Resources

Blog

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

By Ricardo Narvaja on Mon, 09/09/2024

In this blog post, I will explain a vulnerability in the Microsoft Windows Desktop Windows Manager (DWM) Core library that I analyzed when the exploit for Core Impact was being developed. This vulnerability allows an unprivileged attacker to execute code as a DWM user with Integrity System privileges (CVE-2024-30051).Since there was not enough public information at the time to develop the exploit,...

Guide

Guide to Creating a Proactive Cybersecurity Strategy

Cyber attacks are common, with 89% of companies experiencing an attack in the last 12 months*. It’s time to stop asking if attacks will occur and start asking if you can stop attacks from being successful. One of the best ways to answer this question is by employing a proactive security program. Using assessment and testing to harden your cybersecurity measures, proactive security: Uncovers...

Blog

Data Classification and Data Loss Prevention (DLP): A Comprehensive Data Protection Strategy

Tue, 05/23/2023

Data is the world’s currency and has been for some time. Protecting data should be at the top of the list for organizations of any size, and the heart of any security strategy. Think about it: the purpose of any firewall, email solution, compliance regulation, or XDR platform is to keep data safe. Why not cut to the heart of it with a dedicated Data Loss Prevention (DLP) solution? And why not...

Guide

Fortra's Complete Guide to Layered Offensive Security

Most organizations have a decent understanding of the types of defensive security tactics they need to employ to thwart cyberattacks. But offensive security techniques are just as important for detecting existing vulnerabilities that a threat actor has yet to discover and exploit. Learn how to approach offensive security from the ground up, including the value of using a layered security...

Blog

Security Solutions for Managed File Transfer

Tue, 08/30/2022

The next in our guest blog series from Tag Cyber looks the advantages of MFT and what organizations must consider when selecting a software provider.

Blog

Modern Data Security for the Enterprise

Fri, 07/01/2022

In this guest blog, Christopher Wilder of Tag Cyber provides a high-level overview of how companies can layer security solutions to ensure their data is fully protected no matter where it resides, how it travels or is shared.

Guide

10 Data Security Worst Practices and How They Could Lead to Data Breaches

Blog

What is the LGPD? Meet Brazil’s New Powerful Data Protection Law

By Kurt Thomas on Thu, 01/28/2021

Brazil is Latin America’s largest technology hub and has the eighth-largest economy by GDP. Getting to know the ins and outs of LGPD is essential for doing business there.

Blog

Endpoint Antivirus Software: What It Is, and Why You Need It

By Bob Erdman on Mon, 10/19/2020

The threat landscape can be a frightening scene when you look at the malicious attacks and ransomware infiltrating organizations around the globe. The good news: Endpoint antivirus applications are making enormous strides in their ability to protect enterprise-level equipment and data from attack. The bad news: Many companies overlook the need to secure non-Windows infrastructure and focus their...

Blog

Six Strategies to Ensure You Give the Right Access to the Right People at the Right Time

Mon, 08/31/2020

Part 2 of the Improving Your Security-Efficiency Balance Series: One of the primary challenges organizations wrestle with in identity governance is how to achieve the right balance in their company between security and efficiency. In Part 1 of the Improving Your Security-Efficiency Balance Series, we examined the unique balancing act organizations face when it comes to user access. In this blog...

Blog

The Evolution of Cybersecurity Solutions for Organizations

Tue, 08/11/2020

In the early days of the internet, cybersecurity was fairly straightforward, with all solutions and strategies geared toward prevention. While prevention remains critical, cybersecurity has also had to evolve, with businesses layering their defenses and regularly evaluating the status of their safeguards to adapt to change—whether those be organizational or within the wider cybersecurity sphere.

Blog

Open Source SIEM vs. Enterprise-Level SIEM: Which Is Right for You?

Thu, 07/16/2020

Open source and enterprise-level SIEM solutions all have pros and cons. Here are some factors to look at when comparing your options—including one you might not have considered yet.

Blog

Three Lessons Learned from A Data Breach

By Bob Erdman on Mon, 02/24/2020

Simple lessons learned from the many breaches we’ve observed, like careless employees and unusual attack vectors, and ways they can be avoided.

Blog

What Is SIEM?

Fri, 12/20/2019

SIEM (security information and event management) software provides insights into potential security threats through data normalization and threat prioritization, giving IT professionals an effective method of automating processes and centralizing security management in a way that helps them simplify the difficult task of protecting sensitive data.

Blog

The Cybersecurity Dangers of the Dark Web and How to Protect Your Organization

By Bob Erdman on Thu, 04/25/2019

As long as the dark web exists, organizations must learn more about the threat they pose, and how to protect themselves.

Blog

Linux Security: Be Afraid. Be Very Afraid.

By Bob Erdman on Thu, 04/18/2019

Cybersecurity expert, Bob Erdman, sits down with Linux Journal to discuss security threats Linux users face on a daily basis.

Blog

Key Functionality of a Great Cybersecurity Software Solution

Mon, 04/08/2019

Evaluating and implementing cybersecurity software requires diligence. And if your InfoSec team is short staffed, choosing the right tools is more important than ever.

Blog

14 Tools Every Security Admin Should Have in Their Back Pocket

Mon, 04/08/2019

Blog

Cyber Risk Ratings: How Would Your IT Environment Score?

By Bob Erdman on Wed, 12/12/2018

Find out the type of cyber threats that endanger organizations (and their ratings), and how they can protect themselves.

Blog

Why Corporate Networks are Key Targets for Cryptojacking

By Bob Erdman on Thu, 12/06/2018

The days of being able to ignore cryptocurrency is over. Even if you don’t use it, you’re now at risk of being adversely affected by it through cryptomining malware, also known as cryptojacking. Read on to find out what cryptocurrency is, how cryptojacking is on the rise, and how you can protect your organization.

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

Guide to Creating a Proactive Cybersecurity Strategy

Data Classification and Data Loss Prevention (DLP): A Comprehensive Data Protection Strategy

Fortra's Complete Guide to Layered Offensive Security

Security Solutions for Managed File Transfer

Modern Data Security for the Enterprise

10 Data Security Worst Practices and How They Could Lead to Data Breaches

What is the LGPD? Meet Brazil’s New Powerful Data Protection Law

Endpoint Antivirus Software: What It Is, and Why You Need It

Six Strategies to Ensure You Give the Right Access to the Right People at the Right Time

The Evolution of Cybersecurity Solutions for Organizations

Open Source SIEM vs. Enterprise-Level SIEM: Which Is Right for You?

Three Lessons Learned from A Data Breach

What Is SIEM?

The Cybersecurity Dangers of the Dark Web and How to Protect Your Organization

Linux Security: Be Afraid. Be Very Afraid.

Key Functionality of a Great Cybersecurity Software Solution

14 Tools Every Security Admin Should Have in Their Back Pocket

Cyber Risk Ratings: How Would Your IT Environment Score?

Why Corporate Networks are Key Targets for Cryptojacking

Contact Information

Privacy Policy

Cookie Policy

Impressum