800px-Ancient_warded_lock_key_transparent

SSL and TLS 1.0 No Longer Acceptable for PCI Compliance

Last month, the PCI Council released version 3.1 of their Data Security Standard (DSS). While most of the changes in this minor release are clarifications, there is at least one significant update involving secure communication protocols. The Council has decided that SSL and TLS 1.0 can no longer be used after June 30, 2016. The…

More Work to Be Done in Preparation for the New EU Data Protection Regulation [SURVEY]

In March 2015 at CeBIT, Varonis asked show attendees about their general understanding of the upcoming EU Data Protection Regulation. The new rules reform the EU’s existing 1996 Data Protection Directive and are expected to go into effect later this year or next. Here’s a snapshot of some of the more important considerations in the…

800px-New_York_Court_of_Appeals_hearing_oral_arguments

Can We Trust Autopsy Results in Canada (or Anywhere)?

As if we didn’t have enough bad news about evidence used in the court room, now comes a story out of Canada about the security of court records. In testimony given at a trial in Alberta, Dr. Anny Sauvageau, the province’s former chief medical examiner, said that the government’s court IT system had little or…

640px-DSC32357,_Venetian_Resort_and_Casino,_Las_Vegas,_Nevada,_USA_(5472445441)

The ‘Varonis Track’ at EMC World 2015

Attending EMC World next month? Just as we did for RSA, we’ve come through again with our own ‘Varonis Track’—a special subset of sessions that we think will be of interest to Varonis customers, current and future. Security, Governance IT generalists and data security experts need to work together in the new cyberthreat environment. Partners…

Data Scientists Worth Following on Twitter

Many people who actually use the term “data scientist” don’t really like it. Isn’t science about data in the first place? It’s a bit redundant. But there is something special about what data scientists are actually doing. Drew Conway, PhD from NYU in Politics and now Head of Data at Sum, put together a neat…

Business Apps We’d Like to See on the Apple Watch

Anyone who’s been following the demos of the Apple Watch probably has one question on their mind: will it be ok to send frowny faces to IT admins? Maybe. More seriously, there is a definite business app potential to this latest Apple creation. At least one major enterprise software company has already stepped up to…

beckslogo

Beck’s Hybrids Reaps Greater Control of Company Data With Varonis DatAnywhere

Beck’s Hybrids, the largest family-owned, retail seed company in the United States, found itself faced with a dilemma as employee use of public cloud sharing solutions to collaborate and share documents began growing like a field of weeds. The company’s Systems Engineer Jeremy Hunt understood the business benefits of digital collaboration but was not comfortable…

loyolaMDlogo

Loyola University Maryland Masters Data Security with Varonis

Loyola University Maryland, a leading private, Jesuit university, feared the possibility of falling victim to a fate that other major universities around them had experienced: a major data breach. In the months following the early 2014 attack on a major university nearby, Loyola’s CIO, Louise Finn, proactively explored various solutions that could mitigate risk in…

Carbanak Attack Post-Mortem: Same Old Phish

The Kaspersky report about Carbanak malware released last month led to some pretty frightening headlines, usually starting with “Billion dollar heist…”.  Now that we’re over a month into reviewing some of the forensic evidence, it appears that Carbanak is less sophisticated than many first thought. At its heart, this was a spear phishing attack that…

US Healthcare and Pharmaceutical Companies Are Vulnerable

A recent survey conducted by the Ponemon Institute suggests that more than half of U.S. healthcare and pharmaceutical employees believe that their organizations do not place a high priority on the protection of sensitive data. Commissioned by Varonis, the Ponemon survey looked at internal security risks as seen by IT employees. When examining the results…