Resources

Blog

Verified users beware! Scammers are exploiting Twitter turmoil caused by Elon Musk's takeover

By Graham Cluley on Thu, 11/03/2022

Image As everyone has surely heard by now, Elon Musk has bought Twitter. The controversial tech maverick's takeover of the site has caused some consternation for the site's users, employees, and advertisers - and has also proven a golden opportunity for scammers. Numerous verified Twitter users have reported receiving phishing...

Blog

5 Myths About Online Privacy

By Tripwire Guest Authors on Thu, 11/03/2022

Image Every year has been an unfortunate year for online privacy for the past few years. Data breaches and social engineering attacks are at an all-time high, and the concept of online data privacy is challenged to its core, with millions of users being affected every month. IBM’s Cost of a Data Breach Report highlighted that the...

Blog

Brace yourself – ISO27001 changes are coming

By Tripwire Guest Authors on Wed, 11/02/2022

Image If you’re not aware already, then be prepared for change, because a new version of ISO27001 was published in October 2022! It’s all very exciting! The last change to the standard was in 2017. The changes made back then were fundamentally cosmetic, with a few minor tweaks to wording. The changes barely caused a ripple and, even...

Blog

Keeping threat actors away from your supply chain

By Tripwire Guest Authors on Wed, 11/02/2022

Image The supply chain is a complex environment that goes deep inside a business and involves the majority of its infrastructure, operations, personnel, and outer relations: vendors, partners, and customers. To protect that matrix is extremely difficult, as there are numerous sensitive nodes, lines, and processes that a security team...

Blog

LinkedIn's new security features fight scammers, deepfakes, and malicious hackers

By Graham Cluley on Thu, 10/27/2022

LinkedIn says it is beefing up its security in an attempt to better protect its user base from fraudulent activity.

Blog

Cybersecurity Awareness Month: CU in Cyber

By Tripwire Guest Authors on Tue, 10/25/2022

October is “Cybersecurity Awareness Month,” a time when cybersecurity specialists everywhere push hard to get the message out that cybersecurity is important.

Blog

New Canadian Cyberattack Data Says 80% of SMBs Are Vulnerable

By Tripwire Guest Authors on Tue, 10/25/2022

Image If you were to take a look at the cybersecurity news cycle, you’d be forgiven for thinking that it’s only large enterprises with expansive customer bases and budgets that are the most vulnerable to attacks. But that’s not entirely true. Even if it’s at a much smaller scale, small- and medium-sized businesses (SMBs) still have...

Blog

Shifting Left with SAST, DAST, and SCA: Advanced Best Practices

By Tripwire Guest Authors on Thu, 10/20/2022

Image In the past, teams incorporated security testing far after the development stage of the Software Development Lifecycle (SDLC). Security testing would influence whether the application would to proceed to production, or get passed back to the developers for remediation. This process caused delays while teams worked on...

Blog

An Introduction to the State and Local Cybersecurity Grant Program (SLCGP)

By David Henderson on Wed, 10/19/2022

Image Cybersecurity funding in corporate environments has always been a source of anxiety for those who seek to keep organizations safe. When we examine the cybersecurity readiness of many state, local, and territorial governments, this funding struggle is taken to new heights of scarcity. Fortunately, a new program has been created...

Blog

Integrity Monitoring Use Cases: Compliance

By David Bruce on Wed, 10/19/2022

Image What is File Integrity Monitoring? The IT ecosystems of enterprises are highly dynamic. Typically, organizations react to this volatility by investing in asset discovery and Security Configuration Management (SCM). These core controls enable businesses to compile an inventory of authorized devices and monitor the configurations...

Blog

Stop blaming employees for cybersecurity breaches

By Tripwire Guest Authors on Tue, 10/18/2022

Image When companies drive a wedge between their workforce and their security culture, not only do they reduce best practices, but they also increase stress and jeopardise secure behaviours. We need to stop blaming employees for cybersecurity breaches and look at the real reasons that data is compromised. Furthermore, as long as...

Case Study

Case Study: Why One Fortune 250 Electric & Gas Utility Trusts Fortra’s Tripwire for Unbeatable Accuracy

Vulnerability & Risk Management

Cybersecurity

Compliance

NERC CIP

PCI DSS

Industrial Control Systems

Blog

Defense and Development: Key points from The Complete Guide to Application Security for PCI-DSS

By Tripwire Guest Authors on Wed, 08/31/2022

Image The increasing popularity of online payment systems results from the world’s gradual transition to a cashless and contactless digital economy — an economy, projected in a recent Huawei white paper, to be worth $23 trillion by 2025. With digital commerce emerging as the largest segment in the projected $8.49 trillion global...

