March 2020

What is a ZERO DAY, REALLY?

What is a ZERO DAY, REALLY? What is a zero-day, this can often confuse many as the term is used to describe zero-day exploits, zero-day attacks, zero-day malware and vulnerabilities. We’ve prepared this infographic to address any questions. The term “zero day” has come to describe one thing: A vulnerability or an attack vector that is known only to the attackers, so it can work without interruption from the defenders. You can think about it is a flaw in a piece of software, or even sometimes hardware. Typical Lifecycle, of a Zero Day Responsible Disclosure What is Not A Zero Day In-the-Wild, Zero Day Attacks Number of Zero Day by …

What is a ZERO DAY, REALLY? Read More »

What is a Zero-Day

5 Identity Attacks That Exploit Your Broken Authentication

5 Identity Attacks That Exploit Your Broken Authentication Traditional authentication methods that rely on usernames and password integrity are widely considered to be broken. In fact, “Broken Authentication” sits at #2 in the OWASP Top 10 for application security risks. As organizations begin to move more sensitive data to cloud apps to take advantage of the productivity gains, the traditional perimeter expands to wherever the user is logging in from. In other words, the identity becomes the perimeter. Threat agents have recognized this as a security gap and are exploiting the natural proclivity for your employees to trust an inbound email from a familiar source, or their tendency to reuse …

5 Identity Attacks That Exploit Your Broken Authentication Read More »

5 Identity Attacks That Exploit Your Broken Authentication

Simple Privileged Access Management

Privileged Access Management The increase in sophisticated, targeted security threats by both external attackers and malicious insiders have made it extremely difficult for organizations to properly protect critical and sensitive information. The task of protecting these assets has only grown harder as IT environments have become more complex and widely distributed across geographic locations and in the cloud. Many recent high-profile breaches have one thing in common: They were accomplished through the compromise of passwords. In many cases, end-user passwords are initially hacked through various social engineering techniques. Then permissions are escalated to gain access to more privileged accounts — the keys to the kingdom. This unauthorized access can easily …

Simple Privileged Access Management Read More »

Priviledged Account Management

Mobile Security Index 2020 Report

Mobile Security Index 2020 Report The theme of this year’s Mobile Security Index (MSI) is innovation. Mobile connectivity is enabling entirely new customer and employee experiences, and transforming business across all sectors. As you’d expect, we investigate 5G and the impact that that’s going to have. And we look at IoT devices, most of which are connected using cellular or mobile WAN technologies, like CAT-M1 and Narrowband Internet of Things (NB-IoT). We also look at how apps and data in the cloud are giving mobile devices increased capabilities, empowering users and becoming critical to operations. In fact, when we asked our survey respondents to rate how crucial mobile is to …

Mobile Security Index 2020 Report Read More »

Mobile Security Index 2020 Report

Mitigate Third Party Breaches with Vendor Risk Management

Mitigate Third Party Breaches with Vendor Risk Management As we enter into the end of the first quarter of 2020, breaches as a result of third parties are expected to be a primary contributor. Reflecting upon 2019, some of the worst breaches experienced were the U.S. Customs and Border Protection, the FBI, Facebook, and Focus Brands1 to name a few. A recent analysis by Risk Based Security, uncovered an increase in incidents involving companies handling sensitive data for business partners and other clients. The total number of such third-party breaches hit 368 in 2019, up from 328 in 2018 and 273 in 2017 — a 35% increase in two years2. …

Mitigate Third Party Breaches with Vendor Risk Management Read More »

Vendor Risk Management Security Studio
Scroll to Top
error: Alert: Content selection is disabled!!