Many organisations are upgrading their firewalls to stop APTs but this only offers protection from external attacks and internal traffic routed through the trusted zones.
Recent Posts
Compliance says that we need to log everything within scope, we must then review the reports of the logs. Can we really be trusted to look at all of these reports, and if so can we really get anything constructive out of them?
A recent survey by Homeland Security Today found that 88% of companies that were questioned recognise insider threats as a cause for alarm but have difficulty identifying specific threatening actions by insiders
