Blog
Discover How to Stay Secure and Compliant
What’s happening in the field of cyber security? Which threats can be prevented? What steps should you take to make your systems safer? Read our blog posts to gain new insights into security awareness, the latest threats, penetration testing, compliance and so much more.
Third-Party Vendors: Are You on the Same Page?
Your Vendors May Be Weak Links in Supply Chain Breaches
(more…)
Cyber Security Summit Chicago: The Age of Risk
The Cyber Security Summit began with a speaker from the Department of Justice, and it ended with a speaker from the FBI. (more…)
Why You Need to Take an Active Role in Your AWS Cloud Environment – One of the Largest Data Breaches
The Capital One incident is one of the largest data breaches of all time, involving 100 million credit card applications and 140,000 Social Security numbers; the bank’s stock price took an immediate hit as company executives and IT personnel began scrambling to implement the firm’s incident response plan. (more…)
Migrating Your Legacy Firewall to a Next Generation Firewall
Every organization today needs a multi-layer security strategy to protect its enterprise from the multitude of cyber security threats that exist today; While one cannot underestimate the importance of an email security gateway, web filtering solution, or endpoint protection system, there is no question as to the prominence of an enterprise firewall. (more…)
Does the Colorado Protections for Consumer Data Privacy Law Affect You?
If you are a business in the United States, or anywhere for that matter, its time to start taking notice at where your consumers are located; Because compliance regulations such as those implemented by the European Union, California and Colorado may apply to your organization if you hold the personal information and data of people located in those jurisdictions. (more…)
Cyber Security Policies & Strategies Forum: SCPHCA
HALOCK Security Labs led the Cyber Security forum for the South Carolina Primary Health Care Association (SCPHCA). Managing consultants, Tod Ferran, CISSP, QSA, ISO 27001 Lead Auditor, and Glenn A. Stout, Ph.D., CISSP, CISM, GSEC, PMP presented on hot topics. (more…)
Recent Changes and Amendments to Cybersecurity Compliance Acts in California, Colorado, and New York
As we have outlined in prior articles, states such as California, Colorado, and New York are actively implementing regulations that will enforce compliance regulations concerning the management of personal information. Like cybersecurity itself, legislation is a dynamic process and states continue to tweak and add amendments to the existing laws. (more…)
Insufficient Vendor Reviews = Rampant Third-Party Breaches
According to a survey conducted by the Ponemon Institute in 2018, 59 percent of companies have experienced a third-party breach of some type. Despite the high prevalence of these incidents however, only 16 percent say they effectively mitigate third-party risks. (more…)
Why Breaches of Web-Facing Assets are on the Increase
Think of a hacker as an enemy attack submarine. In warfare, a submarine lurks underwater, seeking victims. It may be probing the defenses of a shipping harbor to find weaknesses that can be exploited. Hackers perform a similar strategy today as they probe the web for internet-facing assets to find easy targets to breach and exploit. (more…)