3 Reasons Why IT Isn’t Managing Permissions (Even Though They Should)

The core of your organization’s security stance is built on a massive number of individual permissions to both on-premises and cloud-based resources. With the increase in cyberattacks, concerns around insider threats, and the growing need to meet multiple compliance mandates centered around data security of various types of data, it seems like permissions should be … Read more3 Reasons Why IT Isn’t Managing Permissions (Even Though They Should)

Top 10 Active Directory Service Accounts Best Practices in 2019

With Windows Active Directory, a range of different account types can be set up with the necessary permissions, access, and roles. These include service accounts, which are intended for use when installing applications or services on the operating system. Common types of Active Directory service accounts include built-in local user accounts, domain user accounts, managed … Read moreTop 10 Active Directory Service Accounts Best Practices in 2019

4 Ways Cyberattackers Take Advantage of Mismanaged Permissions

If we’ve learned nothing else about cybercriminal organizations over the last few years, we know for certain these folks are experts on Microsoft security. They’re no longer simply opportunistically gaining access to your network; instead, they’re leveraging known vulnerabilities in operating systems and applications and using the very network they’ve compromised to assist them in finding their intended target … Read more4 Ways Cyberattackers Take Advantage of Mismanaged Permissions

Top 6 Active Directory Security Groups Best Practices in 2019

Active Directory is essentially a registry containing all the information about a network, including users, groups, computers and printers, and servers. Each of these things, whether physical or virtual, is considered an “object” in Active Directory, and has various attributes assigned to it, such as a name, number, or group membership. Active Directory is used … Read moreTop 6 Active Directory Security Groups Best Practices in 2019

RBAC vs. ABAC: What’s the Difference?

In any company, network users must be both authenticated and authorized before they can access parts of the system capable of leading to security breaches. The process of gaining authorization is called access control. In this guide, I discuss the two main methods for managing access control for your systems—role-based access control (RBAC) and attribute-based … Read moreRBAC vs. ABAC: What’s the Difference?

3 Ways Your Permissions Are in Worse Shape Than You Think

IT is really busy these days. In fact, IT’s been busy for as long as you can remember. Security issues today alone could keep you busy full-time, but there’s just not enough time in the day. Strategic initiatives and fires seem to take precedent daily, pushing some of the more necessary, but rudimentary, parts of … Read more3 Ways Your Permissions Are in Worse Shape Than You Think

What Is Threat Intelligence? Definition and Types

Since almost everything we own is connected to the internet, it’s time to take another look at cybersecurity. The nature of cybersecurity threats has changed since the early years of the web: cybercriminals are getting more sophisticated and less obvious. According to the Verizon Data Breach Investigations Report, in 2018, 74% of data breaches were … Read moreWhat Is Threat Intelligence? Definition and Types

8 Best HIDS Tools—Host-Based Intrusion Detection Systems

Even when we have the best of intentions and work hard to keep our systems protected, human beings are fallible. Hackers know this, which can lead to the creation of elaborate and convincing ploys used to trick your end users into divulging credentials, allowing hackers access to your systems. For this reason, it’s essential for … Read more8 Best HIDS Tools—Host-Based Intrusion Detection Systems

Ultimate Guide to PCI DSS Compliance Requirements in 2019

When you make a credit card transaction, the last thing you want to think about is your data getting stolen. Fortunately, credit card companies put several measures in place to make sure this doesn’t happen. For businesses dealing with customer payments, PCI DSS compliance measures are a simple and necessary step in making sure customer … Read moreUltimate Guide to PCI DSS Compliance Requirements in 2019