Using Internet Data Sets to Understand Digital Threats

As businesses adapt to the rapidly changing digital landscape, more customer and business operations are shifting from behind the protection of firewalls to the open internet. This new level of exposure makes your company, customers, and prospects vulnerable to the extremely skilled persistent threats across the web, mobile, social, and email.

Fortunately, Internet data can be sorted, classified, and monitored over time to create highly connected data sets that provide a complete picture of your attackers and their evolving techniques. Security professionals must leverage the relationships between these data sets to surface new connections, group similar attack activity, and substantiate assumptions during incident response.

In this white paper, we’ll explore the technique of infrastructure chaining, and explore the data sets available to security professionals such as:

  • Passive DNS
  • WHOIS
  • SSL Certificates
  • Analytical Trackers
  • Host Sequence Pairs
  • Web Components
  • Open Source Intelligence (OSINT)
Get Whitepaper

Appsession: Is our Appetite for Mobile Apps Putting us at Risk? Infographic

With the explosion of mobile app usage, more personal information than ever is flowing through mobile applications. But has our security awareness kept pace? Have consumers adopted best practice behaviors or are they leaving themselves vulnerable to cyber attack?

Download the infographic for a breakdown of the new mobile safety landscape, including how often:

  • Users tclick on ads promoting apps
  • Users click on links in emails, mobile web, and social media promoting apps
  • Users rarely or never check the app details before downloading
  • Users rarely or never inspect the T&C’s or permissions being requested during app installation
View Now

Appsession: Is our Appetite for Mobile Apps Putting us at Risk?

A RiskIQ Mobile Consumer Report

With so much of our personal information now flowing through mobile applications, has our security awareness kept pace? Have consumers adopted best practice behaviors or are they leaving themselves vulnerable to cyber attack?

To better understand consumer behavior, RiskIQ commissioned Ginger Comms to survey 1,000 US and 1,000 UK consumers aged 16 to 60+, specifically focusing on smartphone apps. The survey was conducted during February and March 2017.

The top line results show that over half of all respondents regularly display behaviors that put themselves at risk. Download the report to find out:

  • The percentage of users that click on ads promoting apps
  • The percentage of users that click on links in emails, mobile web, and social media promoting apps
  • The percentage of users that rarely or never inspect the T&C’s or permissions being requested during app installation
  • The percentage of users that reuse passwords across mobile apps
Get Whitepaper

The Rise of Machine Learning in Cybersecurity

All ML technology isn’t created equal. Learn how the CrowdStrike® ML-based Engine Defends Against Unknown Malware. While many organizations are guarding the front door with yesterday’s signature-based antivirus (AV) solutions, today’s unknown malware walks out the back door with all their data. What’s the answer?

A new white paper, “The Rise of Machine Learning in Cybersecurity,” explains machine learning (ML) technology — what it is, how it works and why it offers better protection against the sophisticated attacks that bypass standard security measures. You’ll also learn about CrowdStrike’s exclusive ML technology and how, as part of the Falcon platform’s next-gen AV solution, it dramatically increases your ability to detect attacks that use unknown malwar

Download this white paper to learn:

  • How different types of ML are applied in various industries and why it’s such an effective tool against unknown malware
  • Why ML technologies differ and what factors can increase the accuracy and effectiveness of ML
  • How CrowdStrike’s ML-based technology works as part of the Falcon platform’s next-generation AV, and why it offers superior protection over other AV solution
Get Whitepaper

Privileged Password Security Policy Template

With privileged account credentials a favorite target of hackers, it’s critical that you have password protection policies in place to prevent unauthorized access and demonstrate security compliance. Thycotic and Information Shield make it easy for you.

This free Privileged Password Security Policy Template gives you best-practice policies to help your organization improve IT security and demonstrate regulatory compliance. You’ll save hours of effort leveraging these policies that are easily customizable in a matter of minutes.

  • Downloaded as an editable, easily customized Microsoft Word document
  • Developed according to best practice standards from SANS, NIST, GLBA, ISO17799, ISO9000 and more
  • Details how policies can be enforced with Thycotic Secret Server
Get Whitepaper

Privileged Account Management For Dummies, Thycotic Special Edition

Fast, easy read to get up to speed on Privileged Account Management (PAM) security basics

With so many recent high-profile breaches accomplished through the compromise of passwords on privileged accounts, it’s time all cyber security stakeholders got educated.

This Free Privileged Account Management for Dummies 24-page book gives you, your IT staff, and business stakeholders a practical understanding of privileged account management and its security implications.

