Threat Protection - Security Intelligence

A man using a virtual reality device in an office.

article

Virtual Reality, Augmented Reality and Futuristic Threat Modeling

Augmented and virtual reality can be invaluable tools for threat modeling in all sectors, but the emerging technologies also introduce new vulnerabilities.

March 23, 2017 | By Kelly Ryver

article

A businessman working inside a cramped, cardboard box.

article

Nine Security Tips That Go Outside the Box

Even the most basic security measures can go a long way toward thwarting cybercrime. Use these simple yet effective security tips to protect your network.

March 2, 2017 | By Rick M Robinson

article

An IT analyst browsing data on a computer screen.

article

Enterprise Intelligence Brief: Threat Hunting Takes Center Stage

Threat hunting can help organizations transition from reactive to proactive defense strategies and start thinking like cybercriminals.

February 1, 2017 | By Natasha Bishop

article

article

Protect Your Crown Jewels Against the Insider Threat: Know Your Users, Know Your Data

All access is not created equal. To protect your crown jewels from an insider threat, it's critical to know your data and, more importantly, your users.

January 10, 2017 | By Nick Oropall

article

Threat management can help prevent the domino effect.

article

Avoiding Threat Management Rookie Mistakes

Two recent cyberattacks against global companies and services demonstrated the need for better threat management practices and awareness.

December 9, 2016 | By David Strom

article

An anonymous businessman with a question mark covering his face.

article

Security Starts With People: Three Steps to Build a Strong Insider Threat Protection Program

To protect their organizations from an insider threat, IT managers should take steps to reduce exposure of data and enhance detection capabilities.

December 5, 2016 | By Laurène Hummer

article

Professionals exchanging information using technology.

article

It’s Time for the Democratization of Cybersecurity Data

The widespread democratization of cybersecurity data would enable the IT industry to keep up with cybercriminals who always seem to be one step ahead.

November 21, 2016 | By Caleb Barlow

article

IBM Research's anti-ROP solution acts like a moving target, randomizing files to prevent attackers from misusing legitimate code. Criminals building an ROP attack can no longer calculate the shift of one gadget to infer that of another.

article

Anti-ROP: A Moving Target Defense

IBM Research — Haifa recently developed a solution that acts like a moving target, randomizing files to safeguard against ROP attacks.

September 1, 2016 | By Ayman Jarrous

article

Threat actors identified in threat modeling exercises can be trusted users within the organization, third-party contractors, suppliers or partners, or external cybercriminals. These actors are motivated by money, politics, revenge and other factors.

article

Threat Modeling in the Enterprise, Part 3: Understanding the Context

When evaluating overall risk in the context of threat modeling, it is important to identify the threat actors, their motivations and their capabilities.

August 22, 2016 | By Stiliyana Simeonova

article

The three most common threat modeling methodologies — Trike, PASTA and Microsoft STRIDE — can be completed by following the same four steps: Define your objectives, decompose the system, identify threats and, finally, prioritize these threats.

article

Threat Modeling in the Enterprise, Part 2: Understanding the Process

The output of a carefully executed threat modeling exercise can be extremely valuable when informing your security control selection process.

August 15, 2016 | By Stiliyana Simeonova

article

Tag: Threat Protection