Resources

Navigating Change: Three Levels to Filter Out the Noise in Tech Environments
Blog

Navigating Change: Three Levels to Filter Out the Noise in Tech Environments

By Kirsten Doyle on Tue, 09/03/2024
Change is relentless. Technology evolves at breakneck speed, and security practitioners face a constant barrage of updates, system tweaks, and new tools. This relentless stream of modifications can create a clutter of information, making it challenging to pinpoint what is truly important.Effectively filtering through this noise through effective change management is critical for maintaining...
Cybersecurity
File Integrity & Change Monitoring
Guardians of the Files: Tracing the Evolution of File Integrity Monitoring
Blog

Guardians of the Files: Tracing the Evolution of File Integrity Monitoring

By Kelsey Arhart on Mon, 09/02/2024
File Integrity Monitoring (FIM) is a cybersecurity process that involves continuously monitoring files and systems to identify any unauthorized changes. FIM solutions maintain file integrity by comparing a file or system's current state to a known, trusted baseline and flagging any discrepancies. It is key for identifying security breaches, preventing data tampering, and maintaining compliance...
Cybersecurity
File Integrity & Change Monitoring
Fortra Datasheet
Datasheet

Tripwire Enterprise and IBM i

Many of the world's largest companies rely on IBM i operating on IBM Power Servers as their strategic platform for business-critical activities such as retail, distribution, logistics, banking, manufacturing planning, healthcare, insurance, hospitality management, government administration, and legal case management. Given the widespread use of the IBM i operating system, advanced cybersecurity...
File Integrity & Change Monitoring
Security Configuration Management
Fortra Webinar
On-Demand Webinar

FIM Isn’t Just for Files Anymore

Mon, 08/05/2024
File integrity monitoring was invented by Tripwire’s founder over 25 years ago and has evolved over time to become one of the most important security controls — so critical, in fact, that it’s required by major compliance standards like the Payment Card Industry Data Security Standard (PCI DSS). But what a lot of cybersecurity professionals aren’t familiar with is how FIM has expanded to include a...
File Integrity & Change Monitoring
The Dual Impact of AI on Power Grids: Efficiency and Vulnerability
Blog

The Dual Impact of AI on Power Grids: Efficiency and Vulnerability

By Emily Newton on Wed, 07/24/2024
Artificial intelligence (AI) has emerged as a promising solution to modernize power grids. The technology, alongside other upgrades like Internet of Things (IoT) connectivity, could make energy infrastructure more reliable and sustainable. However, AI power grids also pose significant cybersecurity risks.Attacks against critical infrastructure are becoming more common. As energy authorities ramp...
Cybersecurity
Industrial Control Systems
Low-Hanging Fruits Vs. Those at the Top of the Tree: Cybersecurity Edition
Blog

Low-Hanging Fruits Vs. Those at the Top of the Tree: Cybersecurity Edition

By Joe Pettit on Tue, 07/16/2024
Companies often go for high-end cybersecurity solutions because dealing with complex problems looks impressive. The appeal of fancy tech and advanced security challenges gives them a sense of achievement and a chance to show off their skills - and says they're serious about staying ahead of cyber crooks.However, this isn't always the best strategy. Many significant risks arise from simple...
Cybersecurity
Incident Detection & Investigation
IT Security Operations & Asset Discovery
Security Configuration Management
IoT Security Regulations: A Compliance Checklist – Part 2
Blog

IoT Security Regulations: A Compliance Checklist – Part 2

By Gilad David Maayan on Wed, 07/03/2024
In Part 1, the existing global regulations around IoT were introduced. In this part, the challenge of complying with these rules is examined.The IoT Security ChallengeSecuring the Internet of Things (IoT) presents complex challenges that stem primarily from the scale, heterogeneity, and distributed nature of IoT networks:Inconsistent security standards: One of the most pressing issues is the...
Cybersecurity
Compliance
IT Security Operations & Asset Discovery
Superior Integrity Monitoring: Getting Beyond Checkbox FIM
Blog

Superior Integrity Monitoring: Getting Beyond Checkbox FIM

By Fortra Staff on Tue, 07/02/2024
Contrary to what one might expect, creating a File Integrity Monitoring (FIM) system is pretty easy. Practically anyone with a modicum of Python, Perl, or development skills can write an app or script to gather a file's checksum, compare it to a list or baseline, and tell you whether or not said file has changed.But creating a good FIM solution is hard. Many inadequate checkbox File Integrity...
Cybersecurity
File Integrity & Change Monitoring
7 Challenges in Scaling SOC Operations and How to Overcome Them
Blog

7 Challenges in Scaling SOC Operations and How to Overcome Them

By Josh Breaker-Rolfe on Mon, 06/24/2024
In the past four years, cyberattacks have more than doubled. Cybercriminals are leveraging emerging technologies like artificial intelligence (AI) to facilitate more sophisticated attacks. Geopolitical tumult has increased cyber risk. Couple these factors with a near-ubiquitous desire for businesses to expand their operations, and it’s easy to understand the need for scaling Security Operations...
Cybersecurity
IT Security Operations & Asset Discovery
Gaining Network Transparency with Asset Discovery and Compliance for IT/OT
Blog

