Blog

Blog

Navigating Indonesia’s Personal Data Protection Law: Key Takeaways for Organizations

Mon, 09/16/2024

Indonesia's newest Personal Data Protection Law is set to go into effect in October 2024. Here's what you need to know to prepare for proper compliance.

Blog

Understanding the Saudi NDMO Standards

Mon, 09/16/2024

As governments find themselves switching fully to digital methods, it becomes time to definitively establish the rules of the security game. The Kingdom of Saudi Arabia’s (KSA’s) National Data Management and Personal Data Protection Standards are designed to do just that, setting for the cybersecurity practices that will safeguard public and government-owned data as part of the Vision 2030 initiative.

Blog

The Importance of Security Service Edge (SSE) For Integrated, Cloud-Delivered Solutions

Thu, 09/12/2024

Security Service Edge (SSE) is a cybersecurity concept that delivers key security capabilities from a cloud-based platform. Read this blog to learn more about what SSE comprises, use cases, and its advantages.

Blog

Patch Tuesday Update September 2024

By Tyler Reguly on Thu, 09/12/2024

Today, we get four vulnerabilities that have seen active exploitation, one of which has also been publicly disclosed.

Vulnerability Research

Patch Tuesday Update - September 2024

By Mieng Lim on Tue, 09/10/2024

Fortra VM will include the Microsoft Patch Tuesday checks in the NIRV 4.50.0 and FVM Agent 2.11 releases.Microsoft addressed 79 vulnerabilities in this release, including 7 rated as Critical and 23 Remote Code Execution vulnerabilities.This release also includes fixes for four vulnerabilities that have been exploited in the wild.CVE-2024-38217 and CVE-2024-38226 are Security Feature Bypass...

Blog

The Benefits and Challenges of Implementing an Extended Detection and Response (XDR) Strategy

Mon, 09/09/2024

Extended Detection and Response (XDR) is an advanced cybersecurity approach that provides a more comprehensive and automated view of threat detection and response. Read this blog to learn more about XDR, its challenges, and key capabilities.

Blog

An Overview of Endpoint Detection and Response (EDR)

Tue, 09/03/2024

EDR, or endpoint detection and response, is a cybersecurity technology that monitors and collects data from endpoints to detect, analyze, investigate, and respond to cybersecurity threats. Learn more about EDR and how it can help organizations in this blog.

Blog

Data Classification Models: Definition and Examples

Fri, 08/30/2024

A data classification model is a framework used to classify data points into specific categories or classes.

Blog

Friday Five: Hacked ISPs, Major Breaches, Insider Threats, & More

Fri, 08/30/2024

Hackers took advantage of a 0-day to steal ISP customers' credentials, a former Verizon employee pleaded guilty to feeding info to a Chinese spy agency, and more. Get up to speed in this week's Friday Five!

Blog

Is Your Data REALLY Safe on the IBM i (AS/400)?

By Tom Huntington on Thu, 08/29/2024

Discover the three things you can do, starting today, to ensure your data is properly secured on your IBM i (AS/400).

Blog

The Password Atmosphere – Problem, or Progress?

By Lisa Lombardo on Mon, 08/26/2024

Password security has evolved from simple physical protections to complex, multi-factor authentication systems. Experts suggest that while traditional passwords are becoming outdated, combining them with new technologies like biometrics and passkeys offers stronger security. Future trends point towards more user-friendly yet robust methods to safeguard digital access.

Blog

What Is the NIST Risk Management Framework (RMF)?

By Antonio Sanchez on Mon, 08/26/2024

The NIST Risk Management Framework, or RMF, is a voluntary 7-step process used to manage information security and privacy risks. By following the NIST RMF, organizations can successfully implement their own risk management programs, maintain compliance, and address the weaknesses that present the greatest danger to their enterprise.

Blog

Understanding Data Security Tools, their Capabilities, and Why They Are Important

By Understanding Data Security Tools, their Capabilities, and Why They Are Important on Mon, 08/26/2024

Data security tools are software programs or services used by organizations to protect digital data from threats such as unauthorized access. Learn what they can do and why they're important in this blog.

