Industry Insights

Governance & Risk Management

Continuously Validate Security to Maximize the Value of Your Investments

Earl Matthews, VP of Strategy, Mandiant Security Validation • September 22, 2020

The 2020 Security Effectiveness Report shares our findings from an evaluation of 100+ enterprise production environments globally across every major vertical.

Anti-Money Laundering (AML)

Banking on Uncertainty - The Future of Financial Crime and Compliance

Brian Ferro, BAE Systems Applied Intelligence • August 6, 2020

Even before the pandemic set us on the road to a global recession, many banks were struggling to balance the polarising pressures of a changing world and keeping to business as usual.

Governance & Risk Management

7 Habits of Highly Effective (Remote) SOCs

Jon Hencinski • April 20, 2020

As organizations shift to a remote workforce for their SOCs, they need to keep in mind seven daily habits. Here's a guide.

3rd Party Risk Management

What's the Return on Investment of a Vendor Management Platform?

Tony Howlett • March 24, 2020

An emerging technology, Vvendor Privileged Access Management (VPAM) can provide both operational efficiencies and increased security in your projected ROI analysis. And that is a rare combination in InfoSec these days.

Endpoint Security

Growing Medical Device Sophistication Opens Security Issues

Tony Howlett • January 29, 2020

Securing medical devices properly is of crucial importance. However, before this goal can be completely achieved, there are several challenges to overcome.

Identity & Access Management

NIST 800-171 & Why Organizations Need Password Similarity Blocking in Active Directory

Josh Horwitz • January 7, 2020

Adopting the policies in NIST 800-171 brings multiple security-related benefits, including best practices for data access policies, reduced risk of data breaches and insider threats, and a scalable approach to protecting sensitive data.

Digital Identity

Identity Theft Protection: A Crucial Consideration in Today's Heightened Environment

Allen Spence • December 16, 2019

According to the Identity Theft Resource Center, there were over 1,200 reported breaches last year alone, which exposed over 400 million records.

3rd Party Risk Management

Is your Organization Suffering From Third-Party "Compliance Drift"?

Tony Howlett • December 13, 2019

Third-party vendors accessing your most critical systems and networks can also bring in security incidents along with all those wonderful things they promised in the sales presentation.

Finance & Banking

Don't Forget The Basics: KYE Means KYC

Simon Viney • December 6, 2019

We can see criminals are moving up the financial value chain from attacking lots of targets with smaller rewards to smaller numbers of targets with higher rewards

3rd Party Risk Management

The Hidden Cost of a Third-Party Data Breach

Tony Howlett • December 4, 2019

Your best bet to avoiding the potentially exorbitant costs of a vendor hack is to not have one in the first place. A solid vendor risk management program, backed up by technology, policies, and procedures is the best protection. Good review and audit processes can catch any vendor-related problems before they become...

Blockchain & Cryptocurrency

Beating The Crypto-Criminals

Gareth Evans • November 14, 2019

Instead of proving a flash in the pan, enthusiasm for cryptocurrency has grown - and with it the associated fraud. Cyber criminals were quick to develop malware with the aim of stealing cryptocurrencies, with attackers finding ways to exploit the anonymity offered.

Business Email Compromise (BEC)

3 Key Risks with Employee Passwords in the Financial Services Industry

Josh Horwitz • October 14, 2019

One of the most common threat vectors plaguing financial services institutions is the employee password.

Account Takeover Fraud

Introducing Continuous Password Protection for Active Directory

Josh Horwitz • September 6, 2019

With widespread use of Active Directory across industries and organizations of all sizes, it is frequently a target for bad actors who can use a cracking dictionary or exposed credentials to gain unauthorized access to an employee's account.

Account Takeover Fraud

The Costs and Risks of Account Takeover

Mike Greene • September 6, 2019

Account takeover (ATO) attacks result in billions of dollars of fraud and damage to brand reputation each year. These are the costs and risks associated with ATO.

Artificial Intelligence & Machine Learning

Disrupting the Economics of Cybercrime

Nick Flont • August 21, 2018

Cybercrime is a business and, like any business, it's driven by profit. But how can organizations make credential theft less profitable at every stage of the criminal value chain, and, in doing so, lower their risk?