|
Blog
|
Security

Cisco Releases Critical Patches for Millions of Phones, Routers, More

Arraya Insights Arraya Insights| February 18, 2020

Cisco has released patches for not one, not two, not three but five high-risk vulnerabilities affecting potentially tens of millions of its devices. If left unaddressed, these exposures could allow remote attackers to take control of desktop phones, switches, routers, and even security cameras. Despite the massive assortment of possible targets, as of yet, there’s […]

Read More >

Why You Need to Patch Your Windows 10, Server Instances ASAP

Arraya Insights Arraya Insights| January 27, 2020

Heads up: Microsoft and the National Security Agency (NSA) just sounded the alarm on a newly-discovered Windows vulnerability, one that has left potentially hundreds of millions of devices open to attack. Designated CVE-2020-0601, it affects certificate validation within devices running Windows 10, Windows Server 2016, Windows Server 2019, and Windows Server version 1803. Essentially, attackers […]

5 App Dev Myths Part 4: Custom Development Compromises My Security

Matthew Vignau Matthew Vignau| January 15, 2020

There’s a great amount of interest in custom-built applications – and quite a few misconceptions about them as well. Arraya’s Application Development team has encountered many of these, including concerns about complexity, use cases, and more. During this five-part series, our team will seek to dispel some of the more common misunderstandings about custom-built applications […]

Read More >

Staying Safe in the Cloud: 6 Must-Have Conversations

Arraya Insights Arraya Insights| December 12, 2019

Cloud has dominated technology conversations in recent years, a trend which shows no signs of reversing come the new year. In its 2020 State of IT Report, Spiceworks projects that hosted/cloud-based services will command nearly 29% of organizational IT budgets next year, a figure on par with 2019 totals. With organizations continuing to spend big […]

Cyber Insurance Gap May Leave Merck Hanging After NotPetya

Arraya Insights Arraya Insights| December 10, 2019

During the summer of 2017, pharmaceutical giant Merck was one of countless companies, around the world hit by the most devastating cyber-attack in history: NotPetya. Initially masquerading as ransomware, NotPetya turned out to be far worse: a strain of malware designed to destroy systems rather than hold them hostage. The toll NotPetya inflicted on Merck […]

8 Cyber Security Blind Spots that Could Cost SMBs Big

Arraya Insights Arraya Insights| September 5, 2019

No entity, no matter the size, can afford cyber security blind spots. The recent string of ransomware attacks targeting local governments has underscored that point. Hackers have gone after major cities like Baltimore and they’ve hit places the average person is less familiar with, like Lake City, FL. Despite the risks, many small-to-midsized municipalities, businesses, […]

Read More >

Microsoft as a Security Company? 6 Updates Behind the Cliché

Arraya Insights Arraya Insights| September 3, 2019

Raise your hand if you’ve heard someone describe Microsoft as a “security company” at some point in the last few years. We can’t say for sure – maybe because your Microsoft desktop is so secure – but we’re guessing there are plenty of hands in the air. We get it. Given cyber security’s status as […]

Read More >

When to Trust in TACACS+: 3 Use Cases

Arraya Insights Arraya Insights| July 3, 2019

These days, everybody is looking for a cyber security silver bullet. Organizations want something flashy, new, and most importantly, capable of besting any threat or malicious actor that may cross its path. TACACS+ is none of those things. In truth, that perfect cyber security cure-all may never materialize. Instead, the most successful security postures use […]

Read More >

Keeping Your Organization Safe with Password Management and DUO 2FA

Brandon Levengood Brandon Levengood| June 27, 2019

Most cybersecurity experts will advise employees to keep their personal information off their company-issued devices. In fact, most companies’ acceptable use policies require it. Yet, despite the ample warnings and policies, employees continue to use their work devices for decidedly non-work purposes. With the growing popularity of remote working, road-warriors, bring your own device (BYOD), […]

Read More >

Citrix, Equifax, and How to Data Breach-Proof Your Business

Arraya Insights Arraya Insights| March 13, 2019

Last week, Citrix became the latest victim of a high-profile data breach while Equifax, a perennial cyber security punching bag, was raked over the coals by Congress. Both stories represent valuable learning opportunities for organizations seeking to avoid a similar fate. Let’s review each story, then we’ll share some insights into how companies can protect […]

Read More >