Data security and privacy

Secure data storage, data loss prevention and encryption are must-have components of any enterprise security strategy, especially as data threats and breaches become increasingly common. Get advice on these topics, along with the latest data security strategies, data backup and recovery info, and more.

Top Stories

Feature 19 Dec 2024
10 cybersecurity predictions for 2025

AI will still be a hot topic in 2025, but don't miss out on other trends, including initial access broker growth, the rise of vCISOs, tech rationalization and more. Continue Reading
By
- Kyle Johnson, Technology Editor
Answer 19 Dec 2024
How bad is generative AI data leakage and how can you stop it?

Mismanaged training data, weak models, prompt injection attacks can all lead to data leakage in GenAI, with serious costs for companies. The good news? Risks can be mitigated. Continue Reading
By
- Chris Tozzi

News 06 Feb 2023
Vastaamo hacking suspect arrested in France

The suspect in the infamous cyber attack, Julius Kivimäki, is a 25-year-old Finnish man who was arrested after being remanded in absentia in October 2022. Continue Reading
By
- Alexander Culafi, Senior News Writer
Opinion 06 Feb 2023
6 data security predictions for 2023

New tools are proliferating to secure data wherever it lives. Six data security trends -- ranging from AI washing to new data security platforms -- are in the forefront for 2023. Continue Reading
By
- Jack Poller
- Enterprise Strategy Group
  We provide market insights, research and advisory, and technical validations for tech buyers.
News 06 Feb 2023
Widespread ransomware campaign targets VMware ESXi servers

The attacks exploited a two-year-old heap overflow vulnerability in VMware ESXi. Many questions remain about the scope of the campaign and the threat actor behind it. Continue Reading
By
- Arielle Waldman, News Writer
Opinion 02 Feb 2023
Understanding the importance of data encryption

Encryption is a foundational element of cybersecurity. Organizations should implement encryption to counter the ever-growing threat of data breaches. Continue Reading
By
- Jack Poller
- Enterprise Strategy Group
  We provide market insights, research and advisory, and technical validations for tech buyers.
News 02 Feb 2023
HeadCrab malware targets Redis to mine cryptocurrency

Aqua Security said the HeadCrab botnet has taken control of at least 1,200 servers via internet-facing instances of the opensource DBMS Redis and is using them for cryptomining. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 02 Feb 2023
Ransomware attacks on public sector persist in January

Many of the attacks disclosed or reported in January occurred against the public sector, including multiple school districts that were hit within days of one another. Continue Reading
By
- Arielle Waldman, News Writer
Podcast 31 Jan 2023
Risk & Repeat: The FBI's Hive ransomware takedown

This podcast episode discusses the law enforcement operation that led to the infiltration and takedown of the Hive network and what it could mean for other ransomware gangs. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 31 Jan 2023
Horizon3.ai releases POC exploit for VMware vulnerabilities

Penetration testing vendor Horizon3.ai published technical details and exploit code for three new CVEs in VMware vRealize Log Insight that can be chained for remote code execution. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 30 Jan 2023
Schools don't pay, but ransomware attacks still increasing

Ransomware gangs have increasingly focused their attacks on the K-12 education sector, even though most school districts do not pay the ransom. But how long will that last? Continue Reading
By
- Alexis Zacharakos, Student Co-op
News 26 Jan 2023
FBI hacked into Hive ransomware gang, disrupted operations

The FBI infiltrated Hive's network in July 2022 and obtained decryption keys, which it distributed to victims to prevent $130 million in ransom payments, according to the DOJ. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 25 Jan 2023
Contractor error led to Baltimore schools ransomware attack

A security contractor for Baltimore County Public Schools mistakenly opened a suspicious phishing email attachment in an unsecure environment, leading to the ransomware attack. Continue Reading
By
- Alexander Culafi, Senior News Writer
Feature 25 Jan 2023
10 best cybersecurity podcasts to check out

