WIXLIB

BOMA NY:Best Practices forProtecting Your Business& Your FamilyRaj Goel, CISSPraj@brainlink.com / 917-685-7731www.RajGoel.com@rajgoel ny

»»»» Author, entrepreneur, IT expert and public speaker, Raj Goel is globally known as the go-to man in cybersecurity and privacy law. He is committed to educating individuals and organizations about onlinesafety and how to protect their most important assets – people and data. His expert advice helpsindividuals, companies and conglomerates navigate their way through the world’s ever-changingtechnology and increasingly complex IT compliance laws. He often appears in the media and atconferences world-wide to educate the public on cyber-security and digital privacy, a subject he ispassionate about.»Security, Civil Liberties anda Peace of MindWhen you need the right approach to complying with HIPAA/HITECH, PCI-DSS or simply protecting yourassets, Raj Goel, as any of his loyal clients will tell you, is the man to call upon. Raj’s credentials areimpeccable. A 25-year veteran of the IT industry and an expert in online security, Raj has personallyconsulted with organizations ranging from Fortune 100 corporations to small family companies togovernments world wide.Raj is fueled by his passion for enhancing Civil Rights in Cyberspace, his love of helping people keepthemselves, their families and their companies safe online. He is available as a consultant and a publicspeaker and often sought after by major media outlets and companies.Key highlights:Author, “UNPLUGGED Luddites Guide To Cybersecurity”, Amazon, 2015Author,“The Most Important Secrets To Getting Great Results From»IT”, Amazon, 2012On-Air Television Cybersecurity Expert, WPIX11, New York City (2013present)On-Air Cybersecurity Expert, Columbia News Tonight, ColumbiaUniversity, NYCKeynote speaker, NCSL 2013, Government of Netherlands, The Hague,NetherlandsKeynote speaker, Government Of Curacao, 20132 Keynote speaker, “what should MSP’s know aboutcompliance“, Datto partner conference, 2013Author, “Googling Your Privacy and Security Away”, InfosecurityProfessional MagazineAuthor, “Trends In Financial Crimes”, Infosecurity Professional MagazineAuthor, “Life Of A Child (2014) – raising a generation of cyber-at-riskyouth”, Infosecurity Professional Magazine, 2014Author, “Welcome To The World Of Dating Sites”, Infosecurity ProfessionalMagazine, 2015(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

B13(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

4(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

Founded in 1994 Profiled in NYTimes, Entrepreneur, PBS, WPIX11, etc Works Like An Extension of Your Firm Wide Range of Skills Fun To Work With Dedicated To Increasing Your Productivity & Profitability 2015 SmartCEO Winner for our “SOP Culture” 2015/2016 Gotham City Networking “Networker Of The Year”You Run Your Business And Leave The IT To Us.5 2015 Raj Goel,CISSPraj@brainlink.com/ 917-685-7731(C) 2016Raj/ Goel/ raj@brainlink.com/ 917-685-7731

6We partner with companies who are lookingfor fresh ideas and leadership. We helpbusiness owners who want to leveragetechnology as a competitive advantage intheir market.Ultimately, our clients want their team tofocus solely on money-making activities andput the entire burden of managing thecomplexity of modern technology on ourshoulders.(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

7What is Cyber Crime?Why They AttackHow to Protect Yourself, Your Family & YourBusiness(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

8Buy Stolen Credit Card NumbersBuy Physical Credit CardsBuy Card ClonersSkimmers on phones and ATM’sRestaurant Servers(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

9PC’s and ServersPhonesHome AutomationVideo ConferencingRefrigeratorHVAC SystemPhotocopiers FacebookTwitterYour WebsiteCarsTV’sVideo Games(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

10Open WiFi & Key loggersPhishing emails & SMS#1Shady websites & PornoRe-Routephone callsYouryourEmployeesDoingBuy stuff that already contains MalwareDumb ThingsFake AntivirusRansomware like Cryptolocker(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

“I have met the enemy, and he is us.” - Pogo11(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

12There’s nothing a hackerwould want on my PCI don’t store sensitiveinformation on my PCI only use my computer forchecking emailMy firm isn’t big enough toworry about hackers or cybercrime(C) 2016 Raj Goel / raj@brainlink.com / 917-685-773112

April 1, 2016 - k-securedoors.html13(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

93% of companies that lost theirdata center for 10 days or more dueto a disaster filed for bankruptcywithin one year of the disaster, and50% filed for bankruptcyimmediately.(Source: National Archives & Records Administration inWashington)14(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

20% of small to medium businesseswill suffer a major disaster causingloss of critical data every 5 years.(Source: Richmond House Group)15(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

16(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

A Maine-based construction firm got infectedwith the Zeus Trojan virus and 588,851.26 wastransferred from their accounts. Their bankrecovered 243,000 but Patco was on the hookfor 345,000. Patco was dragged through threeyears of lawsuits by their bank before the casesettled. "We had hundreds of thousands of dollars inlegal fees," says Patterson. "So even after wegot the 345,000 back, we lost hundreds ofthousands.17(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

