2013 was a year full of well publicized data-breaches. In August, Virginia Polytechnic Institute and State University exposed information on more than 100,000 job applicants because “someone on our staff goofed” according to the university. In July, an unauthorized employee of New York State’s Office of the Medicaid Inspector General accessed nearly 18,000 records of Medicaid recipients, forcing the organization to examine its data access settings. In May, Washington state’s Administrative Office of the Courts reported a breach in its servers that exposed up to 160,000 Social Security numbers and one million drivers’ license numbers.
These breaches prove that sometimes, the greatest threat comes from within. Additionally, hackers have become more sophisticated and have become skilled at getting into IT environments. As a result, the perimeter of the network is no longer the only concern; it is the endpoints and applications that are putting IT organizations on high alert.
As plans are being made for 2014 regarding both budgets and staffing, there are some critical risks that IT security teams should identify to get ahead of potential attacks. The first, critical step toward protection is to know which endpoints exist on your network. With that visibility, start 2014 off the right way with the confidence of knowing what’s happening on each of those endpoints. This slideshow features five things to look for to improve security and compliance, as identified by Dan Ross, Promisec CEO.
While cyber crime continued to dominate headlines and wreak havoc on organizations of all sizes across nearly every industry in the first half of 2014, it's refreshing to note law enforcement also stepped it up. ... More >>
The patches released by Microsoft for the August Patch Tuesday include nine bulletins (two critical and seven important) and cover 38 CVEs. ... More >>
Here are five steps organizations and individual users should take now to protect their most sensitive password-protected information. ... More >>