Equifax Fallout Proves Security Is No Longer Just An IT Concern

Arraya Insights Arraya Insights| October 23, 2017

“My advice is for business leaders to get involved now or be prepared to face the music later.” Tom Clerici, Arraya’s Cyber Security Practice Director, wrote those words to cap off his most recent blog post, entitled “All CEOs Should Pay Attention to Equifax Firings – They May Be Next.” In the post, Tom theorized […]

Read More >

Don't Forget About September’s Non-Equifax Security Disasters

Arraya Insights Arraya Insights| October 6, 2017

October is National Cyber Security Awareness Month meaning that for one whole month issues such as security hygiene, data breaches, and defense strategies should take center stage. Although, after the September the business world just had, it might be hard to notice much of a difference. Even setting aside the near history-making cyber disaster that […]

Read More >

All CEOs Should Pay Attention to Equifax Firings – They May Be Next

Tom Clerici Tom Clerici| September 19, 2017

Nobody was surprised when it was announced this weekend that the chief information officer and chief security officer were both out at Equifax. We all knew that was going to happen because those two roles always get terminated after a major breach. Clearly, it’s always the CIO and CSO’s fault, right…or is it? I’ve never […]

Read More >

What the Equifax Breach Means for the Future of Securing Sensitive Data

Tom Clerici Tom Clerici| September 12, 2017

There’s really no nice way to say it, what happened at Equifax last week was the biggest failure to safeguard public data to date. Yahoo had more records compromised, but those weren’t nearly as sensitive.  Furthermore, Equifax’s response has been characterized by Brian Krebs, a leading security expert, as a “dumpster fire.” Krebs goes on […]

Read More >

5 Sneaky Security Trends That Demand IT's Attention

Arraya Insights Arraya Insights| September 8, 2017

There’s a positive moment at the top of Cisco’s 2017 Midyear Cybersecurity Report, one which acknowledges the advances security pros have made regarding preventing and recovering from attacks. Unfortunately – and predictably – this new report isn’t all pats on the back. Instead, the conversation shifts to a number of trends observed by Cisco, each […]

Read More >

How This NY Law Could Change the Cyber Security Game

Tom Clerici Tom Clerici| September 1, 2017

On Monday August 28th, the 180-day transitional period for compliance with the New York Department of Financial Services Cyber Security Law came to an end. This means that covered entities are now required to be in compliance with elements of the law unless otherwise specified. The date is significant because companies affected by the law […]

Read More >

What the Feds' Healthcare Security Moves Mean For the Rest of Us

Tom Clerici Tom Clerici| July 21, 2017

The healthcare industry is under cyber assault.  Few industries have been impacted by recent security incidents quite like healthcare companies.  In May, WannaCry shut down emergency rooms and other medical services for 16 National Health System facilities in the U.K.  Last month, the drug manufacturer Merck experienced a ransomware attack that affected all of their offices […]

Read More >

North Korea, Russia and Their Effect on Your Cyber Security

Arraya Insights Arraya Insights| July 5, 2017

Names like “Sandworm” and “Hidden Cobra” may sound as though they were pulled from the pages of an epic sci-fi novel, however, the threats they pose are very real. These fantastical monikers actually refer to a pair of shadowy – and allegedly state-sponsored – global cybercrime initiatives. Upon closer inspection, the tactics and endgames employed […]

Read More >

Petya, WannaCry Defense Should Be Easy – Here’s Why

Tom Clerici Tom Clerici| June 29, 2017

The dust hasn’t even settled on WannaCry and yet there’s already a new global ransomware epidemic making headlines. Just last week, Australian police discovered WannaCry, the malware strain that dominated tech coverage back in May, in some of their traffic cameras. This WannaCry aftershock was upstaged this week, however, by Petya (also known by several […]

Read More >

Feds Warn of Sophisticated Cyber Threat: 5 Steps to Take Now

Arraya Insights Arraya Insights| June 22, 2017

Do you know where your administrator credentials are? Hopefully, the answer to that is “With my administrators.” However, it may not be the only answer as per a recent warning issued by the federal government. The National Cybersecurity and Communications Integration Center (NCCIC) has uncovered what it calls an “emerging, sophisticated campaign,” one that uses […]

Read More >