Gaining Network Transparency with Asset Discovery and Compliance for IT/OT

By Faisal Parkar on Mon, 06/24/2024
I recently came across the "Johari Window Model" and thought this would be a good way to gain inspiration to explain the conundrum faced by many cybersecurity customers. The table below shows us the breakdown of the stages that are applicable not just to IT and OT environments but also to other facets of our daily lives. This model can be applied...
Cybersecurity
IT Security Operations & Asset Discovery
IoT Security Regulations: A Compliance Checklist – Part 1
Blog

IoT Security Regulations: A Compliance Checklist – Part 1

By Gilad David Maayan on Mon, 06/24/2024
The Internet of Things (IoT) refers to the global network of physical devices connected to the internet, capable of collecting and sharing data. IoT devices range from everyday household items to sophisticated industrial tools. By integrating sensors and communication hardware, IoT bridges the gap between the physical and digital worlds, enabling environments where smart devices operate...
Cybersecurity
IT Security Operations & Asset Discovery
integrity
Blog

Integrity and FIM: It’s More than Just Data Security

By Jeff Moline on Tue, 06/18/2024
Integrity is a vital component of any cybersecurity policy, making up one-third of the CIA Triad. However, until recently, the industry has had a limited understanding of the term, using it primarily in the context of data security. Integrity means so much more than this principle alone: it impacts every facet of an information system and can drive an organization's entire security program. ...
Cybersecurity
File Integrity & Change Monitoring
what-is-the-difference-between-fim-and-dlp
Blog

What Is the Difference between FIM and DLP?

By Wade Barisoff on Thu, 06/06/2024
Threats to sensitive data are everywhere. From sophisticated cybercriminal syndicates to accidental exposure to nation-state-backed advanced persistent threat (APT) groups and everything in between, it's never been more critical for organizations to have the correct data protection tools. When designing how to protect company information from loss...
Cybersecurity
File Integrity & Change Monitoring
how-can-fim-protect-against-insider-threats
Blog

How Can FIM Protect Against Insider Threats

By Amir Gerges on Mon, 06/03/2024
An insider threat is someone inside an organization – including current and former employees, partners, and contractors – who, intentionally or otherwise, put their organization at risk. They typically abuse their access to private information and privileged accounts to steal or sabotage sensitive data, often for financial gain or even revenge. ...
Cybersecurity
File Integrity & Change Monitoring
a plug in a plug socket
Blog

EU Is Tightening Cybersecurity for Energy Providers

By Josh Breaker-Rolfe on Wed, 05/29/2024
The energy sector is having a tumultuous decade. During the COVID pandemic, the price of oil plummeted. In 2021, a ransomware attack forced one of the US’s most significant oil pipelines to cease operations for five days, causing a state of emergency in seventeen states. Putin’s war in Ukraine has disrupted natural gas supplies across Europe. And now, it seems, it is the electricity providers’...
Cybersecurity
Industrial Control Systems
measuring-the-effectiveness-of-file-integrity-monitoring-tools
Blog

Measuring the Effectiveness of File Integrity Monitoring Tools

By Mark Conway on Tue, 05/28/2024
A security incident can be the result of a single unauthorised change. A few may say, 'one change is inconsequential, don't sweat the small stuff.' But when it comes to infrastructure security, the detail is of paramount importance! Just a single edit to a single line item can have a negative effect on an entire file or operating system. It's...
Cybersecurity
File Integrity & Change Monitoring
HITRUST: the Path to Cyber Resilience
Blog

HITRUST: the Path to Cyber Resilience

By John Salmi on Wed, 05/22/2024
Much has been made of cyber resilience in recent years. And with good reason: failing to bounce back quickly from a security event can have dramatic financial consequences. In early 2023, Royal Mail took several days to recover from a Lockbit cyberattack, losing upwards of £10 million in the process. However, for all the talk about resilience, the industry seems to be overlooking one of its...
Cybersecurity
Compliance
File Integrity & Change Monitoring
Security Configuration Management
Making Data Integrity Easy: Simplifying NIST CSF with Tripwire
Blog

Making Data Integrity Easy: Simplifying NIST CSF with Tripwire

By Dan Jamison on Mon, 05/20/2024
When you think of the cybersecurity "CIA" triad of Confidentiality, Integrity, and Availability, which one of those is most important to your organization? While the answer may vary by season for your organization, there is no argument that they are all equally vital sides of that CIA triangle, and each deserves the correct level of care and...
Cybersecurity
File Integrity & Change Monitoring
Security Configuration Management
Top-7-Technical-Resource-Providers-for-ICS-Security-Professionals
Blog

Top 7 Technical Resource Providers for ICS Security Professionals

By Anastasios Arampatzis on Wed, 05/15/2024
Attacks against industrial control systems (ICS) are on the rise. Cyberattacks are more prevalent, creative, and faster than ever. So, understanding attackers' tactics is crucial. The IBM Security X-Force Threat Intelligence Index 2023 highlights that backdoor deployments enabling remote access to ICS systems were the most common type of attacker...
Industrial Control Systems