Impairment Resources LLC filed for bankruptcy after the break-in at its San Diegoheadquarters led to the electronic escape of detailed medical information forroughly 14,000 people, according to papers filed in U.S. Bankruptcy Court inWilmington, Del. That information included patient addresses, social securitynumbers and medical diagnoses. Police never caught the criminals, and company executives were required bylaw to report the breach to state attorneys general and the Department ofLabor’s Office of Inspector General. Some of those agencies, including theDepartment of Labor, are still investigating the matter, the company said in courtpapers. “The cost of dealing with the breach was prohibitive” for the company,Impairment Resources said when explaining its decision to file for Chapter 7bankruptcy protection. That type of bankruptcy is used most often by companiesto shut down and sell off what’s left to pay off their debts. The company said its assets are worth about 226,000, an amount that, evenafter money trickles in from liquidating sales, likely won’t be enough to paylender Insurance Recovery Group and its 583,000 loan, Impairment Resourcessaid in court papers. 18(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

The heist began in December 2012 with a roughly 432,215 fraudulent wire sent from the accounts ofHuntington Beach, Calif. based Efficient Services EscrowGroup to a bank in Moscow. In January, the attackersstruck again, sending two more fraudulent wires totaling 1.1 million to accounts in the Heilongjiang Province ofChina, a northern region in China on the border withRussia. When Efficient reported the incident to state regulators,the California Department of Corporations gave the firmthree days to come up with money to replace the stolenfunds. This forced the California escrow firm to close and lay offits entire staff. 19(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

Law360, New York (October 18, 2013, 6:09 PM ET) -- Aformer employee of a Pittsburgh, Pa., law firm andher husband were each sentenced Friday to threeyears of probation, on federal charges that theyhacked into the firm’s computers in conjunction with asupposed member of the international hackernetwork Anonymous Alyson Cunningham, 25, and Jonathan Cunningham,29, pled guilty in June to two counts of damaging acomputer and unlawfully trafficking in passwords. Theactions in question took place after AlysonCunningham was fired from her job at Voelker &Gricks LLC in 2011. 20(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

China-based hackers looking to derail the 40billion acquisition of the world’s largest potashproducer Potash Corp (Ca) by an Australianmining giant BHP Biliton Ltd (Aus) zeroed in onoffices on Toronto’s Bay Street, home of theCanadian law firms handling the deal. Over a few months beginning in September2010, the hackers rifled one secure computernetwork after the next, eventually hitting sevendifferent law firms as well as Canada’s FinanceMinistry and the Treasury Board - Bloomberg.com 21(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

22[former website administrator] had his serverswiped clean of all client email, not simply thePuckett firm's material.The firm's Google email passwords weren'tsecure enough to keep out hackers who mayhave been using equipment that can rapidly tryout multiple possible combinations, according toPuckett. So the firm has changed all of its emailpasswords and made them more complex.Fortunately, although the email was copied byAnonymous hackers, it wasn't deleted.- ABA Journal(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

23A law firm lost “a large six figure” over theholidays after a virus gave hackers backdooraccess to its bookkeeper’s computer. The viruscopied bank account passwords as she typedthem.The virus “tricked the [bookkeeper] into givingthe trust account’s password to the fraudsters,allowing them essentially full access to the trustaccount, including the ability to go in, monitor it,and wire money to foreign countries shortlyafter deposits were made,”Lawtimes.com(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

24Ubiquiti Networks was scammed out of 47Mby scammers “employee impersonation andfraudulent requests from an outside entitytargeting the Company's financedepartment.“- NBCNews.com(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

25According to Omaha.com, an executive withthe 800-employee company wired the moneyin installments last summer to a bank in Chinaafter receiving emails ordering him to do so.- KrebsOnSecurity.com(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

“ More than 1 million bogus receipts worth 1.05 trillion yuan (147.3billion U.S. dollars) were confiscated in the case. The nationaltreasury would lose more than 75 billion yuan in tax revenue if thereceipts were put into circulation, officials said.”- tml Good News: Ringleader gets 16 years in jail.Bad News: One of their customers claimed his company was NASDAQ listedand raised 50M from unsuspecting investors. How many of YOUR vendors are claiming financial health usingfake receipts? How many of YOUR employees padded their expense accountsusing fake receipts?26(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

27Young employee downloaded piratedsoftware.Banking trojans come along for the ride(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

28Criminals infected a major supplier sitePDFs were infectedNasty rootkit hidden in the files(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

29During playoffs, a single employee consumedas much internet as everyone else combined.He spent the whole day watching baseball atworkNext day, this report was in front of hismanager.(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

How do you protectyourself and yourbusiness?

31CEO was travelling overseasEmployee receives email asking her to wire 315,000 to manufacturers in ChinaBoss HAS made similar requests beforeEmployees process request1 of the employees thinks email is funny, rereads it, it sounds “different from normal”Calls bank, revokes wire transfer, savescompany.- KrebsOnSecurity.com(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731

https://www.youtube.com/watch?v HpOg1Sgmpok32(C) 2016 Raj Goel / raj@brainlink.com / 917-685-7731