In this episode of Reboot IT, host Dave Coriale, President of DelCor, sits down with Andrew Leggett, Director of Cybersecurity at DelCor, and Chris Ecker, Chief Technology Officer at DelCor, to unpack two critical cybersecurity topics every association and nonprofit should be thinking about right now: phishing‑resistant MFA and preparing your Microsoft 365 environment for Copilot. They discuss why passkeys truly improve the user experience, how oversharing in Microsoft 365 creates risk, and what steps organizations must take before deploying AI tools. This conversation is packed with practical guidance leaders can act on immediately.
Subscribe
Dave, Chris, and Andrew Discuss:
Why It’s Time to Level Up Your MFA
- Traditional MFA isn’t enough anymore with modern phishing attacks.
- FIDO2 passkeys make logging in easier for your staff, not harder.
Passkeys Are Way Simpler Than Passwords (Really!)
- A short PIN or FaceID is more secure than a long, complex password.
- Your device’s TPM chip keeps those credentials locked down safely.
How Modern Phishing Tricks Users, and What Stops It
- Attackers now steal MFA approvals and ride along on active sessions.
- Phishing-resistant MFA shuts the door on those token-harvesting scams.
Before You Turn on Copilot, Fix How Your Association Shares Files
- Years of sharing files without guidelines or guardrails can create hidden risks.
- Copilot can surface any file users have access to, even old oversharing.
Why 365 Sharing Settings Matter More Than Ever
- Users run their own OneDrive reports (admins can’t see it all).
- SharePoint tools help find where HR, finance, or executive docs may be exposed.
Leadership Buy‑In Makes or Breaks These Upgrades
- Change management matters, especially if the C‑suite wants exceptions.
- Passkeys also offer a chance to simplify tools and retire extras like Duo.