Resources

Blog

SMB Protocol Explained: Understanding its Security Risks and Best Practices

By Dilki Rathnayake on Tue, 11/21/2023

Server Message Block (SMB) protocol is a communication protocol that allows users to communicate with remote servers and computers, which they can open, share, edit files, and even share and utilize resources. With the expansion of telecommunications, this protocol has been a prime target for threat actors to gain unauthorized access to sensitive data and devices. In 2017, we introduced 5 general...

Blog

Secure Access Control in 2024: 6 Trends to Watch Out For

By Gilad David Maayan on Wed, 11/15/2023

What Is Secure Access Control? Secure access control, part of the broader field of user management , is a key concept in the realm of information security, particularly in the business environment. It refers to the process of selectively restricting and allowing access to a place or resource. In the context of information technology, it is a vital element of data protection, dictating who or what...

Guide

10 Common Security Misconfigurations and How to Fix Them

Is your organization using default security settings, or do you have a security configuration management (SCM) program in place to ensure your configurations are as secure as possible? Misconfigurations are a leading cause of unauthorized access and security breaches, creating entry points for hackers in servers, websites, software, and cloud infrastructure. The Open Worldwide Application Security...

Blog

5 Tripwire Enterprise Misconfigurations to Avoid

By Jeff Hines on Tue, 10/24/2023

Configuration management is vitally important as part of a sound cybersecurity strategy. We have previously published how patching alone is not enough, as that does not alter a system’s customized configuration. Misconfigurations can be as damaging to security as a deliberate attack on a system. As the manufacturer of Tripwire Enterprise (TE) , we thought that it would be prudent to help our...

Blog

What is a CMDB?

By Lane Thames on Tue, 10/17/2023

There are countless tools and technologies available to help an organization stay on top of its IT assets, and a configuration management database (CMDB) is an extremely useful one. The database keeps track of relevant information regarding various hardware and software components and the relationships between them. It allows IT teams to have an organized view of configuration items (CIs) that can...

Blog

Compliance vs. Security: Striking the Right Balance in Cybersecurity

By Jay Thakkar on Mon, 10/09/2023

Compliance and security often go hand in hand as ideas that attempt to protect against cyber threats. While both compliance and security are designed to lower risk, they are not mutually inclusive—that is, not everything that is required for compliance will necessarily help with security, and not everything that bolsters security will necessarily put you in compliance. Both are vital to...

Blog

Revealed! The top 10 cybersecurity misconfigurations, as determined by CISA and the NSA

By Graham Cluley on Fri, 10/06/2023

A joint cybersecurity advisory from the United States's National Security Agency (NSA) and Cybersecurity and Infrastructure Security Agency (CISA) has shone a light on the top ten most common cybersecurity misconfigurations found in large private and public organisations. The report aims to detail the weaknesses found in many large organisations, and the need for software makers to properly...

Blog

Increasing Your Business’ Cyber Maturity with Fortra

By Antonio Sanchez on Wed, 09/20/2023

When building a tower, it helps to start with a sturdy foundation. Cyber maturity is the tower, and there are three levels that build it: Foundational IT/OT & Security Control Processes Fundamental Security Control Capabilities Advanced Security Control Capabilities Fortra occupies a unique space in the industry because of the sheer size of the security portfolio. It’s one thing to advocate for...

Blog

5 Reasons Why You Should Conduct Regular Cybersecurity Audits

By Chester Avey on Wed, 09/13/2023

Cyber threats are growing more sophisticated, covert, and frequent every day. This year alone has seen the likes of T-Mobile and PharMerica suffering serious security breaches. These incidents disrupted operations and threatened their bottom lines, not to mention the lingering aftereffects and negative brand perception in the eyes of their customers. Taking the recent Optus data security breach as...

Blog

What is ISO 27002:2022 Control 8.9? A Quick Look at the Essentials

By Taha Dharsi on Wed, 09/06/2023

The basic parameters that control how hardware, software, and even entire networks operate are configurations, whether they take the form of a single configuration file or a collection of connected configurations. For instance, the default properties a firewall uses to control traffic to and from a company's network, such as block lists, port forwarding, virtual LANs, and VPN information, are...

Blog

Working with a Reliable Partner for Cybersecurity Success

By Joe Pettit on Thu, 08/31/2023

Technology companies are often seen as revolving doors of constantly shifting personnel. Whether they are seeking a better work environment or chasing a higher paycheck, these staff changes can hurt an organization’s progress. Worse yet, the customers are often negatively impacted by these changes in the continuity of established relationships. At Fortra, we're proud to have a higher average...

Blog

Understanding Firewalls – Types, Configuration, and Best Practices for Effective Network Security

By Dilki Rathnayake on Wed, 08/30/2023

A firewall is a security device that controls the flow of traffic across a network. A firewall may be a hardware appliance, or it may be a piece of software that runs on a third-party operating system. Firewalls operate based on a set of pre-defined, as well as customizable security rules that inspect network traffic to block or permit access to a network. Oftentimes, a firewall is logically...

