Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

What are CIS Benchmarks and how to use them?

A list of 18 procedures (reduced from 20), or “controls,” recommended by the Center for Internet Security (CIS), must be followed to build an IT infrastructure resistant to cyberattacks. The CIS 4th Control advises to establish and maintain a secure configuration process for enterprise assets (end-user devices, including portable and mobile; non-computing/IoT devices; and servers) and software (operating systems and applications) (4.1).

Cloud XDR for Incident Response: Reducing MTTR with Automated Remediation

Security teams now handle up to two million alerts daily, and the time it takes to resolve threats—MTTR—can directly affect business resilience. Cloud-based Extended Detection and Response (XDR) systems address these challenges by streamlining the entire process—from detection to automated remediation. By harnessing cloud-native architectures and response automation, organizations can detect threats faster and cut resolution times significantly.

The Top Phishing Lures Targeting Manufacturers Revealed by Trustwave SpiderLabs

Threat actors who rely on email phishing scams as their primary method of gaining initial entry use a wide variety of social engineering lures to trick their victims. Trustwave SpiderLabs recently released the report Manufacturing Sector Deep Dive: Methods of Targeting and Breaching, which specifically calls out many noteworthy campaigns and methodologies used by the top-tier threat groups.

10 Tips for Strengthening Enterprise Security this World Password Day

These days, securing sensitive data begins with a single word (or, ideally, a few): passwords. In the face of rising cyber threats, the importance of creating, using, and managing secure passwords cannot be overstated. That’s why, each year, the world sets aside the first Thursday in May to recognize World Password Day—an event dedicated to promoting the criticality of password hygiene in both our personal and professional lives.

How to Audit Admin and User Permission Changes in Active Directory and Files Using Netwrix Auditor

How to Audit Admin and User Permission Changes in Active Directory? In this video, we’ll demonstrate how to audit administrative and user permission changes in Active Directory using a tool called "Netwrix Auditor". By tracking critical configuration changes, from admin modifications to sensitive file share permissions, you can maintain a culture of accountability within your organization.