Manual PKI management processes including spreadsheets and advanced monitoring tools may have worked well for small certificate counts and environments with limited issuance capabilities, but organizations today have realized that there are more certificates deployed than they can keep track of, or even know of. The...
With advances in big data, artificial intelligence, machine learning and more, healthcare is primed to innovate. But do HIPAA, GDPR and other regulatory standards inhibit the ability to innovate? Scott Whyte of ClearDATA discusses healthcare's complex convergence of innovation and compliance.
DDoS has undergone a serious change in attack strategy. In previous years it was used a means of gaining hacking credibility in the underground, taking out competitors or just disrupting business normality or the industry.
However, a recent string of attacks has not followed convention, and is forcing security...
Organizations in the Middle East and Central Asia are beginning to respond to the nuances of the evolving threat landscape in the region due to an explosion in its information and communications technology infrastructure, and this is changing the risk profile.
when addressing the advanced capabilities required to...
As damaging breaches continue to occur, more organizations are considering endpoint detection and response (EDR) solutions to address the incidents that aren't being handled adequately by their existing defenses. However, EDR solutions come in a wide variety of implementations and can vary significantly in scope and...
The endpoint security market continues to expand with vendors old and new marketing their solutions as "next-generation" game-changers. However, closer inspection reveals that many new solutions have been built on old platforms, many of which still rely heavily on signature-based detection and obsolete architecture....
Damaging widespread attacks such as WannaCry provide grim reminders of how prevalent Ransomware attacks have become. Adversaries are not only launching Ransomware attacks against a wide range of industries, they are consistently evolving their tools, tactics and procedures (TTPs) to foil your organization's best...
You won't want to miss this report, "A New Era in Endpoint Protection: A SANS Product Review of CrowdStrike Falcon Endpoint Protection," where SANS reveals the results of their evaluation of the CrowdStrike Falcon® platform.
To conduct their evaluation, SANS security analysts ran Falcon through a wide range of...
Dark web vendors offer a wide range of technological crime. From distributed denial of service attacks to pre-recorded phone calls, there is a myriad of knowledge and listings for hacking & exploits.
This report aims to bring a more rigorous and scientific approach to analyzing content on the dark web.
Download...
Although some of the most prolific fraud sites exist on the clear web, the research captured in this report reveals numerous instances where data was leaked or
sold for the purposes of committing fraud.
Dark web vendors have thoroughly systematized the fraud trade. From basic to more sophisticated sites, hosts...
The struggle is real as DoD moves from DIACAP to RMF. System owners are challenged to adopt technology that can address the more dynamic controls required by RMF.
Learn how to get help from defense agencies to monitor and assess their systems for RMF compliance by automating the gathering, analysis and reporting of...
The fact that Federal agencies are prime targets for the most sophisticated cyber threats is undeniable. If cyberattacks are inevitable, then robust capabilities for security investigation, threat hunting, and rapid response are essential. Government cybersecurity professionals require visibility across their silos of...
In 2014, the Department of Defense (DoD) issued instructions that replaced DoD Information Assurance Certification and Accreditation Process (DIACAP) with the Risk Management Framework (RMF). The RMF is designed to be managed as a continual process as the risk posture evolves over time for each information...
The cyberthreat landscape is rapidly changing. As attacks continue to increase in volume and sophistication, agency defenses also must evolve.
In order to do so, many agencies are moving toward a more holistic, analytics-driven approach to security. By gaining an end-to-end view of what's happening inside an...
Micro-segmentation is fast becoming a foundational layer of the security architecture for today's data center and cloud computing environments. It has seen a big push by a range of vendors as well as growing recommendations from leading analyst firms such as Gartner, ESG, and the 451 Group.
The idea of using network...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing gdpr.inforisktoday.com, you agree to our use of cookies.