Data security and privacy

Secure data storage, data loss prevention and encryption are must-have components of any enterprise security strategy, especially as data threats and breaches become increasingly common. Get advice on these topics, along with the latest data security strategies, data backup and recovery info, and more.

Top Stories

Feature 19 Dec 2024
10 cybersecurity predictions for 2025

AI will still be a hot topic in 2025, but don't miss out on other trends, including initial access broker growth, the rise of vCISOs, tech rationalization and more. Continue Reading
By
- Kyle Johnson, Technology Editor
Answer 19 Dec 2024
How bad is generative AI data leakage and how can you stop it?

Mismanaged training data, weak models, prompt injection attacks can all lead to data leakage in GenAI, with serious costs for companies. The good news? Risks can be mitigated. Continue Reading
By
- Chris Tozzi

Guest Post 21 Jan 2022
5 infosec predictions for 2022

If the predictions are correct, 2022 will be another groundbreaking year for information security. Have a look at the security forecast for the next 12 months. Continue Reading
By
- Kevin Hanes
Definition 19 Jan 2022
Pretty Good Privacy (PGP)

Pretty Good Privacy or PGP was a popular program used to encrypt and decrypt email over the internet, as well as authenticate messages with digital signatures and encrypted stored files. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
- Rob Wright, Senior News Director
Definition 19 Jan 2022
Blowfish

Blowfish is a variable-length, symmetric, 64-bit block cipher. Continue Reading
By
- Rahul Awati
News 18 Jan 2022
Police seize VPN host allegedly facilitating ransomware

VPNLab is accused of facilitating cybercrime including ransomware and malware distribution, and its services were allegedly advertised on the dark web. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 18 Jan 2022
Ransomware actors increasingly demand payment in Monero

Though Bitcoin is still the cryptocurrency standard in ransomware payment demands, Monero has gained prominence due to its more private, less traceable technology. Continue Reading
By
- Alexander Culafi, Senior News Writer
Guest Post 13 Jan 2022
Is ransomware as a service going out of style?

Increased government pressure has backed many ransomware gangs into a corner, in turn forcing attackers to replace the ransomware-as-a-service model with a smash-and-grab approach. Continue Reading
By
- Mike Behrmann
News 12 Jan 2022
New RAT campaign abusing AWS, Azure cloud services

Cisco Talos discovered threat actors taking advantage of public cloud services to spread remote administration tools such as NanoCore, NetWire and AsyncRAT. Continue Reading
By
- Shaun Nichols
Definition 11 Jan 2022
Rijndael

Rijndael (pronounced rain-dahl) is an Advanced Encryption Standard (AES) algorithm. Continue Reading
By
- Rahul Awati
Definition 11 Jan 2022
Public-Key Cryptography Standards (PKCS)

Public-Key Cryptography Standards (PKCS) are a set of standard protocols, numbered from 1 to 15. Continue Reading
By
- Rahul Awati
Guest Post 11 Jan 2022
Endpoint security is nothing without human operators

The growing threat landscape has made endpoint security more important than ever. Deploying an endpoint security platform without the proper staff, however, is simply not enough. Continue Reading
By
- Kevin Hanes
Tip 10 Jan 2022
3 areas privacy and cybersecurity teams should collaborate

Organizations can get a lot of value by having their privacy and cybersecurity teams work closely together. Collaborating on compliance objectives is just one benefit. Continue Reading
By
- Mike Chapple, University of Notre Dame
Opinion 06 Jan 2022
IoT ethics must factor into privacy and security discussions

With the adoption of IoT devices, consumers voluntarily trade privacy for the convenience of instant connectivity. Organizations must consider the ethics of their data collection. Continue Reading
By
- Dr. Diane Groth, Laetare Cybersecurity LLC
News 05 Jan 2022

NY AG's credential stuffing probe finds 1M exposed accounts

The threat of credential stuffing attacks prompted an investigation by the New York Attorney General, which found stolen passwords for customer accounts across 17 companies. Continue Reading
News 05 Jan 2022
FTC warns companies to mitigate Log4j vulnerability

In a blog post about the critical Log4Shell vulnerability, the FTC mentioned 2017's Equifax breach and the legal consequences that followed. Continue Reading
By
- Alexander Culafi, Senior News Writer
Feature 04 Jan 2022
Is quantum computing ready to disrupt cybersecurity?

