BLOG

Insights from the ArmorPoint team.

Threat research, operational playbooks, and security leadership.

189 posts · Page 10 of 16

Articles

Practical Incident Response Guidance from NIST SP 800-61

Following the NIST SP 800-61 framework is essential for effective incident response, which is divided into four phases: Preparation, Detection and Analysis, Containment/Eradication/Recovery, and Post-Incident Activity. This structured approach helps organizations reduce the time it takes to contain a breach and recover from cybersecurity incidents.

5 min read · aburgett
Read more →
Articles

The People Element in Cybersecurity: Transitioning to Human-Centric Risk Management

A human-centric approach called Human Risk Management (HRM) is crucial because a majority of data breaches involve a human element. Effective HRM programs include continuous security awareness training and phishing simulations to mitigate risks introduced by human behavior, which technology alone cannot address.

6 min read · aburgett
Read more →
Articles

From Crisis to Continuity: Understanding the Importance of IR, DR, and BCP

Organizations must have robust plans for incident response (IR), disaster recovery (DR), and business continuity (BCP) to handle disruptions effectively. While IR plans focus on cybersecurity threats and DR plans restore IT infrastructure, BCPs ensure essential business operations continue during and after a crisis.

6 min read · aburgett
Read more →
Threat Intel

April 2024 Cybersecurity Roundup: The Xeno Effect and Beyond

The April 2024 roundup highlights the rise of the "Xeno" remote access trojan (RAT) and the continued exploitation of vulnerabilities in popular software. A multi-faceted defense strategy that includes staff education on phishing, multi-factor authentication (MFA), and consistent software updates is essential to combat these evolving threats.

3 min read · aburgett
Read more →
Articles

Understanding the HHS' Cybersecurity Performance Goals

The HHS introduced Cybersecurity Performance Goals (CPGs) for healthcare organizations to strengthen defenses, with essential goals for foundational security and enhanced goals for more sophisticated measures. These goals align with the NIST Cybersecurity Framework, providing a roadmap for protecting patient data and building cyber resilience.

6 min read · aburgett
Read more →
Articles

Top Cloud Computing Risks and How to Mitigate Them

Cloud computing introduces risks like data breaches and account hijacking that require specific mitigation strategies. Organizations should implement robust data encryption and access controls, perform regular security assessments, and leverage specialized security tools to protect their cloud environments.

6 min read · aburgett
Read more →
Articles

A Wake-Up Call for Healthcare Cybersecurity: The Change Healthcare Breach Unpacked

The Change Healthcare breach serves as a wake-up call for the healthcare industry, emphasizing the need for enhanced cybersecurity measures, regular risk assessments, and robust incident response plans. The incident highlights the critical importance of mitigating third-party risks and fostering a culture of continuous security improvement.

7 min read · aburgett
Read more →
Articles

What’s Going on With Cybersecurity Regulations in Healthcare?

The healthcare industry is facing new cybersecurity regulations from the HHS, including Cybersecurity Performance Goals, to combat rising cyber threats. Organizations must adopt a proactive security strategy and align with frameworks like NIST to protect patient data and ensure compliance.

4 min read · aburgett
Read more →
Threat Intel

ArmorPoint Analysts Discover Increased Malicious Use of Advanced IP Scanner

ArmorPoint analysts have observed a concerning trend of cybercriminals misusing Advanced IP Scanner, a legitimate tool, for network reconnaissance during the initial stages of an attack. Continuous network monitoring, behavior-based analytics, and advanced threat detection are essential to identify and counter this evolving threat.

3 min read · aburgett
Read more →
Case Studies

Selling Cybersecurity in the Wake of NIS2: Viatel’s Partnership with ArmorPoint

Viatel partnered with ArmorPoint to enhance its cybersecurity offerings and comply with new regulations like NIS2. This collaboration allowed Viatel to rapidly launch new managed SOC and SIEM services, strengthening its market position and providing clients with advanced cyber resilience.

3 min read · aburgett
Read more →
Articles

Managed Strategy in Cybersecurity: The Key to Proactive Defense

A Managed Strategy provides organizations with outsourced cybersecurity expertise, like a virtual Chief Information Security Officer (vCISO), to build a customized, risk-based security program. This approach helps businesses with limited internal resources to navigate the complex threat landscape and develop a dynamic defense.

5 min read · aburgett
Read more →
Articles

Cybersecurity and Business Growth: Striking the Right Balance with Managed Risk

Managed Risk is a proactive cybersecurity approach that aligns digital protection with business goals, moving beyond reactive incident response. It involves continuously identifying and mitigating threats while considering the organization's risk appetite to enable secure growth.

7 min read · aburgett
Read more →