access control Archives - Help Net Security

access control

Vulnerabilities in Cisco Identity Services Engine require your attention (CVE-2022-20822, CVE-2022-20959)

October 21, 2022

Cisco has published a heads-up for admins of Cisco Identity Services Engine solutions, about two vulnerabilities (CVE-2022-20822, CVE-2022-20959) that could be exploited to …

Purpose-based access control: Putting data access requests into context

October 10, 2022

Access control is the heart of data protection. Striking the right balance between easy access and tight security isn’t easy, but getting it right is how you maintain business …

There is no secure critical infrastructure without identity-based access

September 7, 2022

Organizational security strategy has long been defined by an internal perimeter enclosing all a company’s information in a single secure location. Designed to keep external …

How complicated access management protocols have impacted cloud security

August 26, 2022

During AWS re:Inforce, Amazon executives emphasized how important access control is when it comes to cloud security and why IT leaders need to ask who has access to what and …

Despite known security issues, VPN usage continues to thrive

June 24, 2022

VPN usage is still prevalent among 90% of security teams who have highlighted cost, time, and difficulty as reasons to not move forward with ZTNA adoption, according to a new …

Elevation of Privilege is the #1 Microsoft vulnerability category

May 25, 2022

BeyondTrust announced the release of a report which includes the latest annual breakdown of Microsoft vulnerabilities by category and product, as well as a six-year trend …

3 key elements to protect a Kubernetes cluster

May 23, 2022

Kubernetes changed how we structure, deploy, and run our applications and became a de-facto standard for running infrastructure at scale. With the rapid adoption of …

Manage and monitor third-party identities to protect your organization

April 26, 2022

SecZetta shared a research that demonstrates a clear misalignment between the strategies organizations currently use and what is actually required to protect them from …

4 steps for building an orchestrated authorization policy for zero trust

April 18, 2022

There is a great deal of emphasis placed on the zero-trust approach with respect to access. Looking beyond authentication (the act of verifying that someone is who they say …

How to unlock a resilient hybrid work plan

March 25, 2022

Brivo released a report which reveals that cloud-based access control and high-quality physical security data are paramount when it comes to unlocking a resilient hybrid work …

Top data governance challenges and strategies for high-growth startups

March 17, 2022

Hyper-growth startups face a unique set of challenges when it comes to secure data access. Their priority is to drive rapid innovation, scale their customer base and grow …

Why are CAPTCHAs still used?

March 10, 2022

The success of your online business hinges on your customers’ ability to properly recognize crosswalks or traffic lights. I’m, of course, referring to CAPTCHAs, the online …

access control

Vulnerabilities in Cisco Identity Services Engine require your attention (CVE-2022-20822, CVE-2022-20959)

Purpose-based access control: Putting data access requests into context

There is no secure critical infrastructure without identity-based access

How complicated access management protocols have impacted cloud security

Despite known security issues, VPN usage continues to thrive

Elevation of Privilege is the #1 Microsoft vulnerability category

3 key elements to protect a Kubernetes cluster

Manage and monitor third-party identities to protect your organization

4 steps for building an orchestrated authorization policy for zero trust

How to unlock a resilient hybrid work plan

Top data governance challenges and strategies for high-growth startups

Why are CAPTCHAs still used?

Don't miss

3 business application security risks businesses need to prepare for in 2023

Researchers release PoC exploit for critical Windows CryptoAPI bug (CVE-2022-34689)

Attackers use portable executables of remote management software to great effect

How businesses can bolster their cybersecurity defenses with open source

ChatGPT is a bigger threat to cybersecurity than most realize