News February 1, 2023

The White House on Quantum Encryption and IoT Labels

2 min read - A recent White House Fact Sheet outlined the current and future U.S. cybersecurity priorities. While most of the topics covered were in line with expectations, others drew more attention. The emphasis on critical infrastructure protection is clearly a top national…

CISO January 17, 2023

Why Quantum Computing Capabilities Are Creating Security Vulnerabilities Today

3 min read - Quantum computing capabilities are already impacting your organization. While data encryption and operational disruption have long troubled Chief Information Security Officers (CISOs), the threat posed by emerging quantum computing capabilities is far more profound and immediate. Indeed, quantum computing poses…

Data Protection September 20, 2022

Getting Lost in an Encryption Maze? Try a Key Management System

2 min read - Encryption is an essential part of any data security strategy. A key management system (KMS) can make encryption easier by enabling you to transform data to indecipherable cyphertext and control who can access it in clear text. That helps keep…

CISO January 28, 2022

What You Need to Know About Data Encryption Right Now

5 min read - You might feel like you’ve heard these imperatives a million times: “You need to encrypt your data.” “Your information isn’t secure unless you encrypt it.” “You need to eat your fruits and vegetables.” But if you’re like a lot of…

Incident Response November 1, 2021

From Thanos to Prometheus: When Ransomware Encryption Goes Wrong

7 min read - IBM Security X-Force researchers have recently reverse-engineered Prometheus ransomware samples as part of ongoing incident response operations. X-Force has found that samples that infected organizational networks featured flawed encryption. This allowed our team to develop a fast-acting decryptor and help…

News September 1, 2021

Ransomware Gangs Using Data Leak Sites to Recruit New Affiliates

2 min read - Ransomware gangs have a new technique to recruit affiliates: posting announcements on their own data leaks websites. This provides a look into today’s so-called ransomware-as-a-service (RaaS), in which people can pay to have some of the work automated for them.…

Cloud Security August 13, 2021

Ransomware Attacks: How to Protect your Data With Encryption

3 min read - Cybercriminals are making headlines using ransomware to block organizations from accessing their own critical business data to extort ransoms. In 2021, ransomware has become a pervasive, newsworthy topic that competes as a major national security issue. In the last year…

Mobile Security June 28, 2021

The OSI Model and You Part 6: Stopping Threats at the OSI Presentation Layer

2 min read - Our travels through the OSI seven layers of networking have shown that each layer has specific weaknesses and angles of attack. In turn, each has its best defenses. Now, we’ve come to the OSI presentation layer. Here translation, encryption and compression…

Data Protection June 10, 2021

How Good Transaction Security Can Make Customer Visits Easier

3 min read - Every time I start to put my information into an online form, especially if it’s my credit card number or a banking transaction, I almost always pause. There was a time when I entered customer data without a second thought.…

Cloud Security June 2, 2021

Cloud Security: Why Being Intentional in Encryption Matters

3 min read - Cloud security and web application security demand technology and practices that protect applications and data hosted remotely. Good old-fashioned data encryption is chief among these. The reasons for encrypting cloud data, of course, are privacy, security and regulatory compliance —…