|
Blog
|
Security

Sunburst/Solorigate Aftermath: 4 Lessons Learned from the SolarWinds Breach

Arraya Insights Arraya Insights| December 21, 2020

Organizations everywhere are only just beginning to come to terms with the Sunburst/Solorigate compromise. Even at this stage, it’s clear the backdoor into SolarWinds’ Orion network monitoring and management platform represents one of the most substantial cyber security breaches in recent memory. SolarWinds’ client list reads like a who’s who of the public and private […]

Read More >

Ransomware Attacks Spike Against Healthcare Facilities: How to Keep Yours Safe

Arraya Insights Arraya Insights| December 14, 2020

Already bracing for a potentially long winter due to spiking COVID-19 cases, those in the healthcare industry could soon be forced to fight a battle on a different front. Last month, a trio of government agencies warned of “an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers.” This comes as multiple institutions […]

Read More >

Expert Q&A: MX Security Appliance Licensing Update

Arraya Insights Arraya Insights| December 7, 2020

Arraya Inside Sales Engineer Matt Rush reviews some of the changes that have come to the Meraki platform and Meraki licensing recently. One of the revisions Matt spotlights involves the MX Security Appliance and its applicable licensing.

Planning to Roll Out a SIEM? Do These 3 Things First

Arraya Insights Arraya Insights| August 5, 2020

So, you’ve decided to invest in a SIEM. Maybe you’ve even chosen the one that seems to be the best fit for your organization’s needs. Soon, your security team will be awash in data, with real time insights coming in to one central hub from across your environment. Hackers and any other malicious actors will […]

Read More >

How to Address Security Compliance Shortfalls Using the CIS Top 20 (Part 2: Foundational Controls)

Arraya Insights Arraya Insights| July 30, 2020

Security and compliance may not be one and the same, however, the Center for Internet Security (CIS) Top 20 Controls can substantially help organizations achieve both. Strict adherence to CIS’s nearly two dozen cyber security best practices can help organizations ready their defenses for the worst today’s cyber criminals can muster. Additionally, the controls can […]

Read More >

Verizon’s Business 2020 Data Breach Investigations Report: 7 Insights for CISOs

Arraya Insights Arraya Insights| June 11, 2020

Now in its 13th year, the Verizon Business Data Breach Investigations Report has become an annual repository of data points showcasing what’s working (and what isn’t) for cyber criminals and those who oppose them. This time, Verizon’s research team began with a global pool of nearly 160,000 suspected security incidents, distilling them down into the […]

Read More >

9 Revealing Stats from Cisco’s 2020 CISO Benchmark Study

Arraya Insights Arraya Insights| May 11, 2020

Looking for some insight into what your peers are doing (and seeing) as they work to keep their own organizations secure? One resource worth checking out is Cisco’s 2020 CISO Benchmark Study. In compiling this incarnation of its yearly tradition, Cisco crowd-sourced the knowledge and experiences of more than 2,800 technology decision-makers from around the […]

Ask a Tech: Microsoft to End Support for Basic Authentication

Arraya Insights Arraya Insights| April 16, 2020

As part of the company’s ongoing efforts to boost security throughout its solution portfolio, Microsoft has announced that, during the second half of 2021, it will pull the plug on basic authentication in Exchange Online. From that point on, applications and user identities must be validated via – what else? – modern authentication. We checked […]

Cisco Releases Critical Patches for Millions of Phones, Routers, More

Arraya Insights Arraya Insights| February 18, 2020

Cisco has released patches for not one, not two, not three but five high-risk vulnerabilities affecting potentially tens of millions of its devices. If left unaddressed, these exposures could allow remote attackers to take control of desktop phones, switches, routers, and even security cameras. Despite the massive assortment of possible targets, as of yet, there’s […]

Read More >

Why You Need to Patch Your Windows 10, Server Instances ASAP

Arraya Insights Arraya Insights| January 27, 2020

Heads up: Microsoft and the National Security Agency (NSA) just sounded the alarm on a newly-discovered Windows vulnerability, one that has left potentially hundreds of millions of devices open to attack. Designated CVE-2020-0601, it affects certificate validation within devices running Windows 10, Windows Server 2016, Windows Server 2019, and Windows Server version 1803. Essentially, attackers […]