Vulnerabilities

Four Myths About Credential Phishing You Can’t Ignore

Four Myths About Credential Phishing You Can’t Ignore When it comes to credential phishing, knowledge is power. We tend to underestimate the impact of phishing on the enterprise and assume our existing defense strategies are sufficient to combat these attacks. To understand phishing means understanding one of the most common methods used by attackers to breach and maneuver within our networks, and to do that we need to dispel a few myths. Read this white paper to learn about phishing tactics and the key steps to building a complete security strategy that protects against credential phishing. Suggested resources for additional research: Analyst Research: IDC Planscape: Deploying Multi-Factor Authentication Customer Journey: Fieldpoint Private …

Four Myths About Credential Phishing You Can’t Ignore Read More »

Four Myths About Credential Phishing You Can’t Ignore

Security Awareness Deployment Guide – Securely Working at Home

Security Awareness Deployment Guide Securely Working at Home Executive Summary As a result of Coronavirus, many organizations are finding themselves transitioning their workforce to work from home. This can be a challenge as many organizations lack the policies, technology and training to secure a remote workforce. In addition, many employees may be unfamiliar or uncomfortable with the idea of working from home. The purpose of this guide is to enable you to quickly train those people to be secure as possible. If you have any questions on how to use this guide, reach out to us at support@sans.org. Since your workforce is most likely going through a great deal of …

Security Awareness Deployment Guide – Securely Working at Home Read More »

Security Awareness Deployment Guide Securely Working at Home

What is a ZERO DAY, REALLY?

What is a ZERO DAY, REALLY? What is a zero-day, this can often confuse many as the term is used to describe zero-day exploits, zero-day attacks, zero-day malware and vulnerabilities. We’ve prepared this infographic to address any questions. The term “zero day” has come to describe one thing: A vulnerability or an attack vector that is known only to the attackers, so it can work without interruption from the defenders. You can think about it is a flaw in a piece of software, or even sometimes hardware. Typical Lifecycle, of a Zero Day Responsible Disclosure What is Not A Zero Day In-the-Wild, Zero Day Attacks Number of Zero Day by …

What is a ZERO DAY, REALLY? Read More »

What is a Zero-Day

Mitigating Cloud Vulnerabilities – National Security Agency

National Security Agency – Mitigating Cloud Vulnerabilities National Security Agency guidance on how to reduce overall exposure to the risk cloud presents and how to enhance your security posture. While careful cloud adoption can enhance an organization’s security posture, cloud services can introduce risks that organizations should understand and address both during the procurement process and while operating in the cloud. Fully evaluating security implications when shifting resources to the cloud will help ensure continued resource availability and reduce risk of sensitive information exposures. To implement effective mitigations, organizations should consider cyber risks to cloud resources, just as they would in an on-premises environment. This document divides cloud vulnerabilities into …

Mitigating Cloud Vulnerabilities – National Security Agency Read More »

National Security Agency - Mitigating Cloud Vulnerabilities
Scroll to Top