iron-safe

A Closer Look at Pass the Hash, Part II: Prevention

Last week, I attended a webinar that was intended to give IT attendees a snapshot of recent threats—a kind of hacker heads-up. For their representative case, the two sec gurus described a clever and very targeted phishing attack. It led to an APT being secretly deposited in a DLL. Once the hackers were in, I…

Continue Reading

395px-Automated_Storage_and_Retrieval_System_-_Defense_Visual_Information_Center_·_DD-ST-96-00253

Three Things to Be Aware of With Low-Cost Data Backup Services

I’m always a little surprised by the reaction from customers regarding off-site storage services.  It goes something like, “Well, the price is so good, that I don’t really need to know anything else.”  From a pure accounting standpoint, I do see their point. As a company goes down the road of evaluating low-cost backup and…

Continue Reading

Latest Varonis Survey Reveals the Speed Bumps to Ubiquitous Enterprise Search

We can’t imagine modern consumer life without search engines to help us find Web content that answers our most pressing questions. But in the business world, the situation is almost reversed—we’ve settled for pre-Internet era file search technology to locate the documents and information that help us do our jobs. In a Varonis survey of…

Continue Reading

What you may have missed

What You May Have Missed

1. The Department of Health and Human Services is hoping to send a firm message to the industry – be prepared for higher HIPAA fines if you don’t pass your audit! The Department of HHS’ Office of Civil Rights has received numerous security complaints about organizations that have failed to perform a comprehensive HIPAA-mandated risk…

Continue Reading

Whitepaper - The IT Chargebacks Guide

Varonis Guide to IT Chargebacks

If our posts on IT chargebacks had you asking more questions, then our new whitepaper should have the answers. The Varonis IT Chargeback Guide: How to Quantify IT’s Contribution to the Bottom Line discusses the most common chargeback methodologies to divide up IT costs among the various profit-making business units and the inherent problems with…

Continue Reading

800px-Tickets

A Closer Look at Pass the Hash, Part I

We’ve done a lot of blogging at the Metadata Era warning you about basic attacks against passwords. These can be mitigated by enforcing strong passwords, eliminating vendor defaults, and enabling reasonable lockout settings in Active Directory. But don’t rest yet! Hackers have another password trick that’s much more difficult to defend against. Advanced password, or…

Continue Reading

File Shares

Which Cloud File Sharing Service Should You Use?

Many companies with massive amounts of file share data are scrambling to find cloud file storage that meets their highly specialized needs, all while balancing security, convenience, and cost. But what if we flip the problem on its head? Instead of abandoning battle-tested file shares, what if we enhance their capabilities?

Continue Reading

Preventing Data Leaks with Enterprise Search

A major concern in deploying enterprise search is that people will now be able to find documents that they shouldn’t have had access to in the first place. DatAnswers leverages Varonis’ security intelligence which identifies when a user has access to files that they don’t need in order to do their job, and can exclude…

Continue Reading

What You May Have Missed

What You May Have Missed

1. The World Cup kicked off yesterday.  Behind the scenes, Rio’s Operations Centre is responsible for working with 30 government agencies to ensure that the event will run smoothly. It’s no surprise that real-time big data has been supporting their efforts: data fed from sensors, video feeds, and social media are displayed on a smart…

Continue Reading

ftc-privacy

Big Data Raises Privacy Concerns for Regulators

At the Metadata Era, we’re somewhat obsessed with the FTC, but for good reason: this agency helps shape policy on data security and privacy.  And after the giant breaches last year, Congress is beginning to listen. Last week, FTC Commissioner Julie Brill diplomatically spoke on the challenges of protecting privacy in a Big Data world….

Continue Reading