Security leaders use the CIS Controls to quickly establish the protections providing the highest payoff in their organizations. They guide you through a series of 20 foundational and advanced cybersecurity actions, where the most common attacks can be eliminated.

• Cyber Essentials: CISA put together a guide for leaders of small businesses as well as leaders of small and local government agencies to develop an actionable understanding of where to start implementing organizational cybersecurity practices.
• Resources for State, Local, Tribal, and Territorial (SLTT) Governments: CISA has put together these resources to assist state, local, tribal, and territorial governments with securing their organization. Includes Best Practices, Case Studies, an SLTT Toolkit, and more.
• The CISA Cybersecurity Awareness Program is a national public awareness effort aimed at increasing the understanding of cyber threats and empowering the American public to be safer and more secure online.

The mission of the FBI’s Internet Crime Complaint Center (IC3) is to provide the public with a reliable and convenient reporting mechanism to submit information to the FBI concerning suspected Internet-facilitated criminal activity and to develop effective alliances with law enforcement and industry partners. Information is analyzed and disseminated for investigative and intelligence purposes to law enforcement and for public awareness.

FCC's 'Cyberplanner' helps organizations create and save a custom cybersecurity plan quickly to address specific business needs and concerns.

Small Business Fact Sheet is an interactive, online fact sheet covers cybersecurity basics and best practices, including the NIST Framework and common security threats (e.g. phishing, ransomware, email spoofing, and tech support scams, etc.).

Multi-State information Sharing & Analysis Center (MS-ISAC) is a service available to the nation’s state, local, tribal and territorial governments to improve cybersecurity posture through focused cyber threat prevention, protection, response, and recovery.

“Stay Safe Online” NCSA aims to provide information and resources for individuals and organizations to be safer and more secure online.

NGA Resource Center for State Cybersecurity: While targeted at governors' offices and statewide leaders, provides solid background and reporting about state-level preparedness. 

NIST created this voluntary Cybersecurity Framework consisting of standards, guidelines, and best practices to manage cybersecurity-related risk.  The Cybersecurity Framework’s prioritized, flexible, and cost-effective approach helps to promote protection and resilience.

This 2024 Massachusetts Cybersecurity Month Event was presented by Verizon in partnership with the Commonwealth Fusion Center and the MassCyberCenter.  During this event,  a representative from Verizon’s Threat Research Advisory Center (VTRAC) provided an overview of the 2024 Data Breach Investigation Report (DBIR).
 
For 17 years, Verizon has gathered data and analyzed security incidents to produce the DBIR with the goal of providing “a place for security practitioners to look for data-driven, real-world views on what commonly befalls companies with regard to cybercrime.”  Watch the VIDEO and read the REPORT to find out what’s new in the world of exploits, and what remains persistently challenging.

The MassCyberCenter was proud to partner with Undersecretary Layla D'Emilia and the Office of Consumer Affairs and Business Regulation to present the "Cybersecurity 101" Webinar.

The webinar provided information introducing consumers to the basics of cybersecurity, including how to improve safety online and avoid scams by putting cybersecurity best practices in place.  Information and guidance on passwords, multi-factor authentication, backups, software updates, safe online browsing, how to identify if one of your accounts has been found in a data breach, and how to create a personal incident response plan was provided.

Watch the VIDEO HERE.

• EOTSS maintains tips on how to safeguard your online identity and data from cyber security threats, online scams and data breaches. EOTSS is responsible for providing digital service for Massachusetts 40,000 state employees as well as digital services and tools that enable taxpayers, motorists, businesses, visitors, families, and other citizens to do business with the Commonwealth in a way that makes every interaction with government easier, faster, and more secure. 
• EOTSS Enterprise Security Office is responsible for writing, publishing, and updating all Enterprise Information Security Policies and Standards that apply to all Executive Department offices and agencies. This is a compilation of those policies and standards.
• EOTSS Office of Municipal and School Technology’s mission is to support local government efforts to effectively serve their residents, students, and employees through the use of technology, including cybersecurity health checks, best practice programs and grant programs.   

The MassAG Cyber Crime Division provides general resources to ensure Massachusetts residents know what to look out for and avoid cyber crime, including the Computer & Online Privacy which has insight into viruses, spyware, malware, and other threats to computer systems as well as phishing.

"Cybersecurity Toolkit for Digital Health" is a toolkit serves as an educational resource for digital health companies at all stages of growth, covering the fundamentals and best practices for cybersecurity and privacy protection. Created by MassChallenge HealthTech, in collaboration with a council of cybersecurity experts from the region, with funding support from MeHI (Massachusetts eHealth Institute).

ACSC is the region's only non-profit, member-driven organization committed to strengthening member cybersecurity defenses and preparing the region's response to large scale cyber threats. ACSC brings together the private and public sectors to ensure its members and the region are national leaders in "Collaborative Defense." 

CTA is a not-for-profit organization working to improve the cybersecurity of the global digital ecosystem by enabling near real-time, high-quality cyber threat information sharing among companies and organizations in the cybersecurity field. This approach brings together companies that typically compete with one another and enables them to work together for the greater good.

CSN is a public-private, nonprofit collaboration created to meet the challenges facing millions of individuals and businesses affected each and every day by cybercrime.

MMA brings together the Commonwealth’s municipal officials to articulate a clear and united municipal message, to develop and advocate for unified policies, and to share information and work together to increase the efficiency and effectiveness of municipal service delivery.

Siteline Security’s mission is to equip, empower, and support global nonprofits to navigate and embed cybersecurity into their organizations with confidence.

The GCA builds practical, measurable cybersecurity solutions and tools that are easy to use, and works with partners to accelerate adoption around the world.