Blog

5-Step Guide on Securing Serverless Architectures in the Cloud with RASP

By Joseph Chukwube on Thu, 08/17/2023

Serverless architecture has increased in recent years, and is anticipated to grow by nearly 25% over the next decade, According to one source , the serverless architecture market was worth over $9 billion in 2022, with its compound annual growth rate projected to increase. The market could be worth over $90 billion by 2032. This indicates the immense amount of potential that this industry carries...

Blog

Security Immutability: The Importance of Change

By Tyler Reguly on Mon, 08/14/2023

A few years ago, I wrote about the importance of security immutability . More specifically, I discussed how important it is that your environment be unchangeable in order to ensure that it remains secure. As I looked back on the article, I found it rather amusing that the article was published 4 years ago, but that feels like a lifetime ago. In the last few years, we really have seen just how...

Blog

Tripwire Enterprise: Five ‘Other’ Things You Should Know

By Faisal Parkar on Thu, 08/10/2023

Network engineers and security analysts have a lot in common. Both require the ability to not only understand the problems at hand but to ascertain the moments leading to them. A typical scenario would include a request to help with a problem a customer has been experiencing. The person you are trying to assist is probably a member of the IT team in the organisation. During these situations, we...

Blog

Is secure-by-default an achievable reality?

By Chris Hudson on Thu, 08/03/2023

We have come a long way in the cybersecurity sector in a relatively short period of time, but there remain many challenges in day-to-day operations that create security gaps in many organizations. One of the most common is tied to how we build our solutions, making sure they are secure out-of-the-box instead of only being evaluated during a pen test or annual review, and finding out then that...

Blog

Is Your MSP Taking Its Own Security Seriously?

By Tripwire Guest Authors on Wed, 08/02/2023

Most small and midsized businesses trust an IT services partner to help them secure their networks. A few years ago, high-profile cyberattacks targeting MSP vendors Kaseya and SolarWinds thrust the security risk of relying on a complex chain of vendors into the technology media and moved the Department of Homeland Security to issue a statement about the need for greater security in the IT services...

Blog

DNS Security in Healthcare: The Gem in Your Cybersecurity Arsenal

By Tripwire Guest Authors on Mon, 07/31/2023

The ransomware, malware and phishing attacks going on in the healthcare industry are quite alarming these days. The customers' data in the healthcare industry is more sensitive than in most industries, and this has proven to be a sweet spot for threat actors. Recent research by Infloblox reported that in 2022, there were over 546 major data breaches due to malicious activity. This follows a 4%...

Blog

Tripwire Enterprise: Reimagining a Winning Product

By Jeff Moline on Thu, 07/27/2023

How many security products does it take to monitor an organization? Even a small company often finds itself working with multiple monitoring tools to gain visibility into its security posture. This creates multiple blind spots, as a security analyst needs to jump between different tools with different formats and configurations to research a security incident. Adding to this problem is that the...

Blog

Enhanced Data Analysis with Synthetic Datasets

By Isla Sibanda on Wed, 07/26/2023

Large data can offer a massive affordable advantage for companies. Scientists, information analysts, marketing professionals, and advertisers rely upon receiving valuable insights from substantial pools of consumer information. When examined correctly, this information can provide valuable insight for organizations that understand how to use it. The regular procedure of gathering and arranging...

SMB Protocol Explained: Understanding its Security Risks and Best Practices

Secure Access Control in 2024: 6 Trends to Watch Out For

10 Common Security Misconfigurations and How to Fix Them

5 Tripwire Enterprise Misconfigurations to Avoid

What is a CMDB?

Compliance vs. Security: Striking the Right Balance in Cybersecurity

Revealed! The top 10 cybersecurity misconfigurations, as determined by CISA and the NSA

Increasing Your Business’ Cyber Maturity with Fortra

5 Reasons Why You Should Conduct Regular Cybersecurity Audits

What is ISO 27002:2022 Control 8.9? A Quick Look at the Essentials

Working with a Reliable Partner for Cybersecurity Success

Understanding Firewalls – Types, Configuration, and Best Practices for Effective Network Security

5-Step Guide on Securing Serverless Architectures in the Cloud with RASP

Security Immutability: The Importance of Change

Tripwire Enterprise: Five ‘Other’ Things You Should Know

Is secure-by-default an achievable reality?

Is Your MSP Taking Its Own Security Seriously?

DNS Security in Healthcare: The Gem in Your Cybersecurity Arsenal

Tripwire Enterprise: Reimagining a Winning Product

Enhanced Data Analysis with Synthetic Datasets

Contact Information

Privacy Policy

Cookie Policy

Impressum