123456 – still the world’s most popular password is also one of the most insecure. Passphrases offer an alternative to passwords. They are longer and yet easy to remember. But do they really offer better protection? It takes hackers less than a second to crack simple passwords. Replacing letters with numbers or special characters does …
The perimeter of the LAN is a major target for cybercriminals. Many LAN solutions lack integrated security, making complementary products necessary. That means added cost and complexity in managing them. Even solutions that have security capabilities are often not directly integrated with the LAN edge. Inadequate security of the LAN edge can lead to configurations …
Virtual data rooms are used for the secure exchange of documents, for example during due diligence. There is also to be a corresponding data room in the healthcare sector, the European Health Data Space. But despite high security, data protection could be limited there, warn regulators in the EU. Don’t data rooms automatically stand for …
The newfound possibilities of flexible working – from less commuting to a better work-life balance – are now a firm priority for employees. However, the new way of working also brings new risks that companies need to be aware of. The following five tips will help companies protect their employees despite remote work. According to …
Five Tips for Staying Safe in A Hybrid Workplace Read More »
Backups are the foundation for successful data recovery in the event of damage – for example, ransomware attacks. But how do you know that restore or recovery will then work? Thomas Sandner from Veeam explains what constitutes secure backup data. The ransomware infiltration was successful, all company data was encrypted: Nothing works anymore. Now the …
Last summer, we were shaken by what happened in the Ahr Valley. The long list of flood damage includes not only personal belongings, but also digital data sets. It is precisely through such events that we are painfully reminded: Data recovery is relevant and concerns us all. In times when IT security is becoming increasingly …
The quickest way for hackers to gain access to sensitive corporate data is often also very easy, by having employees click on malicious emails and links. No wonder insider attacks are on the rise. For years, IT security experts have warned that ultimately it’s not a matter of “if” a cybersecurity breach will occur, but …
The SolarWinds IT Trends Report 2022 showed us that complexity is the biggest challenge in IT overall. It is so great that we could even call it a real problem and not just a challenge. Most of the responses to the biggest challenges in the SolarWinds IT Trends Report 2022 point to the implementation of …
Cloud replaces data centers, edge replaces cloud and data centers ….. that’s somewhat true and then again not. Marc Lueck, CISO EMEA at Zscaler, is looking for a new definition or even a better term. Because at the moment, the term gives the impression of security, which no longer exists in IT in this way. …
With high-profile attacks on Microsoft, Okta, and other major tech companies, cybercrime group LAPSUS$ made headlines a few months ago. UK police have since arrested seven suspected members, aged between 16 and 21, but does that mean the threat has been averted? Certainly not: similar attacks can and will follow. Therefore, it is worth taking …
When companies hire new employees or there are internal position changes, this also has consequences for IT security, because the new personnel naturally need access rights to files and folder structures. Often, new users are quickly activated in the network, but it is seldom checked during ongoing operations to see which accounts still have access …
Seemingly, there are always new directives and regulations with which the EU wants to make cyberspace more secure and privacy-friendly. The multitude of legal instruments can be better understood by knowing the EU’s basic cybersecurity vision and strategy. We provide an overview to guide the EU’s cyber strategy. Whether it’s cloud computing or artificial intelligence …
Cyberattacks are now part of strategic warfare, and the war in Ukraine has brought concerns about critical infrastructure security breaches into focus. What is the state of IT security at CRITIS companies? That’s what an expert panel of policymakers, infrastructure operators, and IT security professionals recently addressed. From awareness and recruiting to changes in the …
Expert Panel Discusses Critical Infrastructure Security Read More »
Today, it takes more than just protective technologies to fend off cyberattacks. Attentive employees can prevent attempted attacks via phishing or social engineering at an early stage by adopting the right behavior. Security awareness training can improve awareness of cyber risks among the workforce. Modern training courses rely on gamification and storytelling. Can you still …
Sustainable Learning with Gamification and Storytelling Read More »
The message was clear when the U.S. National Science Foundation announced it was launching a new program to bring resilience to next-generation networks. In an increasingly interconnected world, there may be no outages or degradation of communications networks after a potential attack. You can’t even afford human error. Before the Resilient and Intelligent Next-Generation Systems …
Strengthening Network Resilience with AIOps and Observability Read More »
A new survey of 350 application development, information technology and cybersecurity decision makers shows that 34 percent of the companies surveyed had a known open source software vulnerability exploited in their applications in the past 12 months, and 28 percent had been affected by a previously unknown (“zero-day”) vulnerability. Seventy-three percent of respondents have significantly …
Companies Invest in Software Supply Chain Security Read More »
The coronavirus has triggered a “digital pandemic.” Medium-sized businesses, in particular, have become a greater focus for cybercriminals because security measures in many places are inadequate. To protect data, companies cannot rely on pre-pandemic protocols, policies, and infrastructures and must implement appropriate identity and access management solutions. Cyberattacks incur high costs that can bankrupt small …
How to combine the new IT security requirements of companies with a good user experience for employees – safe and relaxed working is the goal. With cybercrime threats still growing steadily, the question of how to make enterprise collaboration not only more secure, but also more relaxed, arises more than ever. This applies to employees …
The Color of Security: Working Safely with Last Pass Read More »
The renewed Critical Infrastructure Protection Ordinance (KritisV) has been in force since the beginning of the year. It obliges operators to secure their systems appropriately and in accordance with the state of the art. In this interview, Matthias Reidans from Rosenberger OSI answers which points have to be considered on the way to a secure …
How to Implement The KRITIS regulation Securely and In Compliance with The Law? Read More »
After digitization initially affected business operations and processes (including sales and marketing activities, higher-level planning processes and information systems for corporate management) in many companies and, as of today, is in use across all industries, the comprehensive digitization of production processes often lags behind. The concepts of Industry 4.0, which have been propagated for more …
