|
Blog
|
Cyber Security

Planning to Roll Out a SIEM? Do These 3 Things First

Arraya Insights Arraya Insights| August 5, 2020

So, you’ve decided to invest in a SIEM. Maybe you’ve even chosen the one that seems to be the best fit for your organization’s needs. Soon, your security team will be awash in data, with real time insights coming in to one central hub from across your environment. Hackers and any other malicious actors will […]

Read More >

How to Address Security Compliance Shortfalls Using the CIS Top 20 (Part 2: Foundational Controls)

Arraya Insights Arraya Insights| July 30, 2020

Security and compliance may not be one and the same, however, the Center for Internet Security (CIS) Top 20 Controls can substantially help organizations achieve both. Strict adherence to CIS’s nearly two dozen cyber security best practices can help organizations ready their defenses for the worst today’s cyber criminals can muster. Additionally, the controls can […]

Read More >

How to Address Security Compliance Shortfalls Using the CIS Top 20 (Part 1: Basic Controls)

Arraya Insights Arraya Insights| July 8, 2020

Those in fields such as healthcare and financial services are no strangers to finding ways to live in harmony with data privacy and cyber security regulations. However, with the passage of statutes like GDPR and the California Consumer Privacy Act, those headaches are now being felt more acutely across all industries. What’s more, they’re also […]

Read More >

Verizon’s Business 2020 Data Breach Investigations Report: 7 Insights for CISOs

Arraya Insights Arraya Insights| June 11, 2020

Now in its 13th year, the Verizon Business Data Breach Investigations Report has become an annual repository of data points showcasing what’s working (and what isn’t) for cyber criminals and those who oppose them. This time, Verizon’s research team began with a global pool of nearly 160,000 suspected security incidents, distilling them down into the […]

Read More >

9 Revealing Stats from Cisco’s 2020 CISO Benchmark Study

Arraya Insights Arraya Insights| May 11, 2020

Looking for some insight into what your peers are doing (and seeing) as they work to keep their own organizations secure? One resource worth checking out is Cisco’s 2020 CISO Benchmark Study. In compiling this incarnation of its yearly tradition, Cisco crowd-sourced the knowledge and experiences of more than 2,800 technology decision-makers from around the […]

Critical vCenter Server 6.7 Bug You Need to Patch ASAP

Arraya Insights Arraya Insights| May 5, 2020

It can be tough to keep up with applying patches under normal circumstances and the last few weeks have certainly been anything but normal. However, if you use vCenter Server 6.7 (with embedded or external platform services controller [PSC]) to help manage your organization’s data center, you’ll want patching at the top of your team’s […]

Read More >

Coronavirus Scams: 9 Keys to Protecting Your Organization and Users

Arraya Insights Arraya Insights| April 20, 2020

Cyber scammers love a crisis and the current coronavirus outbreak is no exception. As employers and employees alike struggle to find their way in this new (and hopefully short-lived) reality, criminals are finding that business is booming. Fear and uncertainty are tools of their trade and both are, sadly, in ample supply. Compounding the problem […]

Read More >

Ask a Tech: Microsoft to End Support for Basic Authentication

Arraya Insights Arraya Insights| April 16, 2020

As part of the company’s ongoing efforts to boost security throughout its solution portfolio, Microsoft has announced that, during the second half of 2021, it will pull the plug on basic authentication in Exchange Online. From that point on, applications and user identities must be validated via – what else? – modern authentication. We checked […]

Cisco Releases Critical Patches for Millions of Phones, Routers, More

Arraya Insights Arraya Insights| February 18, 2020

Cisco has released patches for not one, not two, not three but five high-risk vulnerabilities affecting potentially tens of millions of its devices. If left unaddressed, these exposures could allow remote attackers to take control of desktop phones, switches, routers, and even security cameras. Despite the massive assortment of possible targets, as of yet, there’s […]

Read More >

Why You Need to Patch Your Windows 10, Server Instances ASAP

Arraya Insights Arraya Insights| January 27, 2020

Heads up: Microsoft and the National Security Agency (NSA) just sounded the alarm on a newly-discovered Windows vulnerability, one that has left potentially hundreds of millions of devices open to attack. Designated CVE-2020-0601, it affects certificate validation within devices running Windows 10, Windows Server 2016, Windows Server 2019, and Windows Server version 1803. Essentially, attackers […]