OMB on Wednesday released a federal strategy to move the U.S. government toward mature zero trust architectures. White House officials say the new strategy - with a focus on MFA, asset inventories, traffic encryption, and more - is a key step in delivering on Biden's May 2021 executive order.
Maersk was one of dozens of organizations crippled by the NotPetya malware in June 2017. Gavin Ashton and Bharat Halai worked in identity and access management at Maersk and share how the company's technology team tirelessly brought the company back from the brink of an IT systems meltdown.
It has been said that as soon as you connect to the internet, your
infrastructure is potentially breached. Now there is growing recognition
that any network should always be treated as compromised. It should be
assumed that threats, external and internal, are always present, even on
what was previously defined as...
U.K’s Prudential Regulation Authority (PRA) has identified cyber security as a top risk for banking institutions, in addition, a new Bank of England survey shows that nearly three quarters of respondents were worried about cybersecurity, with 59% naming cyber-attacks in the top 5 biggest risks to the UK’s...
U.S. authorities are warning healthcare sector entities of rising threats involving Pysa ransomware and the cybercriminal gang Mespinoza, which operates the malware variant. Meanwhile, healthcare entities in the U.S. and globally continue to battle an assortment of cyberattacks and their fallout.
The road to Zero Trust starts with an entry point on the road map. But what are the common entry points, and how might the journey unfold? Satish Gannu, CTO-Digital of Korn Ferry, discusses the Zero Trust road map with Paul Martini, CEO of iboss.
Applying cloud access security broker’s three functionalities - API-level integration with managed device transfer for visibility, in-line CASB for proxy and other devices, and its control over cloud and other access points - helps provide better control and the ability to protect and secure user access, says Thomas...
LastPass says none of its users accounts have been compromised, although multiple users of the password manager reported receiving email warnings that are normally sent to users who log in from different devices and locations, causing them to think their master passwords had been compromised.
The critical importance of cybersecurity has come to the forefront in 2021 for customers of managed service providers, or MSPs.
Online security has become a “must-have” that MSPs’ customers are willing to pay for - especially when it drives operational efficiencies that can provide longe- term cost savings by...
As cloud email security implementations become more popular, security and risk management professionals are taking an in-depth look at their capabilities. Cloud-based security solutions deployed through APIs instead of a gateway are easier to implement and provide more comprehensive protection.
To find out how to...
Jeremy Grant, coordinator of the Better Identity Coalition, joins three ISMG editors to discuss important cybersecurity issues, including how the Biden administration’s executive order will advance the identity cause, and whether we are any closer to finally abandoning the password.
While there are many solutions that claim to simplify certificate lifecycle management, not all of
them are built to address the unique complexities of today’s expansive and distributed digital
When evaluating a certificate management solution, it is important to look for
key capabilities that...
With the support of the recent executive order on improving the nation's cybersecurity, Zero Trust strategy is gaining greater recognition. But there is still a degree of resistance to Zero Trust adoption. Dr, Chase Cunningham, CSO of Ericom, discusses this and other issues around Zero Trust.
The time for Machine Identity Management is NOW. Hear from 1,000 security and public key infrastructure (PKI) professionals on how automation and SaaS redefine Next-Gen Machine Identity Management.
Download the 2021 report now.
In October, Missouri's governor accused a journalist of hacking after he alerted the state to exposed personal information on a state education website. Now, emails reveal that state planned on thanking him before it chose to pursue prosecution and that the FBI immediately dismissed the incident.