Cybersecurity podcasts are an excellent way to raise cybersecurity awareness. Discover the top 10 cybersecurity podcasts and learn how to select the best ones for your playlist. Continue Reading
By
- Kinza Yasar, Technical Writer
Podcast 24 Jan 2023
Risk & Repeat: Another T-Mobile data breach disclosed

This podcast episode discusses the latest T-Mobile breach -- the third in less than three years -- in which a threat actor stole personal data from 37 million customer accounts. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 24 Jan 2023
Customer data, encryption key stolen in GoTo breach

GoTo's breach update follows the recent disclosure made by GoTo subsidiary LastPass, which similarly lost significant sensitive customer data in a breach last year. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 23 Jan 2023
Experts applaud expansion of Apple's E2E encryption

Amidst growing privacy concerns and data breach threats, Apple launched Advanced Data Protection for U.S. customers last month to secure almost all data stored in iCloud. Continue Reading
By
- Arielle Waldman, News Writer
Opinion 20 Jan 2023
6 cybersecurity buzzwords to know in 2023

Enterprise Strategy Group research indicates many organizations will increase cybersecurity spending in 2023, and with that comes an evolving set of vendor buzzwords to sort out. Continue Reading
By
- Jon Oltsik, Analyst Emeritus
- Enterprise Strategy Group
  We provide market insights, research and advisory, and technical validations for tech buyers.
News 20 Jan 2023
T-Mobile data breach affects 37M customers

T-Mobile said a threat actor first began using an API in November to obtain the personal data of 37 million customer accounts, though no financial data was affected. Continue Reading
By
- Rob Wright, Senior News Director
Podcast 20 Jan 2023
Risk & Repeat: Breaking down the LastPass breach

This podcast episode discusses the fallout of the recent LastPass breach, in which a threat actor stole encrypted logins and unencrypted website URLs from the password manager. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 19 Jan 2023
Chainalysis: Ransomware payments down, fewer victims paying

Ransomware payments dropped significantly this past year, falling more than 40% from 2021, according to new research from blockchain analysis firm Chainalysis. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 18 Jan 2023
LastPass faces mounting criticism over recent breach

LastPass disclosed a breach last month in which a threat actor stole personal customer information, including billing addresses and encrypted website login details. Continue Reading
By
- Alexander Culafi, Senior News Writer
Tip 10 Jan 2023
How to prevent and detect lateral movement attacks

Reduce the success of lateral movement attacks by performing these eight key cybersecurity activities at strategic, operational and proactive levels. Continue Reading
By
- Charles Kolodgy, Security Mindsets
Tip 09 Jan 2023
What is Triple DES and why is it being disallowed?

Triple DES no longer provides the encryption strength it once did. Prepare now to transition away from its use to a more security alternative. Continue Reading
By
- Michael Cobb
Feature 05 Jan 2023
How to configure Windows privacy settings with Intune

To personalize UX, Windows devices aren't shy about collecting user data. This isn't ideal for enterprise security. Discover how to lock down privacy settings with Intune. Continue Reading
By
- Kyle Johnson, Technology Editor
- Packt Publishing
Feature 05 Jan 2023
Windows security tips for the enterprise

Securing a Windows environment is no easy feat. Read up on low-hanging fruit to quickly address, as well as top tips from two security practitioners to get started. Continue Reading
By
- Kyle Johnson, Technology Editor
Definition 05 Jan 2023
Google Chrome browser

Google Chrome browser is a free web browser used for accessing the internet and running web-based applications. Continue Reading
By
- Nick Barney, Technology Writer
News 04 Jan 2023
December ransomware disclosures reveal high-profile victims

Cloud provider Rackspace was just one of several major enterprises to suffer a ransomware attack, according to public disclosures and reports in December. Continue Reading
By
- Arielle Waldman, News Writer
Definition 29 Dec 2022
credential theft

Credential theft is a type of cybercrime that involves stealing a victim's proof of identity. Continue Reading
By
- Corinne Bernstein
Tip 27 Dec 2022
How to prevent and mitigate process injection

