Learn more about data exfiltration and methods for preventing data loss in Data Protection 101, our series on the fundamentals of data security.

The personal information on world leaders attending the G20 summit was accidentally released to a third party. Is it a data breach? Maybe not.

Learn about the Payment Card Industry Data Security Standard (PCI DSS) and the PCI Security Standards Council, its independent governing body.

I recently came across a post on LinkedIn, asking about advice related to vulnerability management (VM) and specifically as it relates what elements should be included in the process. I found many participants giving advice which was more assessment related, as opposed to VM related. Seeing this confusion out there, I felt it important to share my views on the differences. So what is the...

Given the popularity of the Mac and the ever increasing number of users, we thought it would be good to share insight that everyone, regardless of what they use their Mac for, should do to protect their system and their data. This list is not all inclusive; however, it does give most users much more control over the security and privacy of their data. Under System Preferences >> Security &...

Application control is a security practice that blocks or restricts unauthorized applications from executing in ways that put data at risk. The control functions vary based on the business purpose of the specific application, but the main objective is to help ensure the privacy and security of data used by and transmitted between applications.

As more firms face pressure to unmask hackers, the stakes get higher and innocent lives are put at risk.

Data encryption defined in Data Protection 101, our series on the fundamentals of data security.

This Digital Guardian case study focuses on how a leading global semiconductor company solved its problems in meeting ITAR compliance without hampering their global manufacturing processes.

Get 101 data security tips on mobile security, password security, secure browsing and more.

30 data security experts discuss the biggest mistakes companies make with data security.

Application whitelisting defined, how application whitelisting works, and more in Data Protection 101, our series on the fundamentals of data security.

New Report from the Federal Trade Commission Presents Key Findings from 2013 IoT Workshop

During some recent research, I came across two issues in a large vulnerability management (VM) vendor’s public community support forum. The first post described a problem in which their tool reported a different number of network endpoint assets from what was seen on “the console.” The second detailed a user experiencing duplicate assets. After some investigation, I determined that both issues...

How did hackers manage to extract terabytes of data from the network of Sony Pictures without direct, physical access? It may have been easier than you would think.

Endpoint security defined in Data Protection 101, our series on the fundamentals of information security, data loss prevention, and more.

Paying tribute to the infosec pioneer behind the reference monitor concept

Sony Pictures Entertainment is the most recent and, perhaps, the highest-profile victim of what might be considered a “Category 5” hack. But it’s hardly the only company to get digitally pants’d by hackers. Here is a list of some other notable victims and details of how they got hacked.

Data Governance defined in Data Protection 101, our series covering the fundamentals of information security.

The definitive guide to developing and deploying data loss prevention strategy, from tips for quick wins to DLP software and tools.