Blog

A 5 Step Checklist for Complying with PCI DSS 4.0

By Tripwire Guest Authors on Mon, 08/15/2022

Image In March 2022, the Payment Card Industry Data Security Standard (PCI DSS) was updated with a number of new and modified requirements. Since their last update in 2018, there has been a rapid increase in the use of cloud technologies, contactless payments have become the norm, and the COVID-19 pandemic spurred a massive growth in...

Product Video

How Tripwire Helped Walgreens Take a Proactive Approach to Security

Mon, 08/15/2022

Walgreens, founded in 1901, is one of the largest pharmacy companies in the U.S., handling online and in-store sales as well as processing the prescription needs of millions of customers. It needed a security solution that would give them an integrated, all-up view into its IT ecosystem. Its Tripwire ExpertOps solution has given the company a much more proactive view and...

Product Video

AAA: Getting Roadside Assistance from Tripwire

Mon, 08/15/2022

Tim Masey, Director of Enterprise Information Security at AAA, shared his company’s PCI journey: beginning with a small implementation of Tripwire, then running into roadblocks by Management for the expansion of products, and eventually moving forward with the implementation of Tripwire’s policy driven dashboards, rules and tasks for over 500 servers.

Guide

How Finance Companies Bank on Tripwire ExpertOps

Finance companies opt for managed services to stay compliant, bolster overburdened security teams, and get ongoing support in keeping their data safe from damaging breaches. The finance sector regularly finds itself on the front lines of emerging attack techniques; attackers commonly search for edge vulnerabilities and test new malware variations against financial systems....

Guide

Multi-Cloud Security Best Practice Guide

When you opt to use multiple cloud providers, you’re implementing a multi-cloud strategy. This practice is increasingly common, and can refer to mixing SaaS (software as a service) and PaaS (platform as a service) offerings as well as public cloud environments that fall under the IaaS (infrastructure as a service) category. The most common public cloud environments today are...

Guide

A Tripwire Zero Trust Reference Architecture

The concept of Zero Trust Architecture is fairly straightforward. Networks and systems have been traditionally designed with the assumption that everybody inside a defined perimeter can be trusted and that everybody outside that perimeter is hostile. With that assumption, the idea of building an impenetrable wall around that perimeter makes perfect sense. Over time, and as...

Guide

Understanding Your Attack Surface: The First Step in Risk-based Security Intelligence

As chief information security officer (CISO), it’s now a job requirement to effectively communicate with your non-technical C-suite and board of directors—preferably not just after there’s been a breach. This is the first in a series of executive white papers designed to share strategies for reducing your attack surface risk as well as how to clearly and objectively communicate your overall security posture to non-technical executives. Download this white paper and learn about: The definition of “attack surface” — and risks associated Design goals of attack surface analytics What non-technical C-suite executives and board members want

Verified users beware! Scammers are exploiting Twitter turmoil caused by Elon Musk's takeover

5 Myths About Online Privacy

Brace yourself – ISO27001 changes are coming

Keeping threat actors away from your supply chain

LinkedIn's new security features fight scammers, deepfakes, and malicious hackers

Cybersecurity Awareness Month: CU in Cyber

New Canadian Cyberattack Data Says 80% of SMBs Are Vulnerable

Shifting Left with SAST, DAST, and SCA: Advanced Best Practices

An Introduction to the State and Local Cybersecurity Grant Program (SLCGP)

Integrity Monitoring Use Cases: Compliance

Stop blaming employees for cybersecurity breaches

Case Study: Why One Fortune 250 Electric & Gas Utility Trusts Fortra’s Tripwire for Unbeatable Accuracy

Defense and Development: Key points from The Complete Guide to Application Security for PCI-DSS

A 5 Step Checklist for Complying with PCI DSS 4.0

How Tripwire Helped Walgreens Take a Proactive Approach to Security

AAA: Getting Roadside Assistance from Tripwire

How Finance Companies Bank on Tripwire ExpertOps

Multi-Cloud Security Best Practice Guide

A Tripwire Zero Trust Reference Architecture

Understanding Your Attack Surface: The First Step in Risk-based Security Intelligence

Contact Information

Privacy Policy

Cookie Policy

Impressum