Taking a Proactive Approach to Avoid Data Breaches

  It seems like IT’s general approach to any kind of attack – which includes data breaches – is a reactive one. Think about it, in every kind of attack-related scenario – whether an external attack, an insider threat, malware infection, ransomware attack, etc. – the “business as usual” methodology is to detect the attack/infection … Continued The post Taking a Proactive Approach to Avoid Data Breaches appeared first on Enterprise Network Security Blog from ISDecisions.
Read more

How are Data Breaches Detected

Sometimes the challenge with data breaches is to know they ever happened at all. Take these examples from the 2017 headlines: Company Breach Discovered Breach Occurred Verifone January 2017 mid-2016 Brooks Brothers May 2017 April 2016 – March 2017 California Association of Realtors July 2017 March – May 2017 Forever 21 November 2017 March – … Continued The post How are Data Breaches Detected appeared first on Enterprise Network Security Blog from ISDecisions.
Read more

Does Meeting Compliance Include File Servers?

Those of you reading this are likely working in industries with compliance mandates around protecting specific data types from misuse. And, like most businesses today, you’re probably using some kind of industry-specific set of applications that host that data – a health information management system in a healthcare setting, for example. So, your compliance focus … Continued The post Does Meeting Compliance Include File Servers? appeared first on Enterprise Network Security Blog from ISDecisions.
Read more

Active Directory User Login History – Audit all Successful and Failed Logon Attempts

The ability to collect, manage and analyze logs of login events has always been a good source of troubleshooting and diagnostic information. Logons are the one common activity across nearly all attack patterns. They provide one of the clearest indicators of compromise to help protect company data and thwart attacks. The need to provide a … Continued The post Active Directory User Login History – Audit all Successful and Failed Logon Attempts appeared first on Enterprise Network Security Blog from ISDecisions.
Read more

UK politician password-sharing — maybe the security industry has been giving out the wrong advice?

A few days ago, a news story broke saying that many of the UK’s political leaders have been publicly (and almost proudly) proclaiming their own particularly poor passwords habits on Twitter. MP Nadine Dorries admits she regularly shouts the question “What is my password?” across the office, and after her being criticised on Twitter, MP … Continued The post UK politician password-sharing — maybe the security industry has been giving out the wrong advice? appeared first on Enterprise Network Security Blog from ISDecisions.
Read more

Permissions, Accounts or Logons. Where do you draw the line in Least Privilege?

  Captain Picard (from Star Trek: The Next Generation) has been known to produce some pretty memorable quotes. One such quote comes from an episode where the Federation is fighting the Borg, with Captain Picard saying (in reference to where they must fight the Borg), “The line must be drawn here! This far, no further!” … Continued The post Permissions, Accounts or Logons. Where do you draw the line in Least Privilege? appeared first on Enterprise Network Security Blog from ISDecisions.
Read more

What’s Least Privilege Really All About?

As we finish the upcoming whitepaper ‘Least Privilege and the Value of User Logon Management‘, we began thinking about how organizations may see the point of least privilege as being different things. We all know, at a minimum, the implementation of the principle includes setting up users with the least amount of privileges possible (after … Continued The post What’s Least Privilege Really All About? appeared first on Enterprise Network Security Blog from ISDecisions.
Read more

External Attacks – It’s All About the Logon

It’s tough to come up with an effective counter-measure to external attacks when you can’t see your enemy. While there are plenty of stories in the news of how a certain company fell prey to a very specific attack, it’s hard to translate that into an actionable response. So, you walk through the “usual suspects” … Continued The post External Attacks – It’s All About the Logon appeared first on Enterprise Network Security Blog from ISDecisions.
Read more

Why a decline for data breach costs is still not good enough

According to a recent study by international security research company, the Ponemon Institute, the average total cost of a data breach has declined by 10% globally. While it is encouraging to learn that global costs of data breaches have decreased, the fact remains that hugely disruptive data breaches are still happening alarmingly frequently all over … Continued The post Why a decline for data breach costs is still not good enough appeared first on Enterprise Network Security Blog from ISDecisions.
Read more

The convenience of single sign-on services (SSO) without compromising security

From an end user’s perspective, single sign on is a great idea. You log into one platform, which gives you access to multiple applications, programs and sites, with no need to log into each one individually. It’s convenient, quick and hassle free. But as of recent news, it’s also been proved to be a big … Continued The post The convenience of single sign-on services (SSO) without compromising security appeared first on Enterprise Network Security Blog from ISDecisions.
Read more
Page 1 of 212