Tag: Industry Insights

In the last couple of years, events were taken online, moved to virtual forums and conducted using social platforms via video set-up. Events became simpler to attend, but the individual component of the experience was missing – we all wanted to mix wit…

Cyber-Physical Security: Benchmarking to Advance Your Journey

by Galina Antova • June 28, 2022

Operational resilience is a priority and organizations are decisive about protecting cyber-physical systems (CPS) in today’s consolidated and converged reality
read more

Security Orchestration: Beware of the Hidden Financial Costs

by Marc Solomon • June 23, 2022

Among the many improvements in cybersecurity technology and tools we’ve seen over the last few years, one of the most significant has been the inclusion of security automation and orchestration capabilities in solution categories beyond SOAR platforms….

Lessons for Better Fraud Decision-Making

by Joshua Goldfarb • June 15, 2022

Have you ever stopped to think about how you go about deciding whether to try a new restaurant that you’ve never been to? Even if you don’t realize what you are doing, when you make this decision, you are likely collecting data around a number of diffe…

Malware’s Destruction Trajectory and How to Defeat It

by Derek Manky • June 14, 2022

Malware and targeted attacks on operating systems and firmware have become increasingly destructive in nature, and these more nefarious attack methods are rising in prevalence. And just to add insult to injury, there are more of them. Today’s attacks a…

BWAA-ck to Basics: Insights from the 2022 Verizon DBIR on Basic Web Application Attacks

by Benjamin Gowan • June 13, 2022

The Verizon Data Breach Investigations Report (DBIR) is a treasure trove of data and a true gift to the cyber risk quantification community. From CISOs learning key trends, to analysts estimating breach frequencies in an industry, the DBIR has su…

Facilitating Convergence of Physical Security and Cyber Security With Open Source Intelligence

by Landon Winkelvoss • June 13, 2022

The desire to merge aspects of physical and cyber security is nothing new, especially in maturing enterprises that are proactively extending their security capabilities. Since many aspects of physical security are connected to the internet, enterprises…

4 Ways to Close the OT Cybersecurity Talent Gap

by Galina Antova • June 7, 2022

We have a great challenge with the gap in cybersecurity jobs in general, with estimates ranging from 2.72 million to 3.5 million job openings in 2021.
read more

Digital Experience Monitoring: More Important Than Ever

by Torsten George • June 3, 2022

With the shift to work-from-anywhere, many organizations have seen an increase in scale of remote work locations that their IT team must support. At the same time, users expect consistent and good quality experiences no matter where they are. Ultimatel…

Automation. Where do We Go from Here?

by Marc Solomon • June 2, 2022

What’s next in the evolution of security automation and orchestration?
read more

Tapping Neurodiverse Candidates Can Address Cybersecurity Skills Shortage

by Jeff Orloff • May 25, 2022

While neurodiverse candidates don’t fit the traditional mold of applicants, they can often excel at highly focused, analytical work
read more

Learn to Use This First: Four Fundamental Tactics to Protect Email Ecosystems

by Keith Ibarguen • May 17, 2022

There is a great line in the movie Braveheart where Uncle Argyle says to young William, “First, learn to use this, then I’ll teach you to use this.” He is of course talking about William’s mind over his sword, but it is a prophetic statement when appli…

Defending the Healthcare Security Landscape in the Age of Connected Devices

by Marie Hattar • May 16, 2022

Articles focused on cybersecurity threats facing the connected medical device market often cite a well-worn statistic: the average hospital bed in the United States has 10 to 15 internet-enabled devices that collect and transmit data.
read more

Prepare for What You Wish For: More CISOs on Boards

by Marc Solomon • May 12, 2022

We have a long way to go to get adequate cybersecurity expertise on boards, but the time has come to make it happen
read more

The Importance of Wellness for Security Teams

by Joshua Goldfarb • May 11, 2022

With the talent shortage in security, employers need to use a variety of tools to recruit and retain top talent
read more

SecZetta Included in 2022 Gartner Market Guide for Insider Risk Management Solutions

by SecZetta • May 10, 2022

SecZetta, the leading provider of third-party identity risk solutions, today announced it was included in the Gartner 2022 Market Guide for Insider Risk Management Solutions. According to Gartner, organizational dependence …
The post SecZetta Include…

7 Steps to Start Reducing Risk to Your Critical Infrastructure Quickly

by Galina Antova • May 10, 2022

In my previous column, I wrote about the steady drumbeat of alerts, news reports, and actual attacks demonstrating that critical infrastructure has been in the crosshairs of nation-state threat actors and cyber criminals for years. Now, evolving intell…

For Smaller Enterprises Infrastructure Security Starts With Hygiene

by Gordon Lawson • May 3, 2022

The surge of cyber attacks in 2021 was a wake-up call for consumers, who felt the firsthand effects that can result from a breach.
read more

The VC View: The DevSecOps Evolution and Getting “Shift Left” Right

by William Lin • May 2, 2022

As the world increasingly moves to the cloud and digital-everything, organizations’ risk postures have also changed. Embedding security into the business is the new, must-have approach and product security is the most seamless path to make it happen – …

How Linux Became the New Bullseye for Bad Guys

by Derek Manky • April 28, 2022

Organizations need to secure, monitor and manage Linux just like any other endpoint in the network
read more

Achieving Sustainable Cybersecurity Through Proper Care and Feeding

by Laurence Pitt • April 27, 2022

Climate change is probably the greatest threat our planet faces today, but this challenge also presents an opportunity to do the right thing. It’s time to step back and look at the role of the IT industry in developing, deploying, maintaining, growing …

Defending Your Business Against Russian Cyberwarfare

by Landon Winkelvoss • April 26, 2022

We are likely to see Russian state sponsored attacks escalate as the West continues to increase sanctions and support Ukraine
read more

