Cyber Defense eMagazine October Edition for 2021

More documents

Recommendations

Info

About the Author Mark Bowling is Vice President of Security Response Services at ExtraHop. He advises our global customers on cyber security processes, risk management, and security strategies. He helps them with security response to complex cybersecurity incidents quickly, thoroughly, and in compliance with regulatory frameworks including GDPR, CCPA, NERC, SOX, PCI-DSS, ISO, SEC/FINRA, and HIPAA. Prior to ExtraHop, Mark spent more than five years in cyber security leadership and CISO roles in financial services, healthcare, manufacturing, technology, distribution/logistics, and the electrical power industry. Prior to his civilian career, Mark spent more than two and a half decades investigating and combating cyber-criminal and nation state attacks in leadership roles with the FBI and the Department of Education, and protected our nation as an officer in the U.S. Navy. Mark can be reached online @ExtraHop on Twitter and at our company website http://www.extrahop.com Cyber Defense eMagazine – October 2021 Edition 82 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Thousands of Fortinet VPN Account Credentials Leaked Broad Adoption of Modern, Identity Provider-Agnostic Authentication Strategy Is the Inevitable and Future-Proof Solution. By Rajiv Pimplaskar, CRO, Veridium Fortinet confirmed that malicious actors have posted SSL-VPN access information to 87,000 FortiGate SSL-VPN devices online. The breach is yet another stark reminder of today’s dangers with password-based systems. Enterprises and users are starting to adopt passwordless authentication methods like ‘phone as a token’ and FIDO2 security keys for customer and Single Sign On (SSO) portals and enterprise applications. But even so, major vulnerabilities still exist across entire categories of use cases such as 3rd party sites, contractors, Virtual Private Networks (VPN) and Virtual Desktop Infrastructure (VDI) - all of which are particularly vulnerable in the current Work from Home (WFH) explosion. Companies need to adopt a more holistic modern Multi Factor Authentication (MFA) strategy that is identity provider agnostic and can operate across all use cases to build true resiliency and ensure cyber defense against such actors. Cyber Defense eMagazine – October 2021 Edition 83 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
The Top 6 Cyber Attacks Of 2021 So
Page 3 and 4:
Protecting SMBs from Current Cybers
Page 5 and 6:
@CYBERDEFENSEMAG CYBER DEFENSE eMAG
Page 7 and 8:
Cyber Defense eMagazine - October 2
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32: Cyber Defense eMagazine - October 2
Page 35 and 36: #2 Florida’s water system A hacke
Page 37 and 38: Raise Cyber Security Awareness: Whe
Page 39 and 40: Source Code Protection Market Do we
Page 41 and 42: of script administration, no backup
Page 43 and 44: to steal “the keys to the kingdom
Page 45 and 46: Part 1 - Using a Proxy Server - BUR
Page 47 and 48: Below we have an example of interce
Page 49 and 50: Having the device UUID and being co
Page 51 and 52: In the second part, we demonstrate
Page 53 and 54: Currently, we are bound to use tech
Page 55 and 56: You can be a hacker too! Remember,
Page 57 and 58: The Brutal Reality of Brute Force A
Page 59 and 60: Multi-factor authentication is one
Page 61 and 62: Why outdated software poses cyberse
Page 63 and 64: About the Author Roman Davydov is a
Page 65 and 66: What data security risks do communi
Page 67 and 68: Is the Edge Really Secure? By Cheta
Page 69 and 70: Or, let’s spend some time discuss
Page 71 and 72: accessible. Different agencies have
Page 73 and 74: Making Sure the Lights Don’t Go O
Page 75 and 76: Gösgen’s IT Security Officer, Fr
Page 77 and 78: MFA works a few different ways, but
Page 79 and 80: Get Ahead of the Game: Packet Captu
Page 81: investigations and the ability to t
Page 85 and 86: and operating costs. FIDO2 is the s
Page 87 and 88: As ports have been steadily ramping
Page 89 and 90: About the Author Working at the int
Page 91 and 92: Today’s Threat Landscape The 2021
Page 93 and 94: Thwarting Today’s Phishing Attack
Page 95 and 96: Security is Everyone’s Job Employ
Page 97 and 98: CapitalOne data breach occurred as
Page 99 and 100: About eSentire eSentire Inc., is th
Page 101 and 102: Complying with regulations Security
Page 103: Cyber Defense eMagazine - October 2
Page 115 and 116: Free Monthly Cyber Defense eMagazin
show all

Cyber Defense eMagazine October Edition for 2021

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?