Thales Cloud Protection & Licensing

FEBRUARY 12, 2020

Knowing who and what can be trusted is a constant struggle, as malicious code, untrusted connections, and misconfiguration all lead to one thing – more risk. Several mechanisms help application and security teams to mitigate these risks, but identity is at the core. Identifying all of the “things” (e.g. 509 certificates.

Authentication 92

Authentication Encryption Risk Software 92

Thales Cloud Protection & Licensing

FEBRUARY 24, 2020

As more sensitive data is stored in cloud environments, data security and privacy risks increase. Regulations such as GDPR or the California Consumer Privacy Act (CCPA) mandate the use of appropriate protection technologies, such as encryption, and policies to minimize the risk of exposing this sensitive data to threats.

Digital transformation 79

Digital transformation Threat Reports Encryption Technology 79

Thales Cloud Protection & Licensing

MAY 14, 2019

The good news is that security vendors (such as ourselves here at Thales) can be relied upon to provide state-of-the-art data centric security methods that ensure you can expand your data landscape without taking on more risk. They typically do not provide encryption, seamless upgrades for flaws and updates, or optics.

Digital transformation 97

Digital transformation Cloud Migration IoT Threat Reports 97

Security Boulevard

MARCH 19, 2021

Yet they are not without risk in terms of cybersecurity. With employees spread out in disparate locations during the pandemic, the increased need to share files upped the cybersecurity risk even more. Blog: 2020 – A Transformation Year in Cybersecurity On-Demand Webinar: Is Your Remote Workforce a Top Security Risk? .

Cybersecurity 119

Cybersecurity CISO Social Engineering Technology 119

Thales Cloud Protection & Licensing

JULY 20, 2023

Instead, in today’s IoT landscape, we need additional authentication layers at the gadget level to ensure any connecting Smart Devices are trusted using certificates and keys – which are infinitely more difficult for a hacker to bypass or imitate – when attempting a break-in.

Manufacturing 48

Manufacturing Computers and Electronics IoT Authentication 48

LRQA Nettitude Labs

JULY 5, 2023

In addition to the topics below that you can expect to see reviewed and discussed in the forms of blog posts or webinars, LRQA Nettitude would also like to extend an open invitation for feedback and collaboration. Current Regulations Initial investigation shows the challenges that organisations will face in regulating the use of AI.

Artificial Intelligence 52

Artificial Intelligence Data privacy Social Engineering Risk 52

Thales Cloud Protection & Licensing

MARCH 10, 2021

The problem becomes – how do we make sure we’re securing these “driving data centers” against the risks and threats that lurk on the Internet? The same rings true for encryption and authentication. Asymmetric encryption may require too much processing power for certain devices, making symmetric keys the only option.

IoT 78

IoT Firmware Manufacturing Encryption 78

Security Boulevard

JUNE 15, 2022

It is the de-facto standard for remote administration of servers, with SSH keys acting as identities to enable automated authentication, encryption, and authorization. Risks associated with SSH keys (orphaned keys, duplicate keys, etc.). Venafi Confidential SSH Risk Assessment. Key sprawl. Policy violation.

Risk 52

Risk Architecture Digital transformation InfoSec 52

Security Boulevard

JUNE 8, 2021

In the third installment of our series, Protecting Industrial Control Systems Against Cyberattacks , we explore additional risk factors and vulnerabilities facing ICS SCADA systems. The most common vulnerabilities include: Lack of authentication/authorization and insecure defaults. IT/OT Convergence a Key Risk Factor. .

Ransomware 102

Ransomware Software Healthcare Risk 102

Thales Cloud Protection & Licensing

JANUARY 24, 2024

Protecting Against the Risks and Managing the Complexities of a Quantum World with Thales and IBM Consulting madhav Thu, 01/25/2024 - 11:03 Contributors: Ollie Omotosho - Director, Strategir Partnerships, Thales Antti Ropponen, Head of Data & Application Security Services, IBM Consulting In the world of business, data security is paramount.