Process injection is a defense evasion technique that helps attackers hide from enterprise security systems. Learn how it works and how to mitigate it. Continue Reading
By
- Rob Shapland
Definition 22 Dec 2022
Firefox

Firefox is a free, open source web browser developed by the Mozilla Foundation and Mozilla Corporation in 2004. Continue Reading
By
- Nick Barney, Technology Writer
Definition 20 Dec 2022
surveillance capitalism

Surveillance capitalism is an economic theory proposed by Harvard Business School Professor Emerita Shoshana Zuboff in 2014 that describes the modern, mass monetization of individuals' raw personal data in order to predict and modify their behavior. Continue Reading
By
- Nick Barney, Technology Writer
- Ivy Wigmore
Tip 20 Dec 2022
What enumeration attacks are and how to prevent them

Web applications may be vulnerable to user enumeration attacks. Learn how these brute-forcing attacks work and how to prevent them. Continue Reading
By
- Ravi Das, ML Tech Inc.
Definition 19 Dec 2022
cyberbullying

Cyberbullying is a type of bullying in which one or more individuals use digital technologies to intentionally and repeatedly cause harm to another person. Continue Reading
By
- Robert Sheldon
Feature 19 Dec 2022
11 cybersecurity predictions for 2023

Analysts and experts have looked into their crystal balls and made their cybersecurity predictions for 2023. Is your organization prepared if these predictions come true? Continue Reading
By
- Kyle Johnson, Technology Editor
Feature 16 Dec 2022
Explore 5 secure data storage best practices

From access control to air gapping and beyond, IT administrators should employ several technologies and procedures to help ensure they have secure data storage. Continue Reading
By
- Paul Crocetti, Executive Editor
Definition 14 Dec 2022
default

In computer technology, a default is a pre-designed value or setting that is used by a computer program when a value or setting is not specified by the program user. Continue Reading
By
- Katie Terrell Hanna
Definition 12 Dec 2022
checksum

A checksum is a value that represents the number of bits in a transmission message and is used by IT professionals to detect high-level errors within data transmissions. Continue Reading
By
- Kinza Yasar, Technical Writer
- Laura Fitzgibbons
Podcast 08 Dec 2022
Risk & Repeat: Breaking down Rackspace ransomware attack

This Risk & Repeat podcast episode discusses the recent ransomware attack against cloud provider Rackspace, as well as the major service outage affecting its customers. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 07 Dec 2022
Vice Society ransomware 'persistent threat' to education sector

New research from Palo Alto Networks supports recent government warnings that Vice Society poses an increased risk to K-12 schools and higher education. Continue Reading
By
- Arielle Waldman, News Writer
News 06 Dec 2022
Rackspace confirms ransomware attack after Exchange outages

The cloud service provider said that because the investigation of the ransomware attack is in the early stages, it is unknown what, if any, customer data was stolen. Continue Reading
By
- Alexander Culafi, Senior News Writer
Definition 02 Dec 2022
Trojan horse

In computing, a Trojan horse is a program downloaded and installed on a computer that appears harmless, but is, in fact, malicious. Continue Reading
By
- Casey Clark, TechTarget
- Michael Cobb
News 01 Dec 2022
Mozilla, Microsoft drop Trustcor as root certificate authority

Mozilla and Microsoft removed support for TrustCor certificates after a Washington Post report revealed the company's ties to government contractors specializing in spyware. Continue Reading
By
- Rob Wright, Senior News Director
News 01 Dec 2022
LastPass warns some customer data accessed in new breach

LastPass disclosed a new breach, related to the previously disclosed attack in August, that resulted in a threat actor obtaining access to some customer data. Continue Reading
By
- Arielle Waldman, News Writer
News 30 Nov 2022
Lockbit 3.0 has BlackMatter ransomware code, wormable traits