Quantum computing isn't here yet, but now is the time for companies to start considering how it may affect their business -- both negatively and positively -- in the next decade. Continue Reading
By
- Kyle Johnson, Technology Editor
Definition 04 Jan 2022
elliptical curve cryptography (ECC)

Elliptical curve cryptography (ECC) is a public key encryption technique based on elliptic curve theory that can be used to create faster, smaller and more efficient cryptographic keys. Continue Reading
By
- Andrew Froehlich, West Gate Networks
Definition 30 Dec 2021
ciphertext feedback (CFB)

In cryptography, ciphertext feedback (CFB), also known as cipher feedback, is a mode of operation for a block cipher. Continue Reading
By
- Andrew Froehlich, West Gate Networks
Feature 29 Dec 2021
Editor's picks: Top cybersecurity articles of 2021

As we call it a wrap on 2021, SearchSecurity looks at the top articles from the last 12 months and their sweeping trends, including ransomware, career planning and more. Continue Reading
By
- Isabella Harford, TechTarget
Definition 29 Dec 2021
International Data Encryption Algorithm (IDEA)

The International Data Encryption Algorithm (IDEA) is a symmetric key block cipher encryption algorithm designed to encrypt text to an unreadable format for transmission via the internet. Continue Reading
By
- Rahul Awati
Definition 29 Dec 2021
cryptographic checksum

Generated by a cryptographic algorithm, a cryptographic checksum is a mathematical value assigned to a file sent through a network for verifying that the data contained in that file is unchanged. Continue Reading
By
- Rahul Awati
Definition 28 Dec 2021
Encrypting File System (EFS)

Encrypting File System (EFS) provides an added layer of protection by encrypting files or folders on various versions of the Microsoft Windows OS. Continue Reading
By
- Rahul Awati
Feature 28 Dec 2021
Top infosec best practices, challenges and pain points

Weak infosec practices can have irrevocable consequences. Read up on infosec best practices and challenges, as well as the importance of cybersecurity controls and risk management. Continue Reading
By
- Isabella Harford, TechTarget
Definition 23 Dec 2021
cellular automaton (CA)

A cellular automaton (CA) is a collection of cells arranged in a grid of specified shape, such that each cell changes state as a function of time, according to a defined set of rules driven by the states of neighboring cells. Continue Reading
By
- Rahul Awati
Tip 21 Dec 2021
Fortify security with IoT data protection strategies

It's only a matter of time before attackers target IoT data. Organizations must be ready with IoT data security best practices, including data encryption and visibility. Continue Reading
By
- Mary K. Pratt
News 20 Dec 2021
5 Russians charged in hacking, illegal trading scheme

A group of hackers based in Russia and tied to the GRU stand accused of breaking into companies and using confidential data to profit from illegal stock trades. Continue Reading
By
- Shaun Nichols
News 20 Dec 2021
Apple v. NSO Group: How will it affect security researchers?

While the full extent of impact won't be revealed until the lawsuit concludes, negative impacts on security researchers are possible. Continue Reading
By
- Arielle Waldman, News Writer
Tip 14 Dec 2021
4 API authentication methods to better protect data in transit

The API attack surface isn't always well protected. Learn about the authentication methods your company can use to secure its APIs. Continue Reading
By
- Andrew Froehlich, West Gate Networks
News 10 Dec 2021
Dark web posts shed light on Panasonic breach

A network breach at Japanese electronics giant Panasonic was possibly set up as far back as January, according to researchers who were monitoring dark web forums. Continue Reading
By
- Shaun Nichols
Guest Post 10 Dec 2021
The business benefits of data compliance

Beyond appeasing auditors and avoiding fines, data compliance offers several business benefits. Discover how data compliance can build trust and improve publicity. Continue Reading
By
- Mitesh Athwani
Feature 08 Dec 2021
Is a passwordless future getting closer to reality?

