The Arraya Blog

Organizations everywhere are only just beginning to come to terms with the Sunburst/Solorigate compromise. Even at this stage, it’s clear the backdoor into SolarWinds’ Orion network monitoring and management platform represents one of the most substantial cyber security breaches in recent memory. SolarWinds’ client list reads like a who’s who of the public and private […]

The ransomware playbook used to be fairly straightforward. Attackers would gain access to an organization’s data, lock it down, make their demands, and then wait to see if the bitcoin would roll in. And roll in it did. Ransomware has become a multi-billion dollar industry, one with an alarmingly low barrier to entry thanks to […]

Already bracing for a potentially long winter due to spiking COVID-19 cases, those in the healthcare industry could soon be forced to fight a battle on a different front. Last month, a trio of government agencies warned of “an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers.” This comes as multiple institutions […]

To put it bluntly, no one enjoys password resets. For IT, they mean time away from more pressing tasks. The same is true for end users left locked out of their workdays, while they wait for the help desk to step in. It’s a time drain for both sides, but it’s one that can be […]

All Posts Coined by Gartner in the summer of 2019, SASE – short for Secure Access Service Edge and pronounced “sassy” – has become one of IT’s favorite buzzwords. Sure, it’s fun to say, but the appeal of SASE is far greater. SASE technology has real potential as a solution to a set of pain points that have been exacerbated since the term’s early days, […]

Who wouldn’t love a cyber security silver bullet? Something guaranteed to stop attackers in their tracks. Unfortunately, the reality on the ground is far more complex. What works for one organization may not work for another. This is true not only of the solutions needed to build out a cyber security posture, but of the […]

Concerns around data privacy and data security didn’t vanish with the start of the COVID-19 pandemic. They’ve only been amplified, especially of late, as reopening organizations have sought to collect more information on their users in the effort to keep them safe. Routine temperature checks, contact tracing – many are counting on these (and similar) […]

Vulnerability scanning is something all organizations should be looking into, if they’re not doing it already. Scanning inside and outside the network can help you identify misconfigurations, cyber security gaps or potentially even regulatory shortcomings. The key is to make these scans a habit. After all, just because you’re secure today doesn’t necessarily mean you’ll […]

Remember back in March, when workplace doors were closed and employees were sent home for a brief shutdown? Some five months later, it’s safe to say the shutdown has been anything but brief. While some organizations have made the move to reopen on a provisional basis, many others have kept their buildings shuttered. There are […]

Cyber security, and by extension security compliance, isn’t just about having the right tools. Nor is it only the concern of dedicated security teams or IT in general. True security and compliance are organization-wide efforts and they tie together proven tools with sound processes and an engaged, vigilant user base. Without all of these different […]