Newsletter

File Integrity Monitoring: Your Last Line of Defense in Achieving PCI DSS Compliance 

Has there ever been a more confusion-generating initiative than the PCI DSS? Even now, thirteen years on from its initial introduction, a clear and definitive understanding of what your organization needs to do may still be a challenge.This article focuses on one dimension of the security standard that is often the last one to consider and tackle - File Integrity Monitoring.

Read more here 

The Top Ten of audit trail & Event Log Monitoring

Event Log, Audit Log and Syslog messages have always been a good source of troubleshooting and diagnostic information, but the need to back up audit trail files to a centralized log server is now a mandatory component of many governance standards.

Contemporary, SIEM solutions need to be:1. Flexible enough to cater to all devices, operating systems, platforms, databases, and applications, 2. Sufficiently scalable to cope with thousands of devices generating millions of events, and 3. Intelligent, correlating events and identifying true security incidents only so resources can focus on genuine threats and attacks
 

Read more »

NNT F.A.S.T Cloud Intelligence: now backed with over 4 billion file reputation scores

New Net Technologies (NNT), today’s leader in Intelligent Change Control, has released a substantial update to their IT security suite: Release 2.0 of the NNT F.A.S.T (File-Approved Safe Technology) Cloud.

The NNT F.A.S.T Cloud leverages Cloud-Based Threat Intelligence and automatically authorizes file changes as they are detected using the world’s largest authoritative file whitelist. With over 4 Billion file reputation whitelist data behind it, the built-in knowledge of ‘safe’ files is comprehensive, meaning that change noise is muted to expose the remaining minority of genuinely suspicious unrecognized files.

Continue Reading the Latest Press Release 

Cyber attack sets off 156 emergency alarms in Dallas

A cyber attack left the city of Dallas with a serious headache after setting off all emergency sirens in the city for around 90 minutes last Friday night.

Reports claim that the attack triggered 156 emergency sirens around the city that are generally used for weather-related incidents like tornadoes. The alarms struck around 11:42 pm CDT and rang till 1:17 am on Saturday morning until engineers manually shut down the sirens’ radio system and repeaters.

This attack is among the largest to impact emergency sirens, an attack that many believe could have been avoided without failed safety mechanisms in place. 

Read more  

Quarterly Update: F.A.S.T Cloud Integration from NNT CEO & CTO

File Integrity Monitoring is essential to ensure the integrity of your security IT systems. Reporting these changes can be a headache though- how do you differentiate between 'good', planned changes, and 'bad', possibly malicious activity? The solution is to leverage Cloud-Based Threat Intelligence and automatically authorize file changes as they are detected using the world’s largest authoritative file whitelist. And now you can do just that, using the NNT FAST Cloud (File Approved-Safe Technology).

Watch NNT's recorded Quarterly Update, presented by NNT CTO, Mark Kedgley, and NNT CEO, Mark Kerrison as they provide a detailed technical overview of our latest feature, the F.A.S.T Cloud.

Watch the Quarterly Update Recording

IHG Suffers Major Card Breach

Intercontinental Hotel Group (IHG) has had a reveal yet another data breach of its customer’s credit and debit card information dating back to late 2016.

The company has yet to explicitly mention the exact number of impacted locations and customers, but a list on their website shows a huge number across the United States and Puerto Rico. IHG has confirmed the franchises were affected between September 29 and December 29, 2016.

 Read more »

An Introduction to the Compliance Audit- IT Processes & Configuration Settings

If you haven’t yet been asked ‘The auditors want us to...’ or ‘The auditor suggested...’ or ‘...wants to know how we...’ the likelihood is, you will be soon!

This article is an introductory Guide for IT professionals – an ‘Everything you wanted to know about Compliance’. Those reading this with experience of being audited in the past will learn how to remain compliant with your required standards, making the next round of Audits much more straightforward.

Read more »