Just a Thought
"The mantra of any good security engineer is: 'Security is a not a product, but a process.' It's more than designing strong cryptography into a system; it's designing the entire system such that all security measures, including cryptography, work together."
From the Editor
The Target data breach case, which the retailer itself admitted in its recent SEC filing may be larger than anyone realizes, is now rippling toward the security company responsible for checking its systems and procedures.
Just two months before the December breach, security firm Trustwave certified that Target's data pipeline was plenty secure and up to the standards set by the payment card industry. Now, the many financial institutions impacted by the breach want to be paid back for the money spent alerting customers, reimbursing charges and issuing new cards, and they're naming both Target and Trustwave in the lawsuit.
From what we could discover, this is only the second time a security firm responsible for securing a breached company has been named in a lawsuit. Should it be fruitful, we could see the entire security certification industry in a massive rush to implement new crisis management plans to face a risk that, with cyber criminals taking massive hauls left and right, won't be going away anytime soon.
Thank you, and read on.
|Interested in repurposing BCM articles |
or blog posts?
Would you like to share a post with your audience, reprint one of BCM's how-to's for office use, or take students through a set of case studies?
We're happy to give permission for material to be repurposed in just about any way you'd like. Simply submit a request to firstname.lastname@example.org.
By Erik Bernstein
Here is just a small sampling of the latest from both:
Fake Online Reviews and Your Business - what do they have to do with each other, how can you be hurt, and should you ever considering writing one yourself?
We answered a question heard all the time in Social Media Crisis Management: When Do We Respond?
Being a spokesperson for a brand in conflict can lead to reputation damage for yourself, but after watching the way he handled controversy over lending his voice to a Walmart commercial, We'd Take Mike Rowe on our Crisis Team.
In the first case of its kind out of Australia, Social Media Defamation Costs Youngster $105k as a result of making baseless negative accusations about a teacher at his former school on Twitter and Facebook.
Rose Kennedy is the source of the wisdom behind Crisis Management Quotables...on the Danger of Neglect, a clear-cut explanation of one of the most damaging mistakes one can make in business.
Another installment in our feature examining actions or tools critical to facing crises, Crisis Management Musts - Protecting Digital Assets makes clear just how important it is to protect yourself against cybercrime, loss, and other digital threats while planning for the possibility that you could be hit regardless.
Weiner Award Nominee: National Guard Member's Inappropriate Instagram describes one of the latest to be nominated for our not-so-prestigious award, a National Guardsman who outrageously offensive posted pictures of his squad mocking military funerals while sitting stateside.
Why is it so hard to understand? "Just Winging" It is Not an Option for Crisis Management. It takes precise execution of often-complex processes to mitigate the maximum amount of damage from a true crisis, and the only way to ensure you're ready is to plan ahead.
What's Your Body Language Saying? Because if your mouth is pushing one message while your body sends another, you're going to have a LOT of trouble communicating effectively.
Erik Bernstein is a freelance writer, editor of Crisis Manager, Social Media Manager for Bernstein Crisis Management, and consultant/trainer at Bernstein Social Media.
|Apropos of Nothing|
Social Media Training
Want to get your feet wet with social media but don't know where to start? Maybe you have accounts, but aren't sure what to post, or how to reply?
Being active on social media is a must these days, but you have to do it right. Erik Bernstein, Bernstein Crisis Management's Social Media Manager, now offers social media training sessions in person or via Skype for groups and individuals.
For questions or pricing info, please email email@example.com
Bernsteins Available to Deliver Free Guest Lectures, Q&A Sessions
Jonathan alone, or the team of Jonathan and Erik Bernstein, are available at no charge to deliver guest lectures and host Q&A sessions with college classes via Skype or Google Hangout. Our latest presentation was to a great graduate-level class in Crisis Management at the New York Institute of Technology!
The lectures are fun for us and students, and we're more than happy to allow recording for your future use. All you need at your end is a single computer with webcam and a strong broadband connection for us to appear in your classroom in real-time.
Contact us for more info!
Attention Corporate Boards of Directors (and those who serve them).
If you're connected with a corporate board of directors in some way and think that board would benefit from having a veteran crisis management pro amongst its membership, please contact me. -- Jonathan
(aka blatant self-promotion)
Are your employees putting your company at risk?
Most people don't recognize a well-crafted online phishing scam when they see one, and that's exactly what cybercriminals count on.
With more than 500 million phishing emails being sent every day, and the increasing use of uncontrolled environments for accessing and sharing sensitive data, the need for proactive training has never been greater.
You can help your organization fight back by changing the way security training is done. Here's our process:
- Assess: Even before training begins, a simulated attack is launched on your employees. This not only helps you to assess current vulnerabilities, it also helps motivate employees to learn because they immediately realize how susceptible they are to an attack.
