Information Security

It’s been nine months since May 25, 2018 when the General Data Protection Regulation (GDPR) went into effect in the EU. During this short period of time much has happened, including megabreaches that continue to occur throughout the world. Read about the latest InfoSec strategies and developments.

Cybersecurity History: Read about how Netscape began development of the SSL protocol. In 1994, Netscape had SSL version 1.0 ready, but it never made a public debut as it had several significant security flaws, which eventually led to the evolution of HTTPS based on SSL 2.0 and its successor TLS.

Learn about a machine learning use case that clusters network assets (or devices) into groups to improve the alert quality from peer-based analysis.

2019 promises to be as difficult to predict as every year, so Exabeam spoke to Professor Alan Woodward from the University of Surrey to get his thoughts on the cyber security landscape for the year ahead.

Exabeam’s Cybersecurity History Review: Read about Operation Aurora and the series of cyberattacks in 2010 conducted by the Elderwood Group based in Beijing, China, with ties to the People’s Liberation Army.

2018 was a memorable year for cybersecurity. Millions of people were impacted as we saw more companies hit by megabreaches—from a major hotel chain to a social media platform used by billions. Here are our top 10 blog posts that had the biggest readership and were the most noteworthy.

Learn about the MITRE ATT&CK framework, how it works, why it is an important tool, and why cybersecurity pros should pay attention.

Read about the cloud security strategies of a global engineering firm that employs tens of thousands of people. Reliable data security is not only critical to their business, it is also a primary component of the solutions they provide to their customers. Specifically, it’s essential that this firm protects their network of virtual machines (VMs) in their private cloud.

A global clothing manufacturer embraces cloud technology, and is using cloud services for software development and source code version control. It considers its source code to be intellectual property (IP) worthy of protection. Read how they prevent their source code from falling into the wrong hands and how they stop malware and ransomware.

There was the hotel chain, the genealogy site, and the social media platform used by billions. These are just a few of the companies that in 2018 experienced a megabreach, which is the theft of 10 million records or more. With more individual records exposed in the first six months of 2018 than in all of 2017, one could call 2018 “The Year of the Megabreach.” Read how 2018 represents more than a surge in the breach statistics and what social media influencers are predicting for 2019.

Most security analysts start their day with a common question: “What should I be working on today?” The answer can have serious ramifications. On a daily basis, analysts typically must confront an overwhelming number of security alerts, with no actual means to prioritize them. The unfortunate fact is that too often the massive number of security alerts lack the context that’s needed to quickly investigate and remediate so that they don’t become a major breach.

When it comes to predicting the future, how do you anticipate the moves of our world’s underground cyber criminals, hackers and rogue nations? While they don’t all agree, Exabeam’s top security sleuths share their predictions for 2019.