Stephen Moramarco

Stephen Moramarco is a freelance writer and consultant who lives in Los Angeles. He has written articles and worked with clients all over the world, including SecureGroup, LMG Security, Konvert Marketing, and Iorad.

Articles from Stephen Moramarco

Preventing Business Email Compromise (BEC) With Strong Security Policies

April 11, 2018

Introduction Business email compromise (BEC) is a phishing and social engineering scam threatening every organization in every sector on every continent. Ev

Learn More

2017 OWASP A6 Update: Security Misconfiguration

April 6, 2018

The Open Web Application Security Project (OWASP) is a volunteer group whose goal is to build a more robust Internet. One of their flagship publications is t

Learn More

How to Break Into the Field of Security Risk Management

February 8, 2018

A career in risk management takes place along the front lines of the ongoing cyber war. You must be logical, analytical and level-headed in order to lead the

Learn More

The Top 10 Data Breaches of 2017

February 6, 2018

Introduction As we begin a new year, let’s take a moment to look back on the biggest data breaches in 2018. This is a year-end list no one is excited to be o

Learn More

5 Easy Ways to Protect Your Small Business from Phishing Attacks

January 31, 2018

Your business is vulnerable to phishing attacks, no matter what size it is. According to the 2016 State of SMB Security Report, half of the 28 million small

Learn More

Computer Forensics: Digital Forensics

December 21, 2017

Introduction Digital forensics is the science of preserving and analyzing digital data; this data can then be used in court cases as well as for crime detect

Learn More

Role Based Security Awareness Training: Training Those Who Don't Think They Need It

December 19, 2017

Introduction Security awareness training is essential for every person that has an email account and/or access to your company network. This can include ever

Learn More

DoD RMF and Security Risk Management Salaries in 2018

December 7, 2017

Introduction As technology continues to innovate and evolve, so do its security risks. A career in security risk management, therefore, involves continuous

Learn More

Phishing Attacks in the Consulting Industry

November 21, 2017

Introduction The consulting industry, a network of professionals that work in an advisory capacity for businesses or individuals, is a tempting target for ph

Learn More

Phishing Attacks in the Insurance Industry

October 20, 2017

Mitigating risk is an essential component of the insurance industry, the sector that provides individuals and businesses policies that cover health, life, an

Learn More

Phishing Attacks in the Education Industry

September 27, 2017

Reading, writing, and… ransomware? The education industry (which includes public and private schools from kindergarten to universities) is increasingly under

Learn More

OWASP Top 10 #5: Security Misconfiguration

August 21, 2017

Recently, the Open Web Application Security Project (OWASP) announced an update of their "Ten Most Critical Web Application Security Risks.” OWASP is a nonpr

Learn More