LockBit 3.0 or 'LockBit Black' includes anti-debugging capabilities, the ability to delete Volume Shadow Copy files and the potential ability to self-spread via legitimate tools. Continue Reading
By
- Alexander Culafi, Senior News Writer
Definition 30 Nov 2022
quantum key distribution (QKD)

Quantum key distribution (QKD) is a secure communication method for exchanging encryption keys only known between shared parties. Continue Reading
By
- Alexander S. Gillis, Technical Writer and Editor
Podcast 30 Nov 2022
Risk & Repeat: Twitter, Elon Musk and security concerns

This podcast episode discusses Twitter's security concerns following Elon Musk's acquisition last month, as well as a possible data breach from 2021 that came to light recently. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 28 Nov 2022
Infosec researcher reports possible 'massive' Twitter breach

The alleged Twitter breach involves a data set from late 2021 and includes the phone numbers and personal information of millions of users in the U.S. and Europe. Continue Reading
By
- Alexander Culafi, Senior News Writer
Definition 23 Nov 2022
Bitly

Bitly is a URL shortener service that enables users to truncate webpage links. Continue Reading
By
- Katie Terrell Hanna
- Karolina Kiwak
Guest Post 18 Nov 2022
Track evolution in storage security standards, technologies

It's going to take a layered approach to handle all the security threats that storage administrators face. Strategies such as zero-trust architecture and encryption can help. Continue Reading
By
- Eric Hibbard and Thomas Rivera
Definition 18 Nov 2022
pen testing (penetration testing)

A penetration test, also called a pen test or ethical hacking, is a cybersecurity technique that organizations use to identify, test and highlight vulnerabilities in their security posture. Continue Reading
By
- Kinza Yasar, Technical Writer
- Puneet Mehta, SDG
Guest Post 17 Nov 2022
Do companies need cyber insurance?

As cyber insurance costs rise, companies must determine whether they truly need cyber insurance to tackle their increased risk of cyber attacks. Continue Reading
By
- Mark Brown
News 15 Nov 2022
Cohesity launches Data Security Alliance for customers

Cohesity has formed a Data Security Alliance of 12 companies and will launch its DataHawk security service in early 2023. Both are aimed at consolidating offerings for customers. Continue Reading
By
- Max Bowen, TechTarget
News 14 Nov 2022
Moreno Valley school system shores up ransomware defenses

Moreno Valley Unified School District officials discuss the steps they've taken to better protect sensitive data and critical applications against the growing threat of ransomware. Continue Reading
By
- Arielle Waldman, News Writer
News 10 Nov 2022
TrustCor under fire over certificate authority concerns

TrustCor Systems, a certificate authority registered in Panama, is in hot water after a Washington Post report raised questions about its apparent connections to a spyware vendor. Continue Reading
By
- Shaun Nichols
Tip 10 Nov 2022
Common lateral movement techniques and how to prevent them

Lateral movement techniques enable attackers to dig deeper into compromised environments. Discover what lateral movement attacks are and four attack techniques. Continue Reading
By
- Ravi Das, ML Tech Inc.
Feature 08 Nov 2022
5 ways to overcome multifactor authentication vulnerabilities

Improve the resiliency of multifactor authentication by giving users more information, making default settings more secure, hiding secrets and more. Continue Reading
By
- Kyle Johnson, Technology Editor
Feature 08 Nov 2022
How to build a shadow IT policy to reduce risks, with template

With a shadow IT policy in place, organizations reduce security risks from unapproved applications and services that employees introduce independently. Continue Reading
By
- Paul Kirvan
News 04 Nov 2022
Yanluowang ransomware gang goes dark after leaks

The Yanluowang ransomware operation appears to have shut down for the time being after an anonymous individual published a series of internal code and chat leaks. Continue Reading
By
- Shaun Nichols
News 03 Nov 2022
Ransomware on the rise, hitting schools and healthcare

October ransomware disclosures and public reports tracked by TechTarget Editorial increased from previous months, with notable attacks on education and healthcare organizations. Continue Reading
By
- Arielle Waldman, News Writer
Feature 31 Oct 2022
Consider ethical technology issues with data center growth