- Train: Our tactile approach to learning is proven to reduce employee vulnerability. Each 10-minute interactive and game-based module presents realistic examples and practice to engage your employees, improve their cyber security knowledge, reinforce learning, and measurably change their behavior.
- Measure: Data collected during training enables you to measure and report on the progress of your employees' learning. You'll know which employees are strong, and which are weaker in their cyber security knowledge - not just whether they completed the online training.
Don't let your employees fall for phishing scams hook, line, and sinker. Teach them how to recognize and avoid today's most advanced attacks before it's too late.
Learn more! Our always-available, cloud-based training content is available in 7 languages. For pricing and demonstration information, contact firstname.lastname@example.org
Expanded Crisis Manager Bookstore
We've recently expanded the Crisis Manager Bookstore to include offerings from esteemed colleagues like Melissa Agnes, Gerald Baron, Chris Syme and Jim Lukaszewski that cover topics from crisis communication and traditional PR to social media and cutting-edge crisis management. We'll be adding other authors we admire in the weeks ahead.
Visit the new Crisis Manager Bookstore to see all of the material available now!
Keeping the Wolves at Bay: Media Training
Learn how to deal with traditional or social media during a crisis in this educational and entertaining guide from Crisis Manager publisher Jonathan Bernstein. $25 for the hard copy and $10 for the PDF.
Head to the Crisis Manager Bookstore for more information and/or to purchase.
Manager's Guide to Crisis Management
Whether you're a seasoned manager, aspiring up-and-comer, or student of crisis management, Jonathan Bernstein's textbook, Manager's Guide to Crisis Management (McGraw-Hill, 2011) will put you in control of any situation.
Looking for a Turn-Key Social Media Solution?
Missing out on all the promotional, SEO and reputation management advantages of being active on social media platforms? Hire someone to be your voice...like Erik Bernstein, editor of Crisis Manager. He's the one largely responsible for keeping the Bernstein Crisis Management website and social media accounts highly ranked and popular and can do the same for you, while creating a set of valuable social presences that can be turned over to your full control at any time
Guest authors are very welcome to submit material for "Crisis Manager." There is no fee paid, but most guest authors have reported receiving business inquiries as a result of appearing in this publication. Case histories, experience-based lessons, commentary on current news events and editorial opinion are all eligible for consideration. Submission is not a guarantee of acceptance.
Jonathan Bernstein is both publisher of Crisis Manager and president of Bernstein Crisis Management, Inc., a national crisis management public relations agency providing 24/7 access to crisis response professionals. The agency engages in the full spectrum of crisis management services: crisis prevention, response, planning & training. He has been in the public relations field since 1982, following five-year stints in both military intelligence and investigative reporting.
Write to Jonathan at: email@example.com
Erik Bernstein is editor of Crisis Manager and is also Social Media Manager for Bernstein Crisis Management, Inc.
Write to Erik at: firstname.lastname@example.org
Legal Disclaimer (aka the small print)
All information contained herein is obtained by Jonathan Bernstein from sources believed by Jonathan Bernstein to be accurate and reliable.
Because of the possibility of human and mechanical error as well as other factors, neither Jonathan Bernstein nor Bernstein Crisis Management is responsible for any errors or omissions. All information is provided "as is" without warranty of any kind. Bernstein Crisis Management and Jonathan Bernstein make no representations and disclaim all express, implied, and statutory warranties of any kind to the user and/or any third party including, without limitation, warranties as to accuracy, timeliness, completeness, merchantability, or fitness for any particular purpose.
Unless due to willful tortuous misconduct or gross negligence, Jonathan Bernstein and Bernstein Crisis Management shall have no liability in tort, contract, or otherwise (and as permitted by law, product liability), to the user and/or any third party.
Under no circumstance shall Bernstein Crisis Management or Jonathan Bernstein be liable to the user and/or any third party for any lost profits or lost opportunity, indirect, special, consequential, incidental, or punitive damages whatsoever, even if Bernstein Crisis Management or Jonathan Bernstein has been advised of the possibility of such damages.
A service of this newsletter is to provide news summaries and/or snippets to readers. In such instances articles and/or snippets will be reprinted as they are received from the originating party or as they are displayed on the originating website or in the original article. As we do not write the news, we merely point readers to it, under no circumstance shall Bernstein Crisis Management or Jonathan Bernstein be liable to the user and/or any third party for any lost profits or lost opportunity, indirect, special, consequential, incidental, or punitive damages whatsoever due to the distribution of said news articles or snippets that lead readers to a full article on a news service's website, even if Bernstein Crisis Management or Jonathan Bernstein has been advised of the possibility of such damages. Authors of the original news story and their publications shall be exclusively held liable. Any corrections to news stories are not mandatory and shall be printed at the discretion of the list moderator after evaluation on a case-by-case basis.