  • What is a privileged account
  • Where do privileged accounts reside throughout the IT environment
  • How privileged accounts function
  • Risks associated with privileged accounts
  • How to best protect privileged accounts from hackers and malicious insider threats
Get Whitepaper

Don’t Overlook Your Email Archiving Systems

Today, business users need on-the-go access to all their critical data, which includes emails, documents and attachments. For IT administrators, striking the balance between productivity for users and compliance needs for the organization is necessary.

A September 2017 commissioned study conducted by Forrester Consulting shows 92% of business users believe easily finding emails and related documents using search functions is important or critical to the ability to do their job.

Download the study to discover more of Forrester Consulting’s important findings on the email archiving needs of modern business users—and how you can meet them.

Get Whitepaper

Email Security in a Zero Trust World

To tackle today’s cyber threats, IT security leaders must rethink traditional security strategies. Email security in particular has become a victim of its own success and requires a radical rethink, having played a key role in several high-profile security breaches.

Today’s threats, like spear-phishing, are designed to bypass traditional Secure Email Gateway defenses, often taking advantage of end users who are considered the weakest link in business email security armor. A zero-trust approach to email security is needed.

This white paper discusses how:

  • CISO’s should carefully assess email security as part of a strategic security review
  • IT Managers can evaluate the state of current email defenses and take tactical action to strengthen them
  • Security Administrators can deliver best-practice defense in depth for email
  • Organizations can remove a reliance on trust to more effectively protect information, their network and employees
Get Whitepaper

Ransomware is Increasing the Risks and Impact to Organizations

Cybercriminals constantly engage organizations in a game of leapfrog: system defenses improve, so malware searches for new holes. Recently, ransomware, which has been around since 1989, has been gaining momentum.

Download this Mimecast sponsored report to learn about this growing threat, its impact to organizations and the ways to help thwart an attack.

Get Whitepaper

Employee Social Network Password Practices a Major Workplace Risk

Millions of employees using social media accounts represent a major workplace risk if/when those accounts are compromised. Once hacked, a social network account can easily provide access to information that gives hackers access to other facets of users’ lives, such as their work computers and email accounts.

To make matters worse, large social networks don’t remind or make clear to users the risks associated with weak passwords, or never changing their passwords. In fact, new social network platforms allow for a single logon that is linked to multiple social media accounts so that users can avoid having to remember multiple passwords for multiple accounts.

This is why you should get the RSA Survey Report & Executive Summary now

  • You'll get important highlights from the RSA Survey key findings.
  • You'll get a great list of free, professional password security tools.
  • You'll learn details about the disconnect between security professionals and their own cybersecurity habits (and maybe some of yours too).
  • You'll get excellent recommendations on how you can protect your user and privileged account credentials by implementing proven password security best practices and using automated tools.
Get Whitepaper

State of PAM Annual Report

Benchmark Global Survey shows Privileged Account Management a top security priority but failing in enforcement

While 80% consider PAM security a high priority nearly two-thirds still rely on manual methods to manage privileged accounts and only one in ten have implemented an automated commercial solution.

The results are especially alarming when you consider that privileged account passwords and access are a prime target for hackers and one of the biggest cyber security risks for breaching the defenses of any organization.

Get Whitepaper

Black Hat 2016: Hacker Survey Report

Thycotic’s survey of hacker attendees at Black Hat 2016 in Las Vegas shows overwhelming support for data privacy among respondents. Yet, in a seeming contradiction of their own beliefs, nearly half said they would be willing to hack your password for a fee if asked by the FBI.

Read the full report to learn:

  • How hackers feel about data privacy and FBI cracking into the San Bernardino shooter’s iPhone in March of 2016
  • How much hackers would demand to be paid to hack your phone for the FBI
  • The top systems hackers say you should protect now

Bottom line: more than 77% of Black Hat survey hackers believe no password is safe from hackers, or the government for that matter.

Get Whitepaper

Today’s Mainframes Are No Longer Secure…and It Impacts You More Than You’d Think

Read why you need to protect privileged account passwords on your IBM z Systems

Mainframe privileged accounts are prime targets for hackers, giving them complete access to your critical systems. Yet far too many organizations still have mainframe privileged accounts that are unknown, unmanaged, and unprotected.

Today’s Mainframes are No Longer Secure – and it Impacts You More than You’d Think

Read this Free Whitepaper to:

  • Understand why IBM z/OS privileged accounts pose a very real security risk
  • Learn best practices to protect IBM z System passwords from hackers and malicious insiders
Get Whitepaper

KingSlayer – A Supply Chain Attack

RSA Research investigated the source of suspsicious, observed beaconing thought to be associated with targeted malware. In the course of this tactical hunt for unidentified code, RSA discovered a sophisticated attack on a software supply-chain involving a Trojan inserted in otherwise legitimate software; software that is used typically used by enterprise system administrators. Get details of this attack as well as mitigation and detection strategies.
Get Whitepaper