Risk 87

Risk Encryption Technology Architecture 87

Thales Cloud Protection & Licensing

SEPTEMBER 9, 2021

PrimeKey’s EJBCA Cloud acts as the in-house certificate authority (CA) for provisioning of all certificates required for ensuring the integrity and authenticity of OTA updates. Communication verification and integrity, such as email encryption, digital signatures, and invoicing. Tomas Gustavsson | CTO, PrimeKey.

Manufacturing 71

Manufacturing Technology IoT Government 71

Security Boulevard

FEBRUARY 3, 2021

Remote collaboration increases the risk that an organizations’ data is not always shared securely 100 percent of the time. HelpSystems’ award-winning MFT solution uses encryption and authentication to keep sensitive data secure when sharing files. Webinar: How to Enhance Data Loss Prevention in Office 365. Featured: .

Cybersecurity 78

Cybersecurity Digital transformation Cyber threats Ransomware 78

NopSec

JUNE 14, 2017

Here at NopSec, programs are underway for our clients to ensure that they’re on-track to meet compliance and we’ve also been producing a series of NYDFS Cybersecurity Regulations webinars to help IT Teams and their organizations learn more. One-Year Transitional Period Ends: March 1, 2018 – Must be in compliance with: 500.04(b)

Cybersecurity 40

Cybersecurity Penetration Testing CISO Risk 40

CyberSecurity Insiders

MAY 19, 2023

While multi-factor authentication (MFA) generally protects against common methods of gaining unauthorized account access, not all multi-factor authentication methods can defend against sophisticated attacks. Authentication establishes confidence that the claimant has possession of one or more authenticators bound to the credential.

Phishing 109

Phishing Authentication Passwords Social Engineering 109

Thales Cloud Protection & Licensing

MARCH 31, 2022

Azure AD and Thales support for CBA authentication reflects the growing value of high assurance MFA. The EDR initiative relies on Multi-factor Authentication (MFA) as a critical component to protect against cyber threats such as ransomware. Now, Azure AD users can authenticate using X.509 Thu, 03/31/2022 - 12:55.

Authentication 78

Authentication Government Cyber threats Phishing 78

NetSpi Executives

APRIL 27, 2024

Logins without multi-factor authentication. In addition to encrypting data and holding it hostage, ransomware attackers also upload valuable data to other systems on the internet. Rather than stealthily copying the data, ransomware attackers may upload the data quickly to a website via FTP using SSH encryption.

Ransomware 52

Ransomware Cyber Insurance Backups Insurance 52

Thales Cloud Protection & Licensing

JULY 17, 2019

In fact, there’s no way to opt out of the risk. They’re counting on the fact that only 38% or less of healthcare organizations encrypt data. Unfortunately, healthcare organizations fail to encrypt everything even as they face this ever-expanding threat surface due to the sheer volume of personally identifiable information they process.

Healthcare 101

Healthcare Encryption Data breaches Authentication 101

Thales Cloud Protection & Licensing

DECEMBER 4, 2019

Security professionals know adequate security requires encryption, tokenization, authentication, and access management, so why are their good intentions too often sidelined? Encryption Key Custodianship. The study found that encryption rates for U.S The barriers are very real, but not insurmountable. 12 at 2:00 p.m.

Financial Services 22

Financial Services Encryption Threat Reports Digital transformation 22

Duo's Security Blog

MARCH 9, 2022

The Australian government is urging companies in the region to adopt strong cybersecurity practices due to increased global risk stemming from the conflict in Ukraine. Firewall status, drive encryption status, password status and whether an antivirus or anti-malware agent is running can all contribute to improved security resilience.

Cybersecurity 97

Cybersecurity Authentication Passwords VPN 97

Security Boulevard

APRIL 17, 2023

In a recent webinar, Sectigo’s Tim Callan and Nick France discussed the ramifications of 90-day certificates. How will this impact SSL certificates that are used for AS2 Signing/Encryption payload certificates that cannot be automated? What benefits does Sectigo provide over Let's Encrypt once we get to 90-day automated certificates?

