In The Wizard of Oz, the stranded heroine ‘Dorothy’ travels a long way to meet the all-powerful ‘Wizard’ and ask for his help getting back home to Kansas. When she finally meets him, she discovers that he’s not a great Wizard at all, but an ordinary ‘humbug’ man whose ‘powers’ are all fake, and literally […]
Let’s address the elephants in the room. SIEMs, EDRs, SOCs and MSSPs. The first problem with these technologies is that they’re listed as effective controls or approaches in most security standards. Rather than spend too much time on this point, let me just say most standards are outdated before they’re published. The second problem is that […]
If your organization is worried about its network security, congratulations! You should be. If you weren’t, we’d be worried. Unfortunately, information security is an often-overlooked, but crucial, feature of a well-functioning organization. It is deeply complex, and implementing effective cybersecurity solutions requires a huge depth of specialized knowledge and, because most people don’t have this […]
If you’d asked us this question only a few years ago we would have laughed in your face. Today, not so much. For the past 18 months, we’ve been comparing all the validated breaches we’ve detected at an investment banking client against 15 prominent AV vendors. These breaches completely bypassed best practice controls including NGAV, EDR, […]
Even if you’re the kind of person who loves to overshare on social media – and who doesn’t?! – you have the right to your privacy. You also have the right to expect that your privacy will be protected by anyone you come in contact with, whether it’s people in your personal or professional network, […]