Authors Harry Lewis and Ken Ledeen discuss ethical issues organizations should consider when expanding data center, data collection and technological capabilities. Continue Reading
By
- Ryan Arel, Former Associate Site Editor
- Pearson Education
Podcast 28 Oct 2022
Risk & Repeat: Microsoft, SOCRadar spar over data leak

This podcast episode discusses threat intelligence vendor SOCRadar's disclosure of a large Microsoft data leak and the contentious exchange between the two companies that followed. Continue Reading
By
- Alexander Culafi, Senior News Writer
Opinion 27 Oct 2022
How Sheltered Harbor helps banks navigate cyber-recovery

Banks must be able to recover quickly from a cyber attack -- a difficult task, given the volume and sophistication of attacks. The not-for-profit Sheltered Harbor aims to help. Continue Reading
By
- Vinny Choinski, Senior Analyst
- Enterprise Strategy Group
  We provide market insights, research and advisory, and technical validations for tech buyers.
News 25 Oct 2022
Apple patches actively exploited zero-day iOS bug

The iOS zero-day was joined by a slew of other vulnerabilities in Apple's Oct. 24 security update. The iOS 16 update contained patches for 13 arbitrary code execution flaws. Continue Reading
By
- Alexander Culafi, Senior News Writer
Tip 21 Oct 2022
Balancing remote work privacy vs. productivity monitoring

Weighing employee productivity monitoring against remote workers' privacy is a serious issue that requires protecting personal and corporate data and setting the right policies. Continue Reading
By
- Jon Arnold
News 21 Oct 2022
BlackByte ransomware using custom data exfiltration tool

Symantec researchers say BlackByte ransomware may be poised to move into the elite ransomware ranks, as the group has begun developing its own custom malware tools. Continue Reading
By
- Shaun Nichols
News 20 Oct 2022
Brazil arrests alleged Lapsus$ hacker

Federal police in Brazil arrested a person accused of being a key member of the Lapsus$ hacking group on charges related to the takedown of government websites. Continue Reading
By
- Shaun Nichols
News 20 Oct 2022
Microsoft confirms data leak caused by misconfiguration

Microsoft criticized SOCRadar's reporting of the data leak, saying the threat intelligence vendor "greatly exaggerated" its claim that 65,000-plus entities had data exposed. Continue Reading
By
- Alexander Culafi, Senior News Writer
Definition 20 Oct 2022
What is the zero-trust security model?

The zero-trust security model is a cybersecurity approach that denies access to an enterprise's digital resources by default and grants authenticated users and devices tailored, siloed access to only the applications, data, services and systems they need to do their jobs. Continue Reading
By
- Alissa Irei, Senior Site Editor
- Sharon Shea, Executive Editor
Tip 19 Oct 2022
How to manage and reduce secret sprawl

Secret sprawl plagues companies, making them vulnerable to data breaches. Discover what causes secret sprawl and how to better protect secrets. Continue Reading
By
- Charles Kolodgy, Security Mindsets
Feature 19 Oct 2022
Top 10 pen testing interview questions with answers

Are you pursuing a career in pen testing? Prepare with this list of 10 pen testing interview questions and answers created by three security experts. Continue Reading
By
- Isabella Harford, TechTarget
- Packt Publishing
Feature 19 Oct 2022
Top IT security manager interview questions

Are you looking for a leadership role in cybersecurity? Three security experts offer their advice on how to answer the most common IT security manager interview questions. Continue Reading
By
- Isabella Harford, TechTarget
Guest Post 19 Oct 2022
3 cloud security posture questions CISOs should answer

As cloud adoption continues to accelerate, CISOs must help IT and cybersecurity teams keep pace with evolving cloud markets, especially when it comes to cloud security posture. Continue Reading
By
- Kristopher Carr
Definition 19 Oct 2022
pegged cryptocurrency

