Systems are constantly changing. Change and configuration management best practices allow organizations to keep track of configuration changes in a way that allows for rapid feature updates without any service outages, but many organizations struggle to find the ideal formula to make this process successful. So, what are the best practices in change and configuration management?

The 2019 data breach at luxury hotel chain MGM Resorts appears to be much larger than originally reported after researchers recently found 142 million hotel guests’ personal details for sale on the dark web. Last summer’s data breach was initially reported to impact 10.6 million hotel guests after hackers were able to gain unauthorized access to a cloud server.

Patch management is the process of analyzing the systems within your network for missing updates. This process shines a spotlight on the vulnerable systems within your network, allowing you to apply the necessary patches to those systems. This ensures that any vulnerabilities or bugs present in the software gets fixed.

Hardening operating systems and keeping an audit trail of activity using a change detection and SIEM solution are must haves in order to ensure that your environment is safe from cyber attacks or unwanted intrusions. Moreover, establishing a secure baseline is a great addition for protecting your systems from internal and external threats.

Within the last decade or so, the advancement of distributed systems has introduced new complexities in managing your log data. Today’s systems can include Servers, Workstations, Firewalls, Databases etc., all with different Operating Systems and each generating their own log data.

This is it, the best ever PCI DSS and what is hoped will be the definitive version. Despite being a major version change, the 12 core requirements we know and love remain. But there are some significant changes planned. In headline terms, the update is determined to make the standard more flexible and more open to new technologies.

As technology continues to evolve, so does the potential for cybersecurity risks, and just as the technology industry is showing no signs of slowing down development, neither are cybercriminals. Unfortunately for adopters of advanced technologies, the 2020 Thales Data Threat Report – Global Edition reveals that the more digitally transformed an organization is, the more likely the company is to be breached.

With the ever-changing landscape of IT Security, the war against cybercriminals continues to evolve on a day by day basis. Now more than ever before, organizations need to implement proper security controls and mechanisms to help defend against the evolving threat landscape.

IT Services rely on an individual port assigned to them in order to receive and transmit information, therefore, it’s imperative that an organization keeps track of what ports are open within their IT environment, the function of the port and what services it’s associated with. Detecting and disabling unwanted ports is part of an ongoing hardening process.

As companies face increasingly sophisticated cyber threats, they often turn to technology solutions to help protect their data and systems from attacks. But what happens when your company is in the technology industry? Cyberattacks are increasingly targeting technology companies who often store and handle significant amounts of sensitive data, including personally identifiable information and intellectual property on behalf of their customers.