CISA Sees Elimination of 'Bad Practices' as Next Secure-by-Design Step by Matt BrackenThe Cybersecurity and Infrastructure Security Agency (CISA) has made significant strides in its secure-by-design initiative, gaining 230 software vendors' commitments to strengthen security features like multi-factor authentication and reducing default passwords. By shifting security responsibilities to software...

As ransomware operators continue to expand the impact of their malware, CISA is proposing new requirements to help protect sensitive data, while the SEC is coming down on organizations that downplayed a historical breach. Learn all about these stories and more in this week's Friday Five.CISA Proposes New Security Requirements to Protect GOVT, Personal Data by BILL TOULASCISA has proposed security...

What Is Zero Trust?Zero Trust is a cybersecurity model that requires verification of all internal and external access attempts, eliminating trust to prevent breaches. Originated by Forrester Research, Zero Trust mandates a policy of least privilege and strict identity verification for every person and device trying to access information on a private network, regardless of whether they are inside...

Learn about Secure Access Service Edge (SASE), its components, and how it enhances network security and performance in a cloud-based service in this week's blog.An increasingly remote workforce and edge computing applications have heightened the need to fortify perimeter-based defenses and build device trust. A prime solution for this challenge is the Secure Access Service Edge (SASE)...

HEALTHCARE'S GRIM CYBER PROGNOSIS REQUIRES SECURITY BOOSTER BY ROBERT LEMOSThe healthcare sector is increasingly vulnerable to cyberattacks, particularly ransomware, with 66% of organizations experiencing attacks in the past year, up from 60%. Emerging threats like the Trinity ransomware group are raising alarms, with cyberattacks like theirs disrupting services, exposing sensitive patient data,...

The General Data Protection Regulation (GDPR) is a regulation enacted by the European Union to protect EU citizens' privacy and personal data. Read this blog to learn more about who's subject to GDPR compliance, data subject rights, and the misconceptions around consent in GDPR compliance.

XDR and EDR solutions can help secure your corporate ecosystem from cyber threats, especially with the increasing number of remote workers. Read this blog to learn the differences between the technologies, how they work, and how to choose between the two.Cybersecurity solutions must optimize limited resources against an ever-evolving threat landscape. Choosing between EDR (endpoint detection and...

As ransomware gangs and state-sponsored threat actors wage war against international law enforcement, private organizations, U.S. courts and agencies, and the manufacturing industry are urged to reinforce their cybersecurity measures. Learn all you need to know about these emerging threats in this week's Friday Five.SYSTEMS USED BY COURTS AND GOVERNMENTS ACROSS THE US RIDDLED WITH VULNERABILITIES...

As governments continue to find themselves switching fully to digital records, it's important to ensure there are safeguards in place to secure that data. In the Middle East, the Kingdom of Saudi Arabia’s (KSA’s) National Data Management and Personal Data Protection Standards are designed to do just that, implementing cybersecurity practices that will safeguard public and government-owned data as...

A Secure Web Gateway (SWG) filters and blocks malicious internet traffic, preventing it from entering an organization's internal network. This is accomplished through a diverse range of security technologies, such as URL filtering, advanced threat defense, data loss prevention, and application control. SWG protects users and organizations against web-based threats such as viruses, malware,...

As Chinese ATPs and other cybercriminals escalate attacks against U.S. critical infrastructure, changes to cybersecurity standards and practices may be on the way for healthcare organizations and government agencies. Learn all you need to know in this week's Friday Five.SENATE BILL EYES MINIMUM CYBERSECURITY STANDARDS FOR HEALTH CARE INDUSTRY BY MATT BRACKENSenators Ron Wyden and Mark Warner...

Fortra's Digital Guardian can help safeguard your organization’s sensitive information while enabling seamless collaboration across both Slack and Teams. Learn how we can help your organization stay ahead of threats and meet compliance.

Cybersecurity protects computers, servers, mobile devices, systems, networks, and data from digital attacks, damage, and unauthorized access. Learn all about cybersecurity in this blog.The Benefits and Challenges of Implementing CybersecurityAs cybersecurity threats and actors have grown more bold and sophisticated, organizations must understand the cybersecurity environment they confront. As a...

As the federal government is working to secure critical infrastructure organizations and its own agencies, law enforcement is hard at work taking down large-scale phishing networks and state-sponsored botnets. Get up to speed on these stories and more in this week's Friday Five.CISA ISSUES GUIDE TO HELP FEDERAL AGENCIES SET CYBERSECURITY PRIORITIES BY DAVID DIMOLFETTAThe Department of Homeland...

POPIA, South Africa's Protection of Personal Information Act, establishes rules for the lawful processing of personal information in South Africa. This blog looks at the purpose of the law, POPIA compliance best practices, and more.As data privacy takes center stage around the world, governing bodies have begun devoting ever more time and attention to defining legal frameworks for working with...

Fortra's Digital Guardian is proud to offer day one support for macOS 15.0 Sequoia!We are happy to announce that with the release of the Digital Guardian Mac Agent v8.8, our product now supports macOS 15.0 Sequoia.This update has been certified against the latest macOS release build, ensuring a seamless upgrade experience for our users.Day One Support for macOSThis release marks a significant...

Security Service Edge (SSE) is a cybersecurity concept that delivers key security capabilities from a cloud-based platform. Read this blog to learn more about what SSE comprises, use cases, and its advantages.

Extended Detection and Response (XDR) is an advanced cybersecurity approach that provides a more comprehensive and automated view of threat detection and response. Read this blog to learn more about XDR, its challenges, and key capabilities.

This past week's top cybersecurity headlines include an update to the California Consumer Privacy Act, a warning about a potential onslaught of North Korean cyberattacks, CISA's new incident reporting tool, and more. Read all about these stories and more in this week's Friday Five.