|
Blog
|
Data Breach

Microsoft Ditches Mandatory Password Expiration: What to Do Instead

Arraya Insights Arraya Insights| June 18, 2019

Earlier this month, Microsoft issued an exciting announcement regarding passwords. Now, “exciting” and “passwords” aren’t two things that normally find themselves together in the same sentence. However, this news is the most significant change in Microsoft’s password policy recommendations in nearly three decades. In a recent blog post, Microsoft announced plans to remove regular mandatory […]

Read More >

Citrix, Equifax, and How to Data Breach-Proof Your Business

Arraya Insights Arraya Insights| March 13, 2019

Last week, Citrix became the latest victim of a high-profile data breach while Equifax, a perennial cyber security punching bag, was raked over the coals by Congress. Both stories represent valuable learning opportunities for organizations seeking to avoid a similar fate. Let’s review each story, then we’ll share some insights into how companies can protect […]

Read More >

6 Security Lessons Learned from Marriott’s Massive Data Breach

Arraya Insights Arraya Insights| December 6, 2018

Last week, buried predictably on a Friday, Marriott revealed it – and, by extension, its guests, had been the victim of a truly massive data breach. All told, the hospitality giant believes attackers gained access to data on some 500 million guests who stayed at its Starwood properties over the past four years. For roughly 327 […]

Fact Checking Cyber Security’s 7 Scariest Urban Legends

Arraya Insights Arraya Insights| October 18, 2018

The weeks leading up to Halloween have always been perfect for retelling urban legends and other scary tales. Since October is also National Cyber Security Awareness Month, these stories don’t only have to focus on creeping monsters and vengeful spirits. Instead, they can be about truly terrifying things, like the hacker who, it turns out, was […]

Read More >

4 Calling Cards of a World Class Incident Response Plan

Arraya Insights Arraya Insights| April 24, 2018

One of the great truths in cyber security, just like in life, is that there’s nothing wrong with expecting the best – as long as you make sure to prepare for the worst. Recent research by The Ponemon Institute, however, suggests far too many businesses are expecting the best cyber security-wise and simply leaving it at that. […]

Read More >

Worse than Ransomware? CISOs Share their Biggest 2018 Concern

Arraya Insights Arraya Insights| February 1, 2018

Data breaches, cyber attacks, ransomware – these things undoubtedly weigh heavily on the minds of modern day CISOs, but not as heavily as one might think. All three of those perennial hot button issues fell short of the top spot in a recent study by The Ponemon Institute of the biggest concerns security and technology […]

5 Steps to Get Your Cyber Security Program on Track in 2018

Arraya Insights Arraya Insights| January 3, 2018

I hear organizations say it every year – “This is the year we’re going to get serious about security.”  They usually mean it, too. Unfortunately, whether it’s due to the day-to-day drudgery of “keeping the lights on” or the pressure to innovate elsewhere in the business, they often fail to execute on those good intentions. […]

Read More >

Equifax Fallout Proves Security Is No Longer Just An IT Concern

Arraya Insights Arraya Insights| October 23, 2017

“My advice is for business leaders to get involved now or be prepared to face the music later.” Tom Clerici, Arraya’s Cyber Security Practice Director, wrote those words to cap off his most recent blog post, entitled “All CEOs Should Pay Attention to Equifax Firings – They May Be Next.” In the post, Tom theorized […]

Read More >

Arraya Insights Radio - Security Strikes Back: Balancing Convenience and Privacy

Arraya Insights Arraya Insights| September 25, 2017

Arraya Insights Radio Episode 1: Security Strikes Back: Balancing Convenience and Privacy Host: Thomas York (Arraya’s Director, Quality and Operational Excellence) Guests: Tom Clerici (Arraya’s Director, Cyber Security) and Matt Sekol (Arraya’s Director, Microsoft and Cloud) In our debut episode, the Arraya Insights Radio crew analyze the latest trends and news stories impacting cyber security, including […]

Read More >

All CEOs Should Pay Attention to Equifax Firings – They May Be Next

Arraya Insights Arraya Insights| September 19, 2017

Nobody was surprised when it was announced this weekend that the chief information officer and chief security officer were both out at Equifax. We all knew that was going to happen because those two roles always get terminated after a major breach. Clearly, it’s always the CIO and CSO’s fault, right…or is it? I’ve never […]

Read More >