Industry analysts offer predictions on the future of passwordless authentication and whether we'll ever truly get rid of one of security's weakest links. Continue Reading
By
- Kyle Johnson, Technology Editor
News 07 Dec 2021
BadgerDAO users' cryptocurrency stolen in cyber attack

Following last week's attack, BadgerDAO sent the threat actor a message, offering to 'compensate' the individual for finding a vulnerability in the company's systems. Continue Reading
By
- Arielle Waldman, News Writer
News 06 Dec 2021
BitMart the latest crypto exchange to suffer cyber attack

BitMart, which describes itself as the 'most trusted crypto trading platform,' confirmed it was the victim of an attack where $150 million in assets were stolen. Continue Reading
By
- Arielle Waldman, News Writer
News 02 Dec 2021
Former Ubiquiti engineer arrested for inside threat attack

Nickolas Sharp is accused of attacking his former employer, stealing confidential data and attempting to extort the company into paying him approximately $2 million. Continue Reading
By
- Arielle Waldman, News Writer
Definition 02 Dec 2021
Twofish

Twofish is a symmetric-key block cipher with a block size of 128 bits and variable-length key of size 128, 192 or 256 bits. Continue Reading
By
- Rahul Awati
Feature 29 Nov 2021
The components and objectives of privacy engineering

Privacy engineering helps organizations balance business and privacy needs, while mitigating the impact of data breaches. Learn about its components and objectives. Continue Reading
By
- Isabella Harford, TechTarget
- Pearson Education
Feature 29 Nov 2021
The intersection of privacy by design and privacy engineering

Data privacy concerns are widespread. Privacy by design and privacy engineering help organizations balance privacy with utility and usability. Learn how. Continue Reading
By
- Isabella Harford, TechTarget
Definition 29 Nov 2021
plaintext

In cryptography, plaintext is usually ordinary readable text before it is encrypted into ciphertext or after it is decrypted. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
News 23 Nov 2021
Apple files lawsuit against spyware vendor NSO Group

Apple sued the Israeli technology vendor, whose Pegasus spyware has been implicated in several malicious attacks on journalists, activists and government officials. Continue Reading
By
- Arielle Waldman, News Writer
News 22 Nov 2021
GoDaddy discloses breach of 1.2M customer account details

Web hosting provider GoDaddy said an attacker broke into its Managed WordPress service and accessed the account details and SSL keys of 1.2 million customers. Continue Reading
By
- Shaun Nichols
News 22 Nov 2021
Cryptocurrency exchange BTC-Alpha confirms ransomware attack

While it is common for threat actors to use cryptocurrency platforms to move and obfuscate ransom payments, this time an exchange platform was the victim of such an attack. Continue Reading
By
- Arielle Waldman, News Writer
Definition 22 Nov 2021
snooping

Snooping, in a security context, is unauthorized access to another person's or company's data. Continue Reading
By
- Andrew Froehlich, West Gate Networks
Definition 15 Nov 2021
BSA | The Software Alliance

BSA | The Software Alliance is an advocate for public policies that foster technology innovation and drive economic growth. Continue Reading
By
- Katie Terrell Hanna
Guest Post 15 Nov 2021
Reduce the risk of cyber attacks with frameworks, assessments

Don't rely on a compliance mandate to reduce the risk of cyber attacks or on a cyber insurer to cover an attack's aftermath. Assessments and frameworks are key to staying safe. Continue Reading
By
- Kayne McGladrey
News 11 Nov 2021
Aruba Central breach exposed customer data

HPE-owned Aruba Networks said one of its cloud databases was accessed by hackers who were able to make off with location and telemetry data for its customers' Wi-Fi gear. Continue Reading
By
- Shaun Nichols
Guest Post 10 Nov 2021
4 concepts that help balance business and security goals

The goal of enterprise security is to maintain connectivity, while remaining protected. Use these four concepts to balance business and security goals. Continue Reading
By
- Mark Pierpoint
Definition 09 Nov 2021
Security Assertion Markup Language (SAML)

Security Assertion Markup Language (SAML) is an open standard for sharing security information about identity, authentication and authorization across different systems. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
Guest Post 03 Nov 2021
To improve resilience, augment zero-trust models

Zero-trust models are a start, but to improve resilience, they should be augmented and extended to include verification procedures, supply chain security and open source software. Continue Reading
By
- Mika Lauhde
News 02 Nov 2021
FBI: Ransomware gangs using financial info to target companies

The FBI assessed that ransomware threat actors are likely using information like mergers, acquisitions and stock valuations to determine vulnerable enterprise targets. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 28 Oct 2021
Hackers upping SSL usage for encrypted attacks, communications

A report from cloud security vendor Zscaler found that cybercriminals are using secure connections to evade detection while carrying out network attacks. Continue Reading
By
- Shaun Nichols
News 28 Oct 2021
Twitter details internal Yubico security key rollout