Blog

Friday Five: Application Vulnerabilities, Election Infrastructure Security, & More

By Robbie Araiza on Fri, 08/23/2024

As ransomware, misconfigurations, and other vulnerabilities continue to be stubborn threats to mitigate, CISA and the FBI promise election security, and the FAA is pushing for tighter regulations. Learn about these top stories and more in this week's Friday Five!

Blog

My Takeaways from Black Hat USA 2024

By Antonio Sanchez on Mon, 08/19/2024

The importance of resilience and business continuity dominated conversations at Black Hat USA 2024. In this blog, security expert Antonio Sanchez shares his take on this year’s event.

Blog

Data Classification Methods: Ensuring Security and Compliance

Mon, 08/19/2024

Data classification methods are techniques used to organize and categorize data into various distinct classes or groups. These methods are essential for numerous applications, such as data analysis and machine learning, as well as data security, data management, and regulatory compliance.What Is Data Classification?Data classification is the process of organizing and categorizing data into...

Blog

Friday Five: A Breach of Epic Proportions, Ransomware Wins, & More

By Robbie Araiza on Fri, 08/16/2024

Stories on rare, albeit encouraging wins against ransomware gangs took the top headlines this past week. Additionally, read about a massive breach involving Americans' sensitive data, the UN's new cybercrime treaty, and more in this week's Friday Five.

Blog

89% of Security Awareness Programs Are Focused on Social Engineering in 2024

By Antonio Sanchez on Thu, 08/15/2024

Cybersecurity experts from over 70 countries share their insights, candor, and challenges when it comes to raising the level of cybersecurity awareness in their organizations. Learn how Fortra’s Terranova Security can help.

Blog

Patch Tuesday Update August 2024

By Tyler Reguly on Thu, 08/15/2024

The three CVSS 9.8 vulnerabilities included in this month’s patch drop are likely to be the first thing that catches anyone’s attention this month. All three are remote, unauthenticated code execution, the very type of vulnerability where we previously would have used the word, “wormable.”

Vulnerability Research

Patch Tuesday Update - August 2024

By Mieng Lim on Tue, 08/13/2024

Fortra VM will include the Microsoft Patch Tuesday checks in the NIRV 4.48.0 and FVM Agent 2.10 releases.Microsoft addressed 86 vulnerabilities in this release, including 7 rated as Critical and 28 Remote Code Execution vulnerabilities.This release also includes fixes for six vulnerabilities that have been exploited in the wild.Microsoft Project Remote Code Execution Vulnerability (CVE-2024-38189...

Navigating Indonesia’s Personal Data Protection Law: Key Takeaways for Organizations

Understanding the Saudi NDMO Standards

The Importance of Security Service Edge (SSE) For Integrated, Cloud-Delivered Solutions

Patch Tuesday Update September 2024

Patch Tuesday Update - September 2024

The Benefits and Challenges of Implementing an Extended Detection and Response (XDR) Strategy

An Overview of Endpoint Detection and Response (EDR)

Data Classification Models: Definition and Examples

Friday Five: Hacked ISPs, Major Breaches, Insider Threats, & More

Is Your Data REALLY Safe on the IBM i (AS/400)?

The Password Atmosphere – Problem, or Progress?

What Is the NIST Risk Management Framework (RMF)?

Understanding Data Security Tools, their Capabilities, and Why They Are Important

Friday Five: Application Vulnerabilities, Election Infrastructure Security, & More

My Takeaways from Black Hat USA 2024

Data Classification Methods: Ensuring Security and Compliance

Friday Five: A Breach of Epic Proportions, Ransomware Wins, & More

89% of Security Awareness Programs Are Focused on Social Engineering in 2024

Patch Tuesday Update August 2024

Patch Tuesday Update - August 2024

Privacy Policy

Cookie Policy

Terms of Service

Accessibility

Impressum