Over the past 2 years, organizations have seen a huge uptick in the number of email compromise attacks. This increase has come mainly in the form of non-signature based attacks, such as name impersonations and domain lookalikes. The social engineering behind name and domain impersonations has become so sophisticated and well-targeted, that phishing attempts can be nearly indistinguishable from the real thing.

In today’s world, business interconnectedness continues to grow as companies depend on multiple types of third-party vendors in order to conduct day-to-day operations. One of the toughest things about working with a third-party vendor is ensuring that their business practices are as safe and secure as your own. The current methods used to measure a vendor’s security posture tend to fall short. Using spreadsheet and Word document questionnaires sent back and forth through email is time consuming, static, and subjective. They give a “Point-in-Time” view of an organization’s security practices, rather than a full picture of their security posture.

Almost all security breaches originate at the endpoint for several reasons: they are the most mobile, and they utilize the most applications. Not surprisingly, the human element of the endpoint also makes it the most vulnerable point of entry for an assault. Adversaries continue to invent novel ways to combat new security protocols, and in today's environment, the attack cadence is off the charts. That is to say; there are constant attacks – both file-based and non-file-based – hitting networks from every possible direction.

Surveys indicate that under normal circumstances, 57% of issues are detected by end users before IT personnel are aware of them. Moreover, 34% of end users cite poor network connectivity or poor web/cloud/SaaS performance at their workplace. With this data in mind, it should come as no surprise that one of the top three gripes end users have about their IT department is reduced app viability.

Networks used to be much more straightforward, consisting of a few devices with rules manually written by a few individuals. As such, systems were relatively stable. Technologies such as Cloud Computing, Virtualization, and the Internet of Things created complex and dynamic networks comprised of countless devices. Now, our partner, Firemon, shows us how to better manage firewall rulesets in the latest Vandis Insight's Blog webinar recap.

Deception Technology lures attackers to strategically placed, heavily-instrumented decoys throughout the network. When an attacker trips over one of these decoys, the solution is triggered to begin generating reports and recording the attacker's actions, providing reliable forensics to see what attackers are doing and where they are going in the network.

The DarkTrace Enterprise Immune System solution uses Artificial Intelligence (AI systems) and unsupervised machine learning to understand what is normal in your network, and subsequently detect and respond to anything abnormal; this is not end-point security or perimeter-based security - it is situated at the core of the network, providing raw data and protecting against attacks coming in through any kind of computing devices.