|
Blog
|
Security

Sunburst/Solorigate Aftermath: 4 Lessons Learned from the SolarWinds Breach

Arraya Insights Arraya Insights| December 21, 2020

Organizations everywhere are only just beginning to come to terms with the Sunburst/Solorigate compromise. Even at this stage, it’s clear the backdoor into SolarWinds’ Orion network monitoring and management platform represents one of the most substantial cyber security breaches in recent memory. SolarWinds’ client list reads like a who’s who of the public and private […]

Read More >

2 Ways Attackers Have Tweaked Ransomware to Make it Even More Effective

Arraya Insights Arraya Insights| December 16, 2020

The ransomware playbook used to be fairly straightforward. Attackers would gain access to an organization’s data, lock it down, make their demands, and then wait to see if the bitcoin would roll in. And roll in it did. Ransomware has become a multi-billion dollar industry, one with an alarmingly low barrier to entry thanks to […]

Read More >

Ransomware Attacks Spike Against Healthcare Facilities: How to Keep Yours Safe

Arraya Insights Arraya Insights| December 14, 2020

Already bracing for a potentially long winter due to spiking COVID-19 cases, those in the healthcare industry could soon be forced to fight a battle on a different front. Last month, a trio of government agencies warned of “an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers.” This comes as multiple institutions […]

Read More >

How to Allow (and Perform) Self-Service Password Resets in Microsoft 365

Arraya Insights Arraya Insights| November 25, 2020

To put it bluntly, no one enjoys password resets. For IT, they mean time away from more pressing tasks. The same is true for end users left locked out of their workdays, while they wait for the help desk to step in. It’s a time drain for both sides, but it’s one that can be […]

Read More >

SASE: What Is It and What Can It Do For You?

Arraya Insights Arraya Insights| November 16, 2020

All Posts Coined by Gartner in the summer of 2019, SASE – short for Secure Access Service Edge and pronounced “sassy” – has become one of IT’s favorite buzzwords. Sure, it’s fun to say, but the appeal of SASE is far greater. SASE technology has real potential as a solution to a set of pain points that have been exacerbated since the term’s early days, […]

Read More >

Managed Cyber Security or In-House: Which is Right for You?

Michael Piekarski Michael Piekarski| October 14, 2020

Who wouldn’t love a cyber security silver bullet? Something guaranteed to stop attackers in their tracks. Unfortunately, the reality on the ground is far more complex. What works for one organization may not work for another. This is true not only of the solutions needed to build out a cyber security posture, but of the […]

Read More >

Don’t Let Your COVID-19 Liability Response Become a Liability

Arraya Insights Arraya Insights| September 30, 2020

Concerns around data privacy and data security didn’t vanish with the start of the COVID-19 pandemic. They’ve only been amplified, especially of late, as reopening organizations have sought to collect more information on their users in the effort to keep them safe. Routine temperature checks, contact tracing – many are counting on these (and similar) […]

Read More >

Why Your Company Can’t Afford to Overlook a Web App Vulnerability Scanner

Michael Piekarski Michael Piekarski| September 9, 2020

Vulnerability scanning is something all organizations should be looking into, if they’re not doing it already. Scanning inside and outside the network can help you identify misconfigurations, cyber security gaps or potentially even regulatory shortcomings. The key is to make these scans a habit. After all, just because you’re secure today doesn’t necessarily mean you’ll […]

Read More >

Rightsizing Your VPN Without Sacrificing Remote Worker Security

Arraya Insights Arraya Insights| August 24, 2020

Remember back in March, when workplace doors were closed and employees were sent home for a brief shutdown? Some five months later, it’s safe to say the shutdown has been anything but brief. While some organizations have made the move to reopen on a provisional basis, many others have kept their buildings shuttered. There are […]

Read More >

How to Address Security Compliance Shortfalls Using the CIS Top 20 (Part 3: Organizational Controls)

Arraya Insights Arraya Insights| August 19, 2020

Cyber security, and by extension security compliance, isn’t just about having the right tools. Nor is it only the concern of dedicated security teams or IT in general. True security and compliance are organization-wide efforts and they tie together proven tools with sound processes and an engaged, vigilant user base. Without all of these different […]

Read More >