Leadership: Covering Your Security Achilles Heel

From phishing email campaigns to filched administrator credentials, we’ve seen hackers assault systems from all sides. Experts recommend the best defense is a unified front against malicious actors, but what happens when the very place you expect IT security policies from—your leadership team—is actually your organization’s Achilles heel? Ideally, IT security practices run like a […]

Red Team Rising: New Era Tactics

It’s a race to the next innovation in security and hacking, and in a remote-working world, the path is more dubious than ever before. Red Team Assessments, or real-world cyber attack simulations, are designed to imagine the worst case scenario to put an organization’s defenses to the test against present-day malicious methods. But with an […]

Head In The Cloud: The Capital One Ruling

Failing to address your organization’s shortcomings in cybersecurity will always have ramifications, but they won’t always come from where you expect. Exhibit A: Earlier this month, bank holding corporation Capital One was hit with a cease and desist order from the Office of the Comptroller of the Currency (OCC), citing a “failure to establish effective […]

Reassessing Security Priorities: The Mid-Year Shuffle

Early this year, we posted an overview of threats and technologies to look out for in 2020. But no one could have predicted what was to come in the months that followed, and now, organizations worldwide are re-evaluating their priorities—starting with cybersecurity. This Tuesday, Hitachi ID published “Top IT Budget Priorities Through 2020,” based on […]

The Concerning Risks Of Open Source Assessment Tools

It’s all around you, so you start to accept the risks. But just because open source software is everywhere doesn’t mean it’s the right choice for you and your organization. You’ve probably encountered it in your everyday life; with names like VLC Media Player, GIMP, and Audacity in the game, open source software (OSS) is […]

Bolstering Security For Small To Midsize Businesses

Public health isn’t the only thing at risk amid the COVID-19 pandemic. For cybercriminals capitalizing on the chaos, small to midsize businesses, or SMBs, are the perfect gambit: smaller firms are less likely to believe themselves an “attractive” target for cyberattacks, which leads them to slack on cybersecurity protections. It’s easy to be lulled into […]

Many Banks And Credit Unions Fail The Vulnerability Testing Component Of Their IT Security Audit Due To Weak Patch Management

Do you have a patch management plan?  If so, how effective is it?  Many companies either lack a comprehensive plan or the necessary tools to properly automate the processing of updates.  In fact, the underlying reasons many banks and credit unions fail the vulnerability testing component of their IT security audit is this lack of […]