A pegged cryptocurrency is a cryptocurrency whose value is linked to a specific bank-issued currency, financial instrument or tradable commodity. Continue Reading
By
- Rahul Awati
- Ivy Wigmore
Definition 18 Oct 2022
full-disk encryption (FDE)

Full-disk encryption (FDE) is a security method for protecting sensitive data at the hardware level by encrypting all data on a disk drive. Continue Reading
By
- Alexander S. Gillis, Technical Writer and Editor
Definition 18 Oct 2022
Diffie-Hellman key exchange (exponential key exchange)

Diffie-Hellman key exchange is a method of digital encryption that securely exchanges cryptographic keys between two parties over a public channel without their conversation being transmitted over the internet. Continue Reading
By
- Alexander S. Gillis, Technical Writer and Editor
Podcast 14 Oct 2022
Risk & Repeat: Breaking down the Joe Sullivan conviction

This podcast episode discusses conviction of former Uber CSO Joe Sullivan, who was found guilty last week of covering up the company's 2016 data breach. Continue Reading
By
- Alexander Culafi, Senior News Writer
Guest Post 14 Oct 2022
The role of transparency in digital trust

To retain digital trust, organizations must be transparent in the aftermath of cybersecurity attacks and data breaches. Learn more about the roles of transparency in trust. Continue Reading
By
- Sushila Nair, Nate Abbott
News 13 Oct 2022
NPM API flaw exposes secret packages

A flaw in the API for NPM could potentially allow a threat actor to see the internal packages for corporate users -- a possible first step for a supply chain attack. Continue Reading
By
- Shaun Nichols
Tip 12 Oct 2022
Combat ransomware with continuous backup software, strategy

No IT organization is safe from a ransomware attack, making backup maintenance critical. Learn the pros and cons of continuous backups in terms of costs, storage and recovery time. Continue Reading
By
- Brian Kirsch, Milwaukee Area Technical College
Feature 12 Oct 2022
The history and evolution of zero-trust security

Before zero-trust security, enterprise insiders were trusted and outsiders weren't. Learn about the history of zero trust and the public and private sector efforts to adopt it. Continue Reading
By
- Mary K. Pratt
Feature 12 Oct 2022
7 steps for implementing zero trust, with real-life examples

More than a decade since the term's inception, zero-trust security is still much easier said than done. Here's how to get started. Continue Reading
By
- Alissa Irei, Senior Site Editor
- Johna Till Johnson, Nemertes Research
News 11 Oct 2022
NPM malware attack goes unnoticed for a year

A cybercriminal crew known as "LofyGang" poisoned software supply chains with bad NPM packages for more than a year, according to Checkmarx researchers. Continue Reading
By
- Shaun Nichols
Feature 11 Oct 2022
LinkedIn scams, fake Instagram accounts hit businesses, execs

Even the most secure business and executive social media accounts that have strong passwords and multifactor authentication are vulnerable to cloning schemes. Continue Reading
By
- Bridget Botelho, Editorial Director, News
News 11 Oct 2022
Cohesity founder, new CEO discuss data management strategy

The current and former Cohesity CEOs seek to bring the company to 'the next level.' Plans include melding backup and security as well as potentially going public. Continue Reading
By
- Paul Crocetti, Executive Editor
Feature 11 Oct 2022
How to choose the best ZTNA vendor for your organization

In a sea of options, finding the best ZTNA vendor for your organization can pose a major challenge. Weed through the marketing hype with advice from the experts. Continue Reading
By
- Alissa Irei, Senior Site Editor
Tip 11 Oct 2022
Top 6 challenges of a zero-trust security model

Zero trust has a number of challenges, but because the model is highly beneficial, it's important for organizations to learn how to overcome them. Continue Reading
By
- Sharon Shea, Dennis Turpitka
Tip 07 Oct 2022
Perimeter security vs. zero trust: It's time to make the move

