10.3.2017 - Protecting Critical Infrastructure from Cyber Threats
As a society, we depend on the internet more than ever. All of the systems that enable us to function today, from electricity and transportation to banking, rely on digital infrastructure to function. It is absolutely crucial that we protect our critical infrastructure from cyber threats. Without adequate security, malicious hackers could cause traffic accidents, hijack phone calls and even interfere with the water supply. While the idea of hackers completely taking over our way of life is a frightening one, the good news is that there are very gifted people on the other side consistently developing ways to thwart these cybercriminals. What are some of the state-of-the-art ways to safeguard our critical infrastructure from these dangers? For risk managers who are in charge of protecting these systems, preparation is key. Networks must have redundancies so that if systems are crashed by hackers, isolated backups can jump into their place. Systems must be resilient enough to spot threats in real-time, alert the system manager and take immediate self-protective action. The best way we know to currently protect infrastructure is to make sure these redundancy and resiliency measures are in place and to test and revise them frequently. Hackers are constantly attempting different and more effective ways of invading these systems. Elements of a comprehensive safety plan include: ...
09.11.2017 - Buyer’s Guide to Multi-Factor Authentication (MFA)
09.1.2017 - Top 5 Road-Blocks Migrating To A Cloud Identity and SSO Solution
In discussions with our customers and prospects, almost all of them share common road-blocks that prevent many organizations from fully embracing a cloud identity management/SSO solution. Here we will address 5 of the more common road-blocks and how Optimal IdM has helped clients meet and exceed their security, regulatory, and enterprise architecture needs. ...
08.3.2017 - Using MFA for Server Access Thanks to the Optimal GINA™ Plugin
05.31.2017 - Using IAM Tools To Cut The Costs of a Data Breach
What is the cost of a data breach? In the case of Yahoo! CEO Marissa Meyer, who accepted the consequences of the 2013/2014 Yahoo data breach in 2016, the answer was at least $2 million, the amount of the annual bonus she lost because of the breach. She also gave up her annual equity grant for 2017, which could have been worth millions more. However, it probably cost Yahoo!, its partners and its users a lot more than that. What happened and what could have been done to prevent these types of breaches? The data breach in question actually refers to two major data breaches, one in 2013 and one in 2014, affecting an estimated 1 billion plus Yahoo! users and resulting in more than 40 class-action lawsuits from Yahoo! customers. Not only did the attackers hack hundreds of millions of user accounts for their information, but they also created bogus cookies in 2015 and 2016 to allow access to more than 30 million accounts without a password. Experts investigating noted that Yahoo! information security had knowledge of the attacks around the time they were happening, but failed to act appropriately. The company’s general counsel, Ron Bell, resigned without severance in the wake of this situation. ...
03.16.2017 - Five Things CMOs Need to Know About Customer Identity and Access Management
05.5.2016 - The Way to a Hacker’s Heart: Insecure Passwords
People use “bad” passwords — no, these passwords aren’t swear words — for two reasons: They’re easy to come up with and easy to remember. Bad, or weak, passwords are passwords hackers find hilariously simple to crack. Examples of laughingstock passwords are: ...