Why Ransomware Response Matters More Than Protection

by Torsten George • April 25, 2022

As high-profile attacks of the Albuquerque Public School District, Kronos, CS Energy, Kaseya,

When Attacks Surge, Turn to Data to Strengthen Detection and Response

by Marc Solomon • April 22, 2022

News of cyber criminals and nation-state actors capitalizing on events, planned or unplanned, for financial gain or to wreak havoc have dominated the headlines over the past few years. From COVID to elections to devastating weather events, and now the …

Today’s Network is Different, Not Dead – Here’s How You Secure It

by John Maddison • April 21, 2022

Rapid changes to a network can easily result in gaps in protection and enforcement
read more

When Is It Right to Stay Silent?

by Joshua Goldfarb • April 20, 2022

If you know that a person or group has poor intentions, it may make sense to begin documenting and reporting nefarious activity
read more

Economic Warfare: Attacks on Critical Infrastructure Part of Geopolitical Conflict

by Galina Antova • April 19, 2022

We’ve known for years that since at least March of 2016, Russian government threat actors have been targeting multiple U.S. critical infrastructure sectors including the energy, nuclear, commercial facilities, water, aviation, and critical manufacturin…

Think Like a Criminal: Knowing Popular Attack Techniques to Stop Bad Actors Faster

by Derek Manky • April 11, 2022

Analyzing the attack goals of adversaries is important to be able to better align defenses against the speed of changing attack techniques. By focusing on a handful of techniques, you can effectively shut down malware’s methods of choice for getting in…

Healthcare and the Other CIA

by Gordon Lawson • April 7, 2022

For IT professionals, the acronym “CIA” refers to the Confidentiality, Integrity and Availability of information, not the Central Intelligence Agency. However, given the current threat level to data security, IT teams may wish they could get a little h…

Insurance Companies: A “Tasty Morsel” to Cyber Criminals

by Mike Conti • April 5, 2022

Yes, this is one of the tastiest morsels…to hack the insurers first—to get their customer base and work in a targeted way from there.” -Unknown Cybercriminal from the REvil group …
The post Insurance Companies: A “Tasty Morsel” to Cyber Criminals app…

The Importance of Open Source to an XDR Architecture

by Marc Solomon • March 31, 2022

No longer satisfied with infecting files or systems, adversaries are now intent on crippling entire enterprises. Damaging supply chain, ransomware and wiper attacks are making headline news, impacting not only the organization but their stakeholders to…

The Need for Resilient Zero Trust

by Torsten George • March 30, 2022

It is essential to ensure that any Zero Trust technology used is resilient to external factors
read more

Six Ways to Expand Your Fraud Program

by Joshua Goldfarb • March 30, 2022

While attackers and fraudsters are continually adapting and evolving, there are some measures that businesses can take to improve their fraud programs
read more

The Elusive Goal of Network Security

by Marie Hattar • March 25, 2022

While it’s never perfect, it can always get better
read more

US Charges Russian Hackers Over Infamous Triton, Havex Cyberattacks on Energy Sector

by Mike Lennon • March 24, 2022

Achieving Positive Outcomes With Multi-Domain Cyber and Open Source Intelligence

by Landon Winkelvoss • March 24, 2022

The Many Faces of Threat Intelligence: Part 2
read more

A Sheep in Wolf’s Clothing: Technology Alone is a Security Facade

by Keith Ibarguen • March 23, 2022

The power of the technology to defend our IT systems is only as good as our ability to evolve it in the face of ever-changing adversary tradecraft
read more

Demystifying Zero Trust

by John Maddison • March 22, 2022

While many vendors use terms that include “zero trust,” they often use it to mean different things
read more

Public and Private Sector Security: Better Protection by Collaboration

by Laurence Pitt • March 17, 2022

Bringing the resources of government and the private sector together to share knowledge creates a high-definition picture of cyber threats
read more

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

by Laurence Pitt • June 30, 2022

by Galina Antova • June 28, 2022

by Marc Solomon • June 23, 2022

by John Maddison • June 17, 2022

by Joshua Goldfarb • June 15, 2022

by Derek Manky • June 14, 2022

Europe, Global Security News, North America

by Benjamin Gowan • June 13, 2022

by Landon Winkelvoss • June 13, 2022

by Galina Antova • June 7, 2022

by Torsten George • June 3, 2022

by Marc Solomon • June 2, 2022

by Jeff Orloff • May 25, 2022

by Keith Ibarguen • May 17, 2022

by Marie Hattar • May 16, 2022

by Marc Solomon • May 12, 2022

by Joshua Goldfarb • May 11, 2022

Europe, Global Security News, North America

by SecZetta • May 10, 2022

by Galina Antova • May 10, 2022

by Gordon Lawson • May 3, 2022

Global Security News, Vulnerabilities

by William Lin • May 2, 2022

by Derek Manky • April 28, 2022

by Laurence Pitt • April 27, 2022

by Landon Winkelvoss • April 26, 2022

by Torsten George • April 25, 2022

by Marc Solomon • April 22, 2022

by John Maddison • April 21, 2022

by Joshua Goldfarb • April 20, 2022

by Galina Antova • April 19, 2022

by Derek Manky • April 11, 2022

by Gordon Lawson • April 7, 2022

Europe, Global Security News, North America

by Mike Conti • April 5, 2022

by Marc Solomon • March 31, 2022

by Torsten George • March 30, 2022

by Joshua Goldfarb • March 30, 2022

by Marie Hattar • March 25, 2022

by Mike Lennon • March 24, 2022

by Landon Winkelvoss • March 24, 2022

by Keith Ibarguen • March 23, 2022

by John Maddison • March 22, 2022

by Laurence Pitt • March 17, 2022