SANS Archives - Help Net Security

SANS

Growing cloud adoption introduces visibility gaps and security complications

August 27, 2019

As the quantity and frequency of advanced threats continue to accelerate, a new SANS Institute survey found that a continued lack of visibility and the complexity of managing …

When it comes to cybersecurity, perfection is the enemy of progress

June 27, 2019

In information security, perfection is the enemy of progress, says Lenny Zeltser, VP of Product at Axonius. But it’s one thing to know about this maxim, and another to …

Organizations are advancing their efforts, investing in OT cybersecurity programs

June 14, 2019

ICS cybersecurity threats remain high and present evolving challenges, a new SANS report reveals. However, since the last SANS OT/ICS report released in 2017, a growing …

Organizations still use low levels or no automation of key security and incident response tasks

April 4, 2019

Most organizations understand that automation is the path to achieve optimal workflows in the face of staff shortages and alert fatigue. Yet, 59% of the D3 Security 2019 …

How metrics can enhance the effectiveness of security programs

September 7, 2018

For anyone responsible for maintaining their organization’s security posture, the findings from the SANS 2018 Security Operations Center (SOC) Survey should come as no …

Security concerns around the rapidly growing use of the Industrial Internet of Things

July 24, 2018

Organisations hold disparate and unrealistic views on protecting the Industrial Internet of Things (IIoT), in which endpoints are considered to be the most vulnerable aspects, …

Endpoint security automation a top priority for IT pros

June 21, 2018

A new SANS Institute report found that automating endpoint detection and response processes is the top priority for IT professionals trying to put actionable controls around …

Exploring the maturity of corporate security awareness programs

June 15, 2018

Cyber security awareness programs are beginning to gain ground among businesses, but many of the professionals responsible for their implementation are challenged by a lack of …

Most dangerous attack techniques, and what’s coming next

April 23, 2018

Experts from SANS presented the five most dangerous new cyber attack techniques in their annual RSA Conference 2018 keynote session in San Francisco, and shared their views on …

Data-driven analysis of vulnerabilities in real-world OT networks

October 25, 2017

Operational Technology (OT) networks are ripe targets for adversaries, whose motives range from criminal intent to operational disruption and even threats to human and …

XPCTRA financial malware leaves no stone unturned

September 26, 2017

A Trojan that has previously been only stealing users’ banking credentials has been modified to do much more than that. This new variant, dubbed XPCTRA, can also steal …

Insider threats and ransomware are most feared, followed by DDoS attacks

September 8, 2017

A new SANS survey found that ransomware, insider threats and denial of service are considered the top three threats organizations face when it comes to securing sensitive …