|
Blog
|
Security

How to Address Security Compliance Shortfalls Using the CIS Top 20 (Part 1: Basic Controls)

Arraya Insights Arraya Insights| July 8, 2020

Those in fields such as healthcare and financial services are no strangers to finding ways to live in harmony with data privacy and cyber security regulations. However, with the passage of statutes like GDPR and the California Consumer Privacy Act, those headaches are now being felt more acutely across all industries. What’s more, they’re also […]

Read More >

Verizon’s Business 2020 Data Breach Investigations Report: 7 Insights for CISOs

Arraya Insights Arraya Insights| June 11, 2020

Now in its 13th year, the Verizon Business Data Breach Investigations Report has become an annual repository of data points showcasing what’s working (and what isn’t) for cyber criminals and those who oppose them. This time, Verizon’s research team began with a global pool of nearly 160,000 suspected security incidents, distilling them down into the […]

Read More >

9 Revealing Stats from Cisco’s 2020 CISO Benchmark Study

Arraya Insights Arraya Insights| May 11, 2020

Looking for some insight into what your peers are doing (and seeing) as they work to keep their own organizations secure? One resource worth checking out is Cisco’s 2020 CISO Benchmark Study. In compiling this incarnation of its yearly tradition, Cisco crowd-sourced the knowledge and experiences of more than 2,800 technology decision-makers from around the […]

Read More >

Coronavirus Scams: 9 Keys to Protecting Your Organization and Users

Arraya Insights Arraya Insights| April 20, 2020

Cyber scammers love a crisis and the current coronavirus outbreak is no exception. As employers and employees alike struggle to find their way in this new (and hopefully short-lived) reality, criminals are finding that business is booming. Fear and uncertainty are tools of their trade and both are, sadly, in ample supply. Compounding the problem […]

Read More >

Why You Need to Patch Your Windows 10, Server Instances ASAP

Arraya Insights Arraya Insights| January 27, 2020

Heads up: Microsoft and the National Security Agency (NSA) just sounded the alarm on a newly-discovered Windows vulnerability, one that has left potentially hundreds of millions of devices open to attack. Designated CVE-2020-0601, it affects certificate validation within devices running Windows 10, Windows Server 2016, Windows Server 2019, and Windows Server version 1803. Essentially, attackers […]

Read More >

Cyber Insurance Gap May Leave Merck Hanging After NotPetya

Arraya Insights Arraya Insights| December 10, 2019

During the summer of 2017, pharmaceutical giant Merck was one of countless companies, around the world hit by the most devastating cyber-attack in history: NotPetya. Initially masquerading as ransomware, NotPetya turned out to be far worse: a strain of malware designed to destroy systems rather than hold them hostage. The toll NotPetya inflicted on Merck […]

Read More >

3 Factors (Besides Budget) That Promote Cyber Security Success

Arraya Insights Arraya Insights| December 5, 2019

Here’s something we can all be thankful for this holiday season: Larger cyber security budgets are reportedly on their way! In a recent FireEye study, 76% of participants said they expect their security budgets to increase in 2020. That’s obviously encouraging for those fighting the good fight and bad news for those on the other […]

Read More >

Why Phishing Campaigns Succeed - And How to Fight Back

Arraya Insights Arraya Insights| September 25, 2019

Here’s an encouraging stat: Nearly all (99%) of email-based threats like phishing are totally harmless in and of themselves. In order to become dangerous, they require some type of user interaction, whether that’s clicking on a link, opening an attachment, etc. Yet, email remains a highly popular and lucrative attack vector. In fact, phishing ranks […]

Read More >

8 Cyber Security Blind Spots that Could Cost SMBs Big

Arraya Insights Arraya Insights| September 5, 2019

No entity, no matter the size, can afford cyber security blind spots. The recent string of ransomware attacks targeting local governments has underscored that point. Hackers have gone after major cities like Baltimore and they’ve hit places the average person is less familiar with, like Lake City, FL. Despite the risks, many small-to-midsized municipalities, businesses, […]

Read More >

Microsoft as a Security Company? 6 Updates Behind the Cliché

Arraya Insights Arraya Insights| September 3, 2019

Raise your hand if you’ve heard someone describe Microsoft as a “security company” at some point in the last few years. We can’t say for sure – maybe because your Microsoft desktop is so secure – but we’re guessing there are plenty of hands in the air. We get it. Given cyber security’s status as […]

Read More >