Enterprise Network Security Blog from ISDecisions
External Attacks – It’s All About the Logon
It’s tough to come up with an effective counter-measure to external attacks when you can’t see your enemy. While there are plenty of stories in the news of how a certain company fell prey to a very specific attack, it’s hard to translate that into an actionable response. So, you walk through the “usual suspects” … Continued
Are You Just Waiting for a Compromise?
The modern IT organization is well aware that compromises (in the form of both external attacks and insider threats) are more an issue of when than if. You’ve put up some defensive security solutions – AV, endpoint protection, email scanning,…
Why a decline for data breach costs is still not good enough
According to a recent study by international security research company, the Ponemon Institute, the average total cost of a data breach has declined by 10% globally. While it is encouraging to learn that global costs of data breaches have decreased,…
The convenience of single sign-on services (SSO) without compromising security
From an end user’s perspective, single sign on is a great idea. You log into one platform, which gives you access to multiple applications, programs and sites, with no need to log into each one individually. It’s convenient, quick and…
UserLock now supports both Windows and Mac computers
Today IS Decisions are pleased to announce a significant update to its flagship solution UserLock. UserLock 9.5 is the first version of the software in the company’s history to secure user logins from Mac computers. The launch comes at a time…
Lessons from the NHS: A bitter pill to swallow
The WannaCry cyber-attack, which took place earlier this month, has made headlines all over the world over in recent weeks. Already documented as the biggest ransomware attack in history, the hackers shut down IT systems worldwide, with a staggering 75,000 attacks in 99 countries. However, of those impacted, the organisation which has been given the … Continued
Orange Is The New Hack: Lessons from yet another ransomware attack
Post-production company, Larson Studios, which is responsible for hit Netflix shows such as Orange Is The New Black, is the latest victim of ransomware. Those responsible stole 10 episodes from the upcoming season five of the jail drama hit series and threatened to release them online unless a ransom was paid. When these demands were … Continued
Changing your password regularly makes you less safe, apparently
Here’s an interesting view. According to Paul Edmonds, head of tech at the National Cyber Crime Unit, changing your password regularly makes you less safe. Not more. That’s a surprising opinion given we’re always being told to change our passwords…
How are you performing at access security?
Take part in our Active Directory Access Security Survey We recently showed you how Hollywood blockbusters and classic TV series could have improved access security. Now it’s your turn to shine. We’d like your opinions on your challenges with Active Directory to manage…
File Access Auditing on Windows Servers
The launch of FileAudit 5.2 continues to simplify folder and file access auditing on Windows Servers and help organizations guard against improper access, alteration or the destruction of sensitive data. A complete picture of access events FileAudit 5.2 finds the…
Credential Theft in Education. Protect your Institution against a Data Breach.
Cyber security news site, Dark Reading, recently reported on the news that millions of stolen and fake email credentials from across 300 of the largest universities in the US were available to buy on the Dark Web. The stolen and…
What companies can learn from the alleged Apple hack
According to a report from Motherboard, a group of hackers is attempting to extort one of the most well-known companies in the world — Apple. The blackmailing is over alleged access to a collection of stolen user credentials for iCloud and other Apple email accounts. The ‘Turkish Crime Family’ hackers have demanded $75,000 in either … Continued
The misuse and compromise of any Active Directory users identity
Earlier this month, Dark Reading reported that Active Directory mis-management by administrators is currently exposing a whopping 90% of businesses to cyber breaches. The research made by Skyport concluded that should an administrator’s password become compromised, the “blast radius will reach nearly every system in the enterprise“. It’s true — an administrator’s password that falls into the … Continued
Safer Internet Day – why Microsoft’s assessment gives UK business something to worry about
Microsoft today named the UK as the best country in the world for online security. According to Microsoft’s Digital Civility Index, which measures the “extent of negative civil and personal safety interactions and their consequences”, British adults and children are…
Tracking or restricting overtime with America’s prospective labor laws
As Barack Obama prepares for retirement, all eyes are on America as its 45th president, Donald Trump, takes over. Before he passed on the baton to his successor, Obama attempted to overhaul legislation surrounding overtime pay. This law would have…
Spoiling some of Hollywood and TV’s finest hacking scenes
Have you ever been watching a hacking scene in a film and thought “that would never happen in real life?” or “that hack is way too far-fetched to be credible”? Whether it’s a scene where an attacker gains access to…
The Three hack. Take control to stop a breach using an employee login
UK telecoms company Three confirmed news of the security breach on Thursday, revealing that hackers accessed its systems using an employee login, potentially putting the personal data of six million customers at risk. This is the umpteenth time a major company has suffered a data breach as a result of an employee login falling into the wrong … Continued
