The Arraya Blog

Organizations everywhere are only just beginning to come to terms with the Sunburst/Solorigate compromise. Even at this stage, it’s clear the backdoor into SolarWinds’ Orion network monitoring and management platform represents one of the most substantial cyber security breaches in recent memory. SolarWinds’ client list reads like a who’s who of the public and private […]

The ransomware playbook used to be fairly straightforward. Attackers would gain access to an organization’s data, lock it down, make their demands, and then wait to see if the bitcoin would roll in. And roll in it did. Ransomware has become a multi-billion dollar industry, one with an alarmingly low barrier to entry thanks to […]

Already bracing for a potentially long winter due to spiking COVID-19 cases, those in the healthcare industry could soon be forced to fight a battle on a different front. Last month, a trio of government agencies warned of “an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers.” This comes as multiple institutions […]

During the summer of 2017, pharmaceutical giant Merck was one of countless companies, around the world hit by the most devastating cyber-attack in history: NotPetya. Initially masquerading as ransomware, NotPetya turned out to be far worse: a strain of malware designed to destroy systems rather than hold them hostage. The toll NotPetya inflicted on Merck […]

Here’s an encouraging stat: Nearly all (99%) of email-based threats like phishing are totally harmless in and of themselves. In order to become dangerous, they require some type of user interaction, whether that’s clicking on a link, opening an attachment, etc. Yet, email remains a highly popular and lucrative attack vector. In fact, phishing ranks […]

Arraya Insights Radio Episode 15: Cyber Security Incidents: An Audio Survival Guide Cyber Security incidents have become dangerously common. There’s plenty of research supporting that statement, but perhaps the most meaningful proof can be found by scanning recent industry headlines. On this episode of Arraya Insights Radio, we speak to two of our in-house security experts: […]

Every organization should be concerned about malware – although it seems some should be a little more concerned than others. Certain industries seem to land in its crosshairs far more often. Unfortunately for organizations in malware’s favorite verticals, building an effective cyber security plan can be complicated by the realities of life within those industries. […]

The weeks leading up to Halloween have always been perfect for retelling urban legends and other scary tales. Since October is also National Cyber Security Awareness Month, these stories don’t only have to focus on creeping monsters and vengeful spirits. Instead, they can be about truly terrifying things, like the hacker who, it turns out, was […]

Let’s say you have Cisco’s Advanced Malware Protection (AMP) keeping an eye on your corporate network – so you’re good, right? After all, AMP promises to be a cyber security difference-maker, catching the 1% of threats legacy defensive tools miss. Here’s the thing, even though AMP can absolutely be the missing piece that helps your […]

If your organization’s disaster recovery strategy received a grade, what score would it get? As we referenced in a recent blog (5 Signs a Data Center Modernization Project is in Your Future), a sizable number of businesses might not be happy with their marks. According to the research featured in that post, only 27% of […]