Software 49

Software Encryption System Administration CISO 49

Security Boulevard

FEBRUARY 8, 2023

of Morris Risk Management, John Franzino of Grid Security Inc., MSPs experienced rising liability due to dynamic risk as they became the gateway for supply chain attacks over the past few years. Technology, risk management, and insurance are intertwining, but the challenge for insurers is that MSPs want zero risk.

Cyber Insurance 52

Cyber Insurance Insurance Marketing Risk 52

Duo's Security Blog

JANUARY 28, 2022

Imagine a shift away from logging into a “network” to having security seamlessly built into the network, and multi-factor authentication and authorization continuously performed at the application level on the fly — without users typing passwords. The vision being set forth by OMB is ambitious — but vital. What’s Next?

Authentication 52

Authentication Government DNS Encryption 52

NopSec

MAY 1, 2024

With all these distractions security researchers still found time to inform the public that software can introduce risk. The analysis revealed that the SSL VPN end-point was shipped without disk encryption enabled, which made filesystem access trivial. All good stuff. Though well intended, the security control was not without flaws.

Firewall 59

Firewall VPN Software Risk 59

Thales Cloud Protection & Licensing

SEPTEMBER 30, 2021

“If you look at the most major ransomware attacks that have occurred, basic cyber hygiene could have prevented the vast majority of them, so, killing their ability to move laterally,” Matthew Swenson, chief of the Department of Homeland Security’s (DHS) Cyber Crime Unit at Homeland Security Investigations (HSI), said during a recent webinar.

Ransomware 71

Ransomware Cybersecurity Healthcare Education 71

Thales Cloud Protection & Licensing

NOVEMBER 2, 2022

IT and DevOps teams are finding it more difficult than ever to manage emerging risks and challenges using traditional tools and practices. Mitigate outside risks to your ecosystem, for example, because of a vulnerable code component or a flawed IoT device connected to your network. 5 questions seeking an answer. Data Security.

IoT 71

IoT Technology Risk Encryption 71

Thales Cloud Protection & Licensing

JULY 6, 2022

These solutions do this by offering various capabilities like Bring-Your-Own-Encryption (BYOE), multi-factor authentication, and risk assessment. Encryption. around implementing zero trust. Beyond the Public Sector. By nature, the E.O. covers federal agencies. Data Security. Identity & Access Management.

Government 71

Government Encryption Authentication Firewall 71

Cisco Security

AUGUST 26, 2021

Only by integrating these tools into your larger security reporting and analytics infrastructure, and by leveraging actionable responses, can one reduce the threat risk to an organization. CyberArk reduces VPN risk with MFA enforcement on any VPN client that supports RADIUS; including Cisco Secure Firewall. Read more here.

Technology 119

Technology Firewall VPN Authentication 119

Cisco Security

FEBRUARY 14, 2022

That brings up an even higher level of risk. Firms need to ensure seamless remote collaboration, mitigate risk to the network, employees and data, and protect themselves from COVID exposed weaknesses to operations that may have been overlooked previously. Fourth, they should ensure access is authorized, authenticated, and encrypted.

Passwords 104

Passwords Technology Government CISO 104

Cisco Security

AUGUST 26, 2022

It also enhances the threat response capabilities of USM Anywhere by providing orchestration and response actions to isolate or un-isolate hosts based on risks identified in USM Anywhere. HashiCorp Vault is an identity-based secrets and encryption management system. Read more here. Read more here. Read more here. Read more here.

Firewall 127

Firewall Authentication Passwords Threat Detection 127

NopSec

MARCH 6, 2020

The protocol provides an inter-process communication mechanism, which facilitates functions such as remote administration and authentication. For authentication, SMB protocol initially relied on LAN Man and NTLM, and was later enhanced to support NTLMv2 and Kerberos authentication. What is SMBMap? Neat, so what now?

Authentication 52

Authentication Penetration Testing Passwords Accountability 52

Security Boulevard

MAY 19, 2023

By Nathan Davis This body of work also appears in the form of a webinar, which can be accessed here. Some answers extended this to incorporate authenticity, utility, and possession (which form the Parkerian Hexad when combined with the CIA triad). What is security?

Accountability 64

Accountability Energy and Utilities Passwords Banking 64