Perimeter security requires a border to protect enterprise data. With more and more users working outside that border, zero trust promises a better security option for the future. Continue Reading
By
- Andrew Froehlich, West Gate Networks
News 06 Oct 2022
Former Uber CSO Joe Sullivan found guilty in breach cover-up

Sullivan was convicted of obstruction of proceedings of the Federal Trade Commission and misprision of felony in connection with the cover-up of Uber's 2016 data breach. Continue Reading
By
- Rob Wright, Senior News Director
News 05 Oct 2022
Ransomware attacks ravage schools, municipal governments

Attacks disclosed in September revealed that K-12 schools, universities and local governments continued to suffer at the hands of gangs such as Vice Society and BlackCat/Alphv. Continue Reading
By
- Rob Wright, Senior News Director
Feature 05 Oct 2022
Top zero-trust certifications and training courses

Most organizations are expected to implement zero trust in the next few years. Learn about zero-trust certifications and trainings that can help prepare your security team. Continue Reading
By
- Katie Donegan, Social Media Manager
- Isabella Harford, TechTarget
Definition 04 Oct 2022
initialization vector

An initialization vector (IV) is an arbitrary number that can be used with a secret key for data encryption to foil cyber attacks. Continue Reading
By
- Rahul Awati
Tip 04 Oct 2022
Top zero-trust use cases in the enterprise

Still hesitating to adopt zero trust? Learn about the main zero-trust use cases, as well as its benefits, myths and trends that are beginning to emerge. Continue Reading
By
- Andrew Froehlich, West Gate Networks
News 03 Oct 2022
Intermittent encryption attacks: Who's at risk?

Threat analysts have observed some ransomware gangs using a new technique that only partially encrypts victims' files, which could evade some ransomware defenses. Continue Reading
By
- Shaun Nichols
Definition 30 Sep 2022
enterprise file sync and share (EFSS)

Enterprise file sync and share (EFSS) is a service that allows users to save files in cloud or on-premises storage and then access them on desktop and mobile devices. Continue Reading
By
- Tim Murphy
- Carl Setterlund
- Alyssa Provazza, Editorial Director
Tip 29 Sep 2022
How to create a zero-party data strategy

Zero-party data can enable better personalization and customer retention without tracking users across sites, like third-party cookies. These steps can kickstart your strategy. Continue Reading
By
- Griffin LaFleur, Swing Education
Answer 28 Sep 2022
Compare zero trust vs. the principle of least privilege

Zero trust and the principle of least privilege may appear to solve the same issue, but they have their differences. Read up on the two methodologies. Continue Reading
By
- Andrew Froehlich, West Gate Networks
Definition 27 Sep 2022
rainbow table

A rainbow table is a password hacking tool that uses a precomputed table of reversed password hashes to crack passwords in a database. Continue Reading
By
- Alexander S. Gillis, Technical Writer and Editor
Definition 27 Sep 2022
MICR (magnetic ink character recognition)

MICR (magnetic ink character recognition) is a technology invented in the 1950s that's used to verify the legitimacy or originality of checks and other paper documents. Continue Reading
By
- Alexander S. Gillis, Technical Writer and Editor
Tip 27 Sep 2022
10 PCI DSS best practices to weigh as new standard rolls out

PCI's Security Standards Council revamped the requirements governing how organizations store payment card information. Companies need to act fast to ensure they are in compliance. Continue Reading
By
- Paul Kirvan
Tip 26 Sep 2022
Does AI-powered malware exist in the wild? Not yet

AI sending out malware attacks may invoke images of movielike, futuristic technology, but it may not be too far from reality. Read up on the future of AI-powered malware. Continue Reading
By
- Isabella Harford, TechTarget
Podcast 23 Sep 2022
Risk & Repeat: Uber and Rockstar Games hacked

This podcast episode discusses recent hacks against Uber and Rockstar Games, the techniques of the attackers and the possible connection to the Lapsus$ cybercrime group. Continue Reading
By
- Alexander Culafi, Senior News Writer