Database Security
Managing Security Resources: It’s All About People and Awareness (Part I)
December 01, 2015 Added by:Steve Durbin
Organizations worldwide continue to struggle to attract and retain skilled information and cybersecurity professionals. Overcoming this challenge requires a more imaginative, business and people-centric approach to the recruitment of security professionals.
Comments (0)
Hackers and Threats: Cybercrime Syndicates Go Global
August 04, 2015 Added by:Steve Durbin
Organizations are struggling to cope with the quantum speed and sophistication of global cyber-attacks being carried out by organized cyber-criminal syndicates. Moving forward, businesses need to prepare to be targeted at any time, and any place, by multiple assailants. Organizations that wish to keep pace with these developments, and remain financially viable, need to take action now, or face the...
Comments (0)
Cloud Security: It’s in the Cloud - But Where? (Part II)
June 22, 2015 Added by:Steve Durbin
Cyber resilience has never been more important than it is today. As everything from supply chain management to customer engagement shifts to the cloud, operating in cyberspace now has bottom line implications if systems are disrupted. Cyber cloud resilience requires a balanced approach that protects both organizations and individuals while also enabling open, safe commerce and communication.
Comments (0)
OPM Breach: Where is the Data Going?
June 16, 2015 Added by:Peter Zavlaris
The OPM breach has drawn national attention and rightfully so. However, at first blush the attack seems typical of a particular threat actor that continues to successfully breach large organizations and steal PII.
Comments (0)
UK Data Breaches Have Increased in Number, Scale and Cost, Reveals Study
June 11, 2015 Added by:Tripwire Inc
According to the 2015 Information Security Breaches Survey, the number of security breaches has increased in the past year, whereas the scale and cost have nearly doubled.
Comments (0)
What is PHI?
June 03, 2015 Added by:Danny Lieberman
Software Associates specialize in HIPAA security and compliance for Israeli medical device companies – and 2 questions always come up: “What is PHI?” and “What is electronically protected health information?”
Comments (0)
Highlights From Verizon Data Breach Report 2015
May 19, 2015 Added by:Anton Chuvakin
Credential abuse still reign supreme.
Comments (0)
Whole Disk Encryption Explained
May 18, 2015 Added by:PCI Guru
There are a lot of security professionals and lay people that seem to believe that encryption is encryption and that is simply not the case.
Comments (0)
2015 Verizon DBIR and the Human Attack Surface
April 16, 2015 Added by:Tripwire Inc
Verizon’s annual Data Breach Investigations Report (DBIR) gives annual analysis and insight to the prior year’s security incidents and confirmed data breaches. As a security practitioner, I look to this report as a bellwether for our own security practices – what patterns are emerging and what should be my immediate takeaways to better protect my organization.
Comments (0)
Dangers Accelerate: Increasing Global Threats Loom Over Information Security Landscape
March 19, 2015 Added by:Steve Durbin
The pace and scale of information security threats continues to accelerate, endangering the integrity and reputation of today’s most trusted organizations. Attackers have become more organized, attacks are more refined, and all threats are more dangerous, and pose more risks, to an organization’s reputation than ever before.
Comments (0)
Those Pesky Users: How To Catch Bad Usage of Good Accounts
February 24, 2015 Added by:Anton Chuvakin
Stolen credentials, guessed passwords, pass-the-hash and other means of gaining system access present an exciting challenge to those folks who already woke from the mortal slumber of “isn’t my firewall and AV enough?”
Comments (5)
Humanizing Non-Human High Privileged Accounts
February 10, 2015 Added by:Identropy
Every IT environment has them. They are called by a variety of names: Non-human accounts; system accounts; service accounts; administrator accounts; shared accounts; group accounts; and the list goes on. What is common is that they have exceedingly high privileges to often the most critical areas of an IT environment.
Comments (5)
Anthem Breach: How Hackers Stole Credentials and Why Two-Factor Authentication May Help Prevent Future Phishing Scams
February 09, 2015 Added by:Thu Pham
If the Anthem attack was carried out as the result of using a single password, their access security wasn’t up to industry standards. Two-factor authentication may have thwarted attacks by requiring the use of a personal device to verify the identity of a system administrator or other technical employee with access to their database of millions of sensitive records.
Comments (3)
Does Your Valuable Data Belong to Hackers?
January 05, 2015 Added by:Thu Pham
Every organization, regardless of size, is comprised of a variety of sensitive data - from HR and payroll handling medical, financial and personally identifiable employee data to your precious intellectual property. And each of these data types can be sold for a price on the black market, making them valuable to attackers financially as well as for blackmail purposes.
Comments (6)
Moving from Alert-Driven to Intelligence-Driven Security
January 05, 2015 Added by:Paul Lipman
The emergence of smart, integrated, cloud-based security services will enable a transformation from an alert-centric to an intelligence-centric approach to security. This will vastly enhance the Chief Information Security Officer's (CISO’s) visibility and ultimately deliver substantial improvements in the robustness of the overall security posture.
Comments (1)
Improve Information Security and Privacy Now!
December 22, 2014 Added by:Rebecca Herold
Too many businesses have poor information security controls in place (e.g,. demonstrably Sony, Staples, and a seemingly infinite number of other companies) and are basically giving their intellectual property, and the personal information they are responsible for, away.
Comments (4)
- The Upcoming Oracle CPU: Struggling to Keep Pace with Vulnerabilities
- Malware Prevention Key to Countering Evasive Attack Techniques
- Don’t get lost in translation when managing mixed firewall estates
- Make Sure We're Using the Same Language
- WannaCry: How We Created an Ideal Environment for Malware to Thrive, and How to Fix It
- Ztorg Trojan-SMS Infects Google Play Apps
- SAP Cyber Threat Intelligence Report – June 2017
- Webinar: Top 5 Myths of ICS Cybersecurity - Debunked!
- You Can't Hire Your Way Out Of The Skills Shortage... Period.
- Social Security Administration’s Second Attempt at 2FA Fails Federal Government’s Own Standards, Not Secure