If you analyze any of the recently published cyber attacks, two patterns emerge:
80-90% of the attacks exploit an unpatched vulnerability or an unhardened, widely open system
70% of the attacks begin at the endpoints
While "cool" new products create a lot of buzz, cyber hygiene is often ignored. But, it must be...
Security requirements need to be understood holistically in the context of your entire IT environment. Products and tools need to effectively address requirements without contributing to the chaos. Budgets and human resources are limited and need to be applied for maximum benefit.
But with hundreds of product...
With IT environments more complex and dynamic than ever, micro-segmentation is the clear choice for isolating communication flows and hardening your security posture. The right provider should help you accurately visualise and map all of your application flows and dependencies and then enable micro-segmentation...
Distributed denial-of-service (DDoS) attacks are increasingly complex and they frequently employ multiple attack types and strategies such as multivector and diversionary attacks against a broad set of targets. Industry reports continue to illustrate that no one organization is safe.
Even though DDoS prevention...
As cloud computing services evolve, the cloud opens up entirely new ways for potential attacks. Cloud systems and images have operating system and component vulnerabilities just like those in the enterprise. For example, Heartbleed, Shellshock and other major bugs can affect cloud systems, and there are new issues to...
How well do you know your vendors and the risk they pose? The scope of vendors you need to assess is rising constantly. At the same time, there is more scrutiny than ever on data security and privacy. These factors create greater shared risk where organizations can be held liable for their vendors' actions. To get a...
As enterprises continue to outsource more aspects of their operations to third parties, they expose themselves to more shared risk. It can be a staggering responsibility. Most organizations understand the need to automate vendor risk management activities to keep up with increasing scope and scrutiny. Yet they...
The move toward the digital workplace is driving the need for CISOs and IT security professionals to use new technologies and develop strategies to mitigate the loss of data from insider threats and external attackers.
Download this Gartner report to explore:
Recommendations for supporting a secure digital...
The mission of protecting industrial control systems (ICS) is so vital it cannot be left to just any security solution. Every day, we expect water to flow from our faucets, our lights and electricity to work, and traffic lights to move traffic along quickly and efficiently. As citizens and customers, we have zero...
Network security grows more complex every year with enterprises launching bolder applications with broader reach, facing more threats, adopting new devices, and implementing new security tools to protect it all. With so much to oversee and protect, keeping IT security simple, manageable, and effective (KISSME) begins,...
Leading this week's industry news roundup, IBM announces Identity Mixer, a cloud-based encryption technology designed to protect personal data online, while Proofpoint releases its Enterprise Protection Suite 8.0.
Leading this week's industry news roundup, FireEye joins forces with ForgeRock to provide enhanced security incident detection, while Sophos launches new end-user protection products.
Leading this week's industry news roundup, BAE Systems launches a corporate security analysis service to assist companies with social risk monitoring, while Arbor Networks appoints its first chief technology and security officer.
Leading this week's industry news roundup, Trend Micro and Hewlett Packard collaborate to help fight advanced targeted threats and custom malware, while First Data and VeriFone partner to expedite EMV compliance.
Leading this week's industry news roundup, Cisco plans to acquire the security consultancy Neohapsis, while Vectra Networks introduces a real-time threat detection platform.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.