Following last year's breach, Twitter obtained 100% security key enrollment from its 5,500 internal employee accounts within a month of the cutover date. Continue Reading
By
- Alexander Culafi, Senior News Writer
Definition 26 Oct 2021
encryption key

In cryptography, an encryption key is a variable value that is applied using an algorithm to a string or block of unencrypted text to produce encrypted text or to decrypt encrypted text. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
News 25 Oct 2021
SolarWinds hackers attacking more IT supply chain targets

According to Microsoft, the Russian threat group known as Nobelium has already compromised 14 technology service providers across the United States and Europe. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 18 Oct 2021
Sinclair Broadcast Group suffers ransomware attack, breach

The media giant disclosed a ransomware attack Monday that caused massive disruptions across networks and saw threat actors obtain corporate data. Continue Reading
By
- Arielle Waldman, News Writer
Definition 18 Oct 2021
cipher

In cryptography, a cipher is an algorithm for encrypting and decrypting data. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
- Linda Rosencrance
News 14 Oct 2021
Google digs into Iran's APT35 hacking group

Covert phishing tactics and cleverly disguised notifications are among the calling cards of the increasingly sophisticated operation aimed at Iran's opponents. Continue Reading
By
- Shaun Nichols
News 08 Oct 2021
Senators want FTC to enforce a federal data security standard

U.S. Senators debated creating federal data privacy and security standards and providing the FTC with enough resources to enforce them. Continue Reading
By
- Makenzie Holland, Senior News Writer
News 06 Oct 2021
Twitch confirms data breach following massive leak

Leakers claim to have stolen almost 6,000 internal Git repositories, including 'the entirety of Twitch.tv' and content creator payouts. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 23 Sep 2021
Autodiscover flaw in Microsoft Exchange leaking credentials

Guardicore found that exploiting a design flaw in Autodiscover allowed it to capture more than 372,000 Windows domain credentials and nearly 97,000 unique application credentials. Continue Reading
By
- Alexander Culafi, Senior News Writer
Feature 14 Sep 2021
SolarWinds CEO: Breach transparency 'painful' but necessary

SolarWinds CEO Sudhakar Ramakrishna discusses his company's ongoing breach investigation, shares lessons learned from the attack and cautions IT pros on zero trust. Continue Reading
By
- Rob Wright, Senior News Director
News 31 Aug 2021
SEC sanctions financial firms for cybersecurity failures

Three financial services firms were charged with failing to implement proper cybersecurity policies after cyber attacks led to the exposure of customer data. Continue Reading
By
- Arielle Waldman, News Writer
Definition 27 Aug 2021
Electronic Code Book (ECB)

Electronic Code Book (ECB) is a simple mode of operation with a block cipher that's mostly used with symmetric key encryption. Continue Reading
By
- Rahul Awati
Definition 24 Aug 2021
electronic discovery (e-discovery or ediscovery)

Electronic discovery -- also called e-discovery or ediscovery -- refers to any process of obtaining and exchanging evidence in a civil or criminal legal case. Continue Reading
By
- Alexander S. Gillis, Technical Writer and Editor
News 18 Aug 2021
T-Mobile breach exposes data for more than 40M people

The telecom giant confirmed reports that its network was breached by a threat actor who stole personal data on more than 40 million current, former and prospective customers. Continue Reading
By
- Shaun Nichols
News 16 Aug 2021
FBI watchlist exposed by misconfigured Elasticsearch cluster

A terrorist watchlist was found in an exposed database, and security researcher Bob Diachenko says there is no way of knowing just how long it was open to the public. Continue Reading
By
- Shaun Nichols
News 12 Aug 2021
Months after the Accellion breach, more victims emerge

The Accellion breach occurred last December, but more victims have come to light in recent weeks as investigations, notifications and disclosures stretch on through the summer. Continue Reading
By
- Arielle Waldman, News Writer
News 11 Aug 2021
Accenture responds to LockBit ransomware attack

The LockBit ransomware crew claims to have stolen data from IT services and consulting giant Accenture, but the company said no customer systems were affected in the attack. Continue Reading
By
- Shaun Nichols
News 09 Aug 2021
'ProxyShell' Exchange bugs resurface after presentation

