In hostile environments, assume your location and communications are visible and work your security posture backward from that assumption.
NGOs are among the most targeted organizations in the world and operate with a fraction of the security resources available to corporations.
Threat actors have moved off mainstream platforms and into closed Telegram forums and Discord servers where traditional monitoring does not reach.
A single name linking a local partner to an international NGO in a breached database can be enough for a hostile government to target them.
Least privilege access and data destruction policies are not advanced concepts. They are basic discipline, and most organizations are not doing them.
Jack McKenna said, “In many ways they’re the most threatened, but they’re the most under resourced,” referring to NGOs and their cybersecurity posture.
Jack McKenna said, “Assume that it could become publicly available someday,” on the reality that any data submitted to any platform is potentially exposed.
