Guide
Threat Prevention is Foundational
How proper foundational controls help block today’s advanced threats
Datasheet
Tripwire LogCenter: System Requirements
Determining the proper configuration and resources required for a new log management system can be tricky. Take advantage of Tripwire LogCenter’s software-based deployment to meet current demands and grow capacity when needed. Tripwire LogCenter can collect data from almost any source using standard formats. For in-depth data collection, use the advanced Log Collector Agent.View the platforms...
Guide
Zero Trust and the Seven Tenets
Whether you are new to information security, or you’re a long-time practitioner, it seems that “zero trust” is the latest initiative at the top of everyone’s priority list. Special Publication 800-207, created by the National Institute of Standards and Technology (NIST) offers guidance for instituting a zero trust architecture.
The document outlines the basic tenets that form the foundation of...
Blog
FBI warns of criminals attacking healthcare payment processors
By Graham Cluley on Thu, 09/15/2022
Millions of dollars have been stolen from healthcare companies after fraudsters gained access to customer accounts and redirected payments.
In a newly-published advisory directed at the healthcare payment industry, the FBI warns that cybercriminals are using a cocktail of publicly-available Personally Identifiable Information (PII) and social...
Blog
5 Potential Solutions to the Cybersecurity Talent Shortage
By Guest Authors on Sun, 05/08/2022
The most relevant cybersecurity threat to most businesses may be human, not technical. A sudden wave of cybercrime paired with longstanding tech labor challenges has created a cybersecurity skills gap, leaving companies without the expertise they need.Some companies lack dedicated security staff entirely, while others have a small, overworked...
Blog
$43 billion stolen through Business Email Compromise since 2016, reports FBI
By Graham Cluley on Thu, 05/05/2022
Over US $43 billion has been lost through Business Email Compromise attacks since 2016, according to data released this week by the FBI.
The FBI's Internet Crime Complaint Center (IC3) issued a public service announcement on May 4 2022, sharing updated statistics on Business Email Compromise (BEC) attacks which use a variety of social engineering...
Blog
A Tripwire Milestone: ASPL – 1000 is here
By Tyler Reguly on Wed, 05/04/2022
When I joined nCircle as a security researcher in 2006, ASPL 117 had just been released. I missed the ASPL-100 release celebration, which included custom sweatshirts, but there was still one unclaimed shirt in the office and I brought it home, my first piece of company swag. That shirt still hangs in my closet all these years later.
For those of you that are unaware, ASPL, Advanced Security...
Blog
PCI DSS 4.0 is Here: What you Need to Consider
By David Bruce on Tue, 04/26/2022
The Payment Card Industry Data Security Standard (PCI DSS) is a benchmark with tenure in the industry, with the first version being introduced in 2004. The PCI DSS was unique when it was introduced because of its prescriptive nature and its focus on protecting cardholder data. Cybersecurity is a changing landscape, and prescriptive standards must be...
Blog
Improve your patching efficiency with Tripwire State Analyzer
By David Bruce on Mon, 04/25/2022
Organizations are always concerned with improving efficiencies to make business flow smoother. Some of the biggest inefficiencies in any business revolve around time wasted on operational tasks. Whether it is a stale accounting process, or something as trivial as routing phone calls to the proper department, saving time by improving a process can...
Guide
What Is CPS 234 and Who Needs to Comply with It?
In November 2018, the Australian Prudential Regulation Authority (APRA) released the Prudential Standard CPS 234 in direct response to the escalating attack landscape in the financial sector. APRA has understood these threats to be the direct result of banking services moving to more complex and heavily used digital platforms. The new standard emerged as an offshoot to the Notifiable Data Breach ...
Press Release
Tripwire Survey: Increase in connected devices is raising the stakes for industrial security
PORTLAND, Ore. – March 30, 2021 – Tripwire, Inc., a leading global provider of security and compliance solutions for enterprises and industrial organizations, today announced the results of a new research report that assessed the security of connected devices across enterprise environments in 2021. Conducted for Tripwire by Dimensional Research this month, the survey evaluated the opinions of 312...
Press Release
Nozomi Networks and Tripwire Announce Strategic Partnership
Industry leaders join forces to deliver fully integrated cybersecurity and compliance solutions for IT, OT and IoT environmentsSAN FRANCISCO and PORTLAND, OR, September 16, 2021 - Nozomi Networks Inc., the leader in OT and IoT security, and Tripwire, a leading global provider of security and compliance solutions for enterprises and industrial organizations, today announced they have partnered to...