What Nonprofits Need to Know About Security: A Practical Guide to Managing Risk* provides succinct guidance on how to mitigate your nonprofit's risk exposure, implement basic protections, and build a culture that values security with firm policies in place to guide staff. It includes a staff security checklist, case studies of other nonprofits' experiences with cybersecurity, as well as a list of where to find additional resources. (TechImpact, 2021)
Topics covered:
"Ransomware" refers to any virus or malware that maliciously encrypts your computer, data, or network to hold it hostage and bring your organization to a standstill until a ransom is paid. During these attacks, your systems display messages prompting users to pay or take other actions that further compromise your organization's security, while promising to allegedly allow you to regain control over your systems or retrieve your data.
The Cyber Readiness Institute (CRI) reports "more than 60% of data breaches are a result of weak or stolen passwords, 91% of all attacks start with a phishing email, 27% of malware infections are introduced via a corrupted USB, and 77% of attacks in 2017 could have been prevented if software was up-to-date." Luckily, an ounce of prevention is worth a pound of cure, and CRI offers a series of short guides below, free webinars,
Ransomware attacks block access to your IT infrastructure or your constituent/donor data unless you pay the attacker to release your property.
Whether for Facebook, Twitter (X), LinkedIn, YouTube, Instagram, TikTok – or whatever other platform rises to popularity next – your nonprofit will need a coordinated strategy to maximize the benefits from the hard work invested in managing your organization's online presence. Below are resources on conducting an audit of your organization's social media platforms and content strategy, why it can benefit your nonprofit organization, and the tools you can use to complete an audit.
Overviews of Conducting Social Media Audits
The NonProfit Voice podcast is "the go-to source for nonprofit management strategy and tactics. Developed for thought leaders and innovators, we cover topics like fundraising, donor management, human resources, board / volunteer management, and marketing technology."
Cybersecurity for Nonprofits by the National Council for Nonprofits provides guidance on first steps to take when introducing your organization's risk assessment practices to examining risks from online crime.
TechSoup offers several resources on Social Media for Nonprofits, written for organizations seeking to use such online platforms for fundraising and mission advocacy.
Data Privacy and Cyber Liability: What You Don't Know Puts Your Mission at Risk makes the case that "nonprofits may be at greater risk for reputational and financial damage in the wake of data breaches" and raises concerns that nonprofit leaders may be unaware of the increasingly common breaches of nonprofits' data on donors and constituents. (Nonprofit Risk Management Center)
This article explores:
Microsoft's Disability Answer Desk offers archived recordings of their 12-part Accessibility Learning Webinar Series from 2019 and their 3-part mini series on working remotely from 2020. These presentations are intended to demonstrate how Microsoft's products are accessible to differently abled folks, as well as compatible with assistive technology, and how abled folks can use products like Teams or