CC_No_33_Sherlock_Holmes

Inside the World of Insider Threats, Part III: Means and Opportunity

If you’ve been reading along, you’ll know that the psychological motives for insiders are complex and worthy of a flowchart. In fact, in our last post we showed you a chain-of-event graph used by real security researchers. After insiders go to the dark side, they have one big advantage over outsiders: by default they are in…

Continue Reading

dodd frank

How Varonis Helps with the Dodd-Frank Wall Street Reform and Consumer Protection Act

The objective of the Dodd-Frank Wall Street Reform and Consumer Protection Act is to promote the financial stability of the United States by improving accountability and transparency in the financial system. Signed into federal law by President Barack Obama on July 21, 2010, this act contains regulation on its impact on IT Departments. To learn…

Continue Reading

pci-dss-logo

PCI DSS Explained: Our New White Paper Decodes the Complexity

The Payment Card Industry Data Security Standard (PCI DSS) is not just another list of requirements for protecting data. In 2013, the number of credit and debit card transactions worldwide reached over 100 billion—that’s lots of swipes and 16-digit numbers entered! With its almost 300 controls, PCI DSS provides the rules of the road for…

Continue Reading

Cookie_jar

US National Breach Notification Law Gets its 15 Seconds

You’re excused if you missed the very brief mention of a new data security law in the President’s State of the Union address two weeks ago. It received a sentence or two somewhere towards the end of the speech. The White House published the proposed legislation (The Personal Data Notification & Protection Act) on its…

Continue Reading

Hagadone Logo

Varonis Delivers Real-time Data Insight to Hagadone

The Hagadone Corporation is a privately held, U.S.-based company that owns and manages more than 30 businesses spanning the communication and hospitality industries. Hagadone needed to find a software solution that would help its IT group take control of Active Directory as well as the unstructured data stored on the company’s rapidly growing servers. It…

Continue Reading

DatAnswers

Varonis DatAnswers is GA

Our newest product, DatAnswers, was made generally available on December 15th. Now that the New Year’s change freeze is behind us, why not try it free for 30 days? Wait, what is DatAnswers? A secure, highly efficient, affordable enterprise search engine for file shares and SharePoint. Why would Varonis make a search engine? Not only…

Continue Reading

Inside the World of Insider Threats, Part II: More on Motivation

One area the CMU CERT researchers looked into was the chain of events that cause a law-abiding employee to become an insider menace. For those who want to learn about the models the CMU team came up with, they’re welcome to read this fascinating paper on the topic. But I think I can summarize the…

Continue Reading

In_the_office_1

Inside the World of Insider Threats, Part I: Motivation

As someone once said in a different context, never let a good crisis go to waste. While we still don’t have definitive proof, there’s good evidence that employees were in some way involved in the Sony meltdown—see Did North Korea Really Attack Sony? from Schneier. The larger point is that the Sony breach opens the…

Continue Reading

Big Data Recommendations Engine for Data Access

Could you imagine the web without personalized recommendations? Amazon tells us what new books to buy Spotify tells us what music to listen to Netflix tells us which movies to watch Foursquare tells us where to eat and what to order …but what about a recommendations engine for data access? As users move through an…

Continue Reading

We’ve Been Recognized by Gartner

We have good news to share. Gartner, a leading independent provider of IT advisory and market intelligence, has mentioned us in their first ever “Gartner, Market Guide for Data-Centric Audit and Protection (Lowans and Perkins, Nov. 2014)”. Gartner has given us a check mark in all five Data-Centric Audit and Protection (DCAP) categories: Data Discovery,…

Continue Reading