down the key areas auditors typically review and provide practical steps to help you prepare for a GLBA audit.
4. How to Select a Penetration Testing Partner: If you’re unsure of the difference between scans and pen testing, this article covers the differences. We also provide a list of certifications to expect and questions to ask a potential pen testing partner. You may also want to check out our Pen Testing Vendor Selection Guide for factors to consider when searching for a pen testing company and an interview checklist when researching vendors.
5. How to Detect Social Engineering: Identifying the Red Flags: Research indicates that more than 90% of cyber attacks originate from social engineering tactics, predominantly through phishing emails. We dive into the most common social engineering attacks, key indicators, phishing awareness training, and actionable steps to identify and thwart social engineering attempts to safeguard your organization.
6. How to Engage Your Staff in Effective Awareness Training: Say goodbye to boring, tedious training that merely checks a box for compliance. We outline 10 effective strategies to captivate your staff with fun, interactive, and impactful training.
7. Teaching Youth the Importance of Protecting Their Digital Footprint: In this article, we outline how the trail of online activity from today’s youth can have long-lasting implications on their privacy, security, reputation, and future professional and personal opportunities. It’s important to promote continued awareness with students and discuss the potential risks and consequences that may arise from their online activities.
8. Avoid These 8 Common GLBA Violations: Is your organization complying with the updated requirements within the GLBA Safeguards Rule? Read our list of common GLBA violations, which involve failures to adequately protect consumer information, and how to avoid them.
9. 10 Key FERPA Best Practices for Higher Ed: Institutions must establish and adhere to stringent policies and procedures aimed at preserving the privacy of student educational records. Check out our list of 10 best practices to protect student privacy and maintain FERPA compliance to execute across your institution.
10. Security Awareness: Governing the Acceptable Usage of AI Technologies: Many organizations were not prepared for the launch of Artificial Intelligence (AI). Your organization should design a policy setting clear guidelines for using AI tools. This article emphasizes the need to develop a defined policy regarding AI usage and outlines what your policy for governing AI should include.
11. Top 10 Cloud Security Vulnerabilities and Strategies to Combat Them: Cloud environments are often targeted by threat actors who exploit known vulnerabilities, deficiencies in security controls, misconfigurations, or weaknesses to gain unauthorized access and compromise sensitive information. We compiled a list of the top 10 most common cloud security vulnerabilities and actionable strategies to address them.
12. Identity Theft in the Digital Age: Emerging Trends and Risks: Consumers reported losing more than $10 billion to fraud in 2023, according to the Federal Trade Commission. We compiled a list of the most common methods of identity theft to help you protect your personal information and sensitive customer data stored within systems and applications within your organization.

That’s a wrap for 2024! We’re excited to bring you even more valuable tips, checklists, and resources next year to help your organization enhance its IT security and compliance programs.

Have an article you’d like to see? Contact us to submit your ideas!