|
Blog
|
Security

8 Cyber Security Blind Spots that Could Cost SMBs Big

Arraya Insights Arraya Insights| September 5, 2019

No entity, no matter the size, can afford cyber security blind spots. The recent string of ransomware attacks targeting local governments has underscored that point. Hackers have gone after major cities like Baltimore and they’ve hit places the average person is less familiar with, like Lake City, FL. Despite the risks, many small-to-midsized municipalities, businesses, […]

Read More >

Microsoft as a Security Company? 6 Updates Behind the Cliché

Arraya Insights Arraya Insights| September 3, 2019

Raise your hand if you’ve heard someone describe Microsoft as a “security company” at some point in the last few years. We can’t say for sure – maybe because your Microsoft desktop is so secure – but we’re guessing there are plenty of hands in the air. We get it. Given cyber security’s status as […]

Read More >

When to Trust in TACACS+: 3 Use Cases

Arraya Insights Arraya Insights| July 3, 2019

These days, everybody is looking for a cyber security silver bullet. Organizations want something flashy, new, and most importantly, capable of besting any threat or malicious actor that may cross its path. TACACS+ is none of those things. In truth, that perfect cyber security cure-all may never materialize. Instead, the most successful security postures use […]

Read More >

Keeping Your Organization Safe with Password Management and DUO 2FA

Brandon Levengood Brandon Levengood| June 27, 2019

Most cybersecurity experts will advise employees to keep their personal information off their company-issued devices. In fact, most companies’ acceptable use policies require it. Yet, despite the ample warnings and policies, employees continue to use their work devices for decidedly non-work purposes. With the growing popularity of remote working, road-warriors, bring your own device (BYOD), […]

Read More >

Microsoft Ditches Mandatory Password Expiration: What to Do Instead

Arraya Insights Arraya Insights| June 18, 2019

Earlier this month, Microsoft issued an exciting announcement regarding passwords. Now, “exciting” and “passwords” aren’t two things that normally find themselves together in the same sentence. However, this news is the most significant change in Microsoft’s password policy recommendations in nearly three decades. In a recent blog post, Microsoft announced plans to remove regular mandatory […]

Read More >

Citrix, Equifax, and How to Data Breach-Proof Your Business

Arraya Insights Arraya Insights| March 13, 2019

Last week, Citrix became the latest victim of a high-profile data breach while Equifax, a perennial cyber security punching bag, was raked over the coals by Congress. Both stories represent valuable learning opportunities for organizations seeking to avoid a similar fate. Let’s review each story, then we’ll share some insights into how companies can protect […]

Read More >

3 Standout New Features in Cisco's Firepower 6.3 Release

Arraya Insights Arraya Insights| February 21, 2019

Cisco recently released version 6.3, the latest iteration of software powering its Firepower family of cyber security solutions. Included as part of this update are several features that have long sat atop the wish lists of Cisco security shops. We caught up with members of our Network and Security team to learn more about what’s […]

Read More >

3 Unexpected Business Benefits of GDPR Compliance

Arraya Insights Arraya Insights| February 18, 2019

Estimates vary as to how many organizations globally consider themselves compliant with the European Union’s General Data Protection Regulation (GDPR). One thing is for sure, organizations who have yet to cross that line have plenty of motivation to do so soon. Just last month, Google became the first major tech company dinged under GDPR. The […]

Read More >

DNS Hijacking Prompts Historic CISA Emergency Directive

Arraya Insights Arraya Insights| January 28, 2019

An ongoing malicious campaign targeting federal government websites prompted a historic response from the Cybersecurity and Infrastructure Security Agency (CISA). The agency, which operates under the banner of the Department of Homeland Security, issued its first ever emergency directive last week in an attempt to thwart a series of DNS hijacking attacks. Now, granted, at-risk […]

Read More >

6 Security Lessons Learned from Marriott’s Massive Data Breach

Arraya Insights Arraya Insights| December 6, 2018

Last week, buried predictably on a Friday, Marriott revealed it – and, by extension, its guests, had been the victim of a truly massive data breach. All told, the hospitality giant believes attackers gained access to data on some 500 million guests who stayed at its Starwood properties over the past four years. For roughly 327 […]

Read More >