A critical vulnerability in Microsoft Exchange is once again making the rounds with attackers, following a Black Hat presentation from the researcher who found it. Continue Reading
By
- Shaun Nichols
Definition 09 Aug 2021
cryptology

Cryptology is the mathematics, such as number theory and the application of formulas and algorithms, that underpin cryptography and cryptanalysis. Continue Reading
By
- TechTarget Contributor
Answer 06 Aug 2021
Is bitcoin safe? How to secure your bitcoin wallet

As bitcoin use increases, so too have the number of cyber attacks on cryptocurrency exchanges and wallets. Learn how to keep bitcoin use secure. Continue Reading
By
- Michael Cobb
News 05 Aug 2021
Hackers build a better timing attack to crack encryption keys

A new technique for cracking encryption keys can overcome the limitations of popular timing attacks by analyzing network packets, according to researchers at Black Hat 2021. Continue Reading
By
- Shaun Nichols
Definition 30 Jul 2021
private key

A private key, also known as a secret key, is a variable in cryptography that is used with an algorithm to encrypt and decrypt data. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
- Michael Cobb
Definition 28 Jul 2021
hardware security module (HSM)

A hardware security module (HSM) is a physical device that provides extra security for sensitive data. Continue Reading
By
- Elizabeth Davies
- Cameron McKenzie, TechTarget
Guest Post 16 Jul 2021
4 healthcare risk management tips for secure cloud migration

From improving the security posture and updating threat modeling to securing cloud data, learn about four risk management tips for healthcare organizations migrating to cloud. Continue Reading
By
- Nabil Hannan
Definition 28 Jun 2021
public key

In cryptography, a public key is a large numerical value that is used to encrypt data. Continue Reading
By
- TechTarget Contributor
Definition 25 Jun 2021
end-to-end encryption (E2EE)

End-to-end encryption (E2EE) is a method of secure communication that prevents third parties from accessing data while it's transferred from one end system or device to another. Continue Reading
By
- Ben Lutkevich, Site Editor
- Madelyn Bacon, TechTarget
News 14 Jun 2021
Accellion breach raises notification concerns

Victims of the breach continue to emerge, and one customer said it could have acted sooner, but a critical alert about a zero-day never left Accellion's email system. Continue Reading
By
- Arielle Waldman, News Writer
News 11 Jun 2021
Securolytics COO charged in Georgia hospital cyber attack

Details on the cyber attack are scarce, but according to the indictment, Vikas Singla allegedly attempted to steal data and disrupt the hospital's phone system. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 02 Jun 2021
ExaGrid revealed as latest Conti ransomware casualty

The data backup vendor appears to have paid a $2.6 million ransom after Conti threat actors breached its corporate network and stole internal documents. Continue Reading
By
- Shaun Nichols
News 26 May 2021
US agencies lack supply chain best practices post-SolarWinds

Vijay D'Souza, the GAO's director of IT and cybersecurity, said during a joint hearing that 'none of the agencies have fully implemented our recommendations.' Continue Reading
By
- Alexander Culafi, Senior News Writer
Quiz 25 May 2021
Cryptography quiz questions and answers: Test your smarts

Put your encryption knowledge to the test, and perhaps even learn a new word or concept in the process with these cryptography quiz questions. Continue Reading
By
- Sharon Shea, Executive Editor
News 18 May 2021
Attorneys share worst practices for data breach response

Angry emails, bad jokes and sloppy reports can all lead to legal headaches following a data breach, according to a panel of experts at RSA Conference 2021. Continue Reading
By
- Shaun Nichols
News 13 May 2021
Verizon DBIR shows sharp increase in ransomware attacks

According to Verizon's latest Data Breach Investigations Report, 60% of ransomware cases involved either direct installation or installation via desktop sharing software. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 12 May 2021
Funding is key to strengthening national cybersecurity

In the wake of the Colonial Pipeline ransomware attack, national cybersecurity experts make the case for additional funding during a Senate hearing. Continue Reading
By
- Makenzie Holland, Senior News Writer
News 28 Apr 2021
Codecov breach raises concerns about software supply chain

So far, only HashiCorp has disclosed a breach connected to the attack on Codecov, but threat researchers have drawn parallels to the SolarWinds supply chain attacks. Continue Reading
By
- Alexander Culafi, Senior News Writer
Guest Post 28 Apr 2021
Cybersecurity key to protect brands in the digital landscape

