Russians, APTs and Cyber Security: What’s So Common about Common Sense Anyway?
While the world awaits the next titillating chapter of the ongoing saga involving Russia and the U.S. presidential election, there is one section of the recently released Joint Action Report (JAR) compiled by the DHS and FBI that has gone unnoticed and woefully under-reported — and worth digging into. Yes, there was a lot of […]
Small and Medium-Sized Businesses Not Immune From Cyber Attacks
Small- and medium-sized businesses (SMBs) are the backbone of the U.S. economy. According to data available in the U.S. Small Business Administration’s Small Business Profile for 2016, SMBs with fewer than 500 employees make up 99.7 percent of all U.S. companies and employ 56.8 million workers—48 percent of the U.S. workforce. Cyber security is as […]
Get Cyber Security Right in 2017: Prioritize Privilege
Prudent organizations understand the need to have a cyber security program in place to protect assets, but it can be difficult to determine which investments will provide the best business value when making the budget case to C-level executives. This is true whether establishing a new security program or updating an existing one. When making […]
Misinformation and the Loss of Public Trust
Misinformation—and the misuse of information—came to the fore of public attention during the 2016 U.S. presidential election. Exactly who was behind the well-publicized hackings, leaks and fake news stories, and their impact, remains under investigation and might not be known for months, if ever. However, what is clear is that the ability to use misinformation […]
The Most Fundamental Endpoint Security Problem is a Privilege Problem
Privilege escalation is at the center of the cyber attack cycle. Why? Because attackers need the credentials of an insider, and administrative credentials give them the power to move laterally throughout the data center, to access high value servers and to take over domain controllers. Organizations now realize that securing privilege access is the first […]