Infosecurity Opinions
Frequently Granted but Rarely Revoked: Three Reasons Privileged Access Is a Soft Target
Cyber-criminal groups target IT and incident response teams to gain access to corporate networks and data.
Leveraging Existing Security Infrastructure to Protect Against Future Threats
Looking at how many data breaches have occurred over the past couple of years, can DLP solve security problems
If Threat Intelligence Isn’t the Answer, You’ve Asked the Wrong Question
Up-to-date, real time, actionable threat data is the fuel that powers the security engine, and the best defense against emerging threats
Enrich the Human Element in Incident Response
Response is too complicated to be completely automated. Each network, attack, organisation, region, and security environment is different – this means that humans are still necessary.
Transition Service Agreements: Don’t Forget the Data!
The Transition Service Agreement (TSA) is the oft-neglected agreement in an M&A transaction
To Stop APTs You Need Anticipatory Active Defenses
APTs are running circles around most organizations’ defenses. The good news is that anticipatory active defenses can be remarkably effective in compensating for our weaknesses as we wage battle
The UK Should be Doing More to Help Startups
Dr Nithin Thomas explains how the UK can develop an ecosystem to support its security startup scene
Beware the Internet of Thieves
The internet of things brings great opportunity for the payments industry, with strong growth forecasted in mobile payments – but what about the threats? It’s time for the payments industry to address this reality before it’s too late, writes Ajay Bhalla
For True Cybersecurity Clarity, Understand your Software Portfolio
Jelle Wijndelts explains why it’s crucial for businesses to know what’s running on the network
Don't Get Caught On the Back Foot: Understanding the Legal Implications Of Information Security
The legal, technical and reputational challenges of addressing information security are proving highly complex for organizations to manage.
The Long Goodbye
Much can be done to ensure the restriction to physical and remote access of soon to leave employees
How Security Pros Can Stay Ahead in the Ever-Changing Digital World
How can we put our trust in inherently untrusted environments? This is the question that businesses repeatedly ask themselves, as they navigate a digital world that is increasingly connected, distributed and virtualized, says John Grimm
How to Choose the Right Web Vulnerability Scanner
When deploying a web vulnerability scanner (WVS), most users take into account the price, and most providers take into consideration the features
Thinking Continuous – A New Mindset for SCADA Security
SCADA systems are ever more open to security threats – Amol Sarwate explains how to mitigate the risks
Third-Party Android App Stores Aren’t All Bad News
Malware may lurk in some third-party app stores, but if you’re smart about where you shop, you do have safe choices, writes Noah Gamer
Incident Response Tabletop Exercises for Beginners
As the cost of breaches of electronically stored information continue to afflict companies, the need to be prepared for a potential cybersecurity incident is more important than ever. This is especially true from a financial perspective.
How to Prevent Employees from Compromising your Data
Mav Turner explains how to protect your business from itself
In Protecting Against Bad Bot Attacks, Knowing Where to Look is Important
Think bad bots on the internet are just a nuisance and nothing more? Think again, writes Rami Essaid
Paint it Black: The Role of Taint Detection in Java Application Security
RASP is changing the negative perception of data tainting as a tool for application security, writes John Matthew Holt
Corporate Cybersecurity: Complacent Parents, Kids In Charge
Security efforts are being hampered by business-immature practitioners and stand-offish management, writes Jason Polancich