The digital transformation disrupted the relationship between brand value and risk. Vishal Salvi explains how the right cybersecurity strategy protects both brands and customers. Continue Reading
By
- Vishal Salvi
News 27 Apr 2021
Rise in ransom payments may fuel more dangerous attacks

A new report from Coveware found that ransom payments increased significantly in Q1 this year, as did ransomware actors' use of software vulnerabilities in attacks. Continue Reading
By
- Arielle Waldman, News Writer
Guest Post 16 Apr 2021
Companies must train their SOC teams well to prevent breaches

SOC teams can have all the latest and greatest cybersecurity tools, but unless they have the proper training, it won't be enough to mitigate an attack. Continue Reading
By
- Wayne Pruitt
Guest Post 07 Apr 2021
Utilizing existing tech to achieve zero-trust security

A zero-trust security model can immediately be used to address current gaps and provide a secure foundation for managing risk going forward, from both internal and external threats. Continue Reading
By
- Kevin Dunne
Quiz 30 Mar 2021
Data loss prevention quiz: Test your training on DLP features

Data loss prevention tools can help infosec manage insider threat, shadow IT and compliance initiatives. Test your know-how with this DLP quiz. Continue Reading
By
- Katie Donegan, Social Media Manager
News 25 Mar 2021
Cyber insurance company CNA discloses cyber attack

Though the nature of the cyber attack is unclear, CNA confirmed the attack caused a network disruption and affected systems such as corporate email and the company's website. Continue Reading
By
- Arielle Waldman, News Writer
Guest Post 18 Mar 2021
3 ways CISOs can align cybersecurity to business goals

To work effectively with the C-suite, CISOs can take three steps to align business goals with cybersecurity needs to reduce risk, guest contributor Mike McGlynn advises. Continue Reading
By
- Mike McGlynn
News 16 Mar 2021
Timeline of Microsoft Exchange Server attacks raises questions

Multiple security vendors reported that exploitation of the Microsoft Exchange Server zero-days began well before their disclosure, but researchers are at a loss to explain why. Continue Reading
By
- Arielle Waldman, News Writer
Guest Post 11 Mar 2021
How security teams can prepare for advanced persistent threats

Daniel Clayton explains how any organization can devise its cybersecurity strategy to account for advanced persistent threats, which have started changing the threat landscape. Continue Reading
By
- Daniel Clayton
News 25 Feb 2021
Vastaamo breach, bankruptcy indicate troubling trend

The blackmailing of patients directly, as well as the resulting bankruptcy of Vastaamo Psychotherapy Centre, could single a shift in cyber crime tactics. Continue Reading
By
- Arielle Waldman, News Writer
Tip 25 Feb 2021
3 post-SolarWinds supply chain security best practices

Following the devastating SolarWinds breach, IT leaders should renew their focus on third-party risk management. Start by implementing supply chain security best practices. Continue Reading
By
- Jessica Groopman, Kaleido Insights
Guest Post 12 Feb 2021
How SolarWinds attack will change CISOs' priorities

Following cybersecurity best practices used to be enough, but after the SolarWinds supply chain attack, CISOs now have to rethink all their security protocols. Continue Reading
By
- Vishal Salvi
Feature 08 Feb 2021
5 cybersecurity lessons from the SolarWinds breach

Ransomware attack simulations, accessing enterprise logs and pen testing software code are among the best practices cybersecurity pros suggest following the SolarWinds breach. Continue Reading
By
- Sandra Gittlen
Feature 01 Feb 2021
The dark web in 2021: Should enterprises be worried?

SearchSecurity spoke with multiple experts to find out how the dark web has changed, what the security risks are for enterprises and the value of dark web monitoring services. Continue Reading
By
- Alexander Culafi, Senior News Writer
Guest Post 27 Jan 2021
2021 cybersecurity predictions: Oh, where cybersecurity may go

Jonathan Meyers sees 2021 bringing cybersecurity challenges to the forefront, like more cyberattacks on local governments, BYOD security issues and AI and ML overhype. Continue Reading
By
- Jonathan Meyers
News 26 Jan 2021
Mimecast certificate compromised by SolarWinds hackers

Mimecast conducted an investigation after being alerted by Microsoft that a certificate for Microsoft 365 Exchange Web Services authentication was stolen by a sophisticated actor. Continue Reading
By
- Arielle Waldman, News Writer