Cyber threats can be quite elusive and intangible: who are the people behind cyber attacks and where are they targeting their attacks? With cyber attacks happening around the world and across the cyber connected world, threat intelligence, specifically threat maps, are a powerful way to make threats and attackers concrete.
Your organization's cybersecurity team can gather threat intelligence through various ways, such as through open-source ...
RedLegg, global and veteran-owned cybersecurity firm based in the Chicago-area, has an updated SOC 2 certification with ...
The FBI introduces three fraud schemes in their latest PSA that they've seen trend during this season of the ...
As the US is responding to the Coronavirus pandemic, companies and government/non-government organizations are ...
Access Experts Live – Wednesday, March 11th @ 2 p.m. CST What is often considered the overlooked portion of your ...
It’s been a bit more than a year since GDPR took effect, but many organizations have yet to build their compliance ...
When thinking about Managed Detection and Response, SIEM, and Managed Security Service Providers, which will help you ...
Creating a robust defense relies on an intimate knowledge of the enemy, their motivations, and goals. The core ...
Many organizations, maybe even yours included, have major flaws in their security operations. To help solve your ...
Are you using the full extent of your resources in order to get your work done?
When you're tasked with securing your customers' rich data, and you don't have 100% access to your own systems, you're ...
Access Experts Live – Wednesday, January 15th @ 11 a.m. CST We're turning the MDR vs SIEM argument on its head! MDR may ...
We like to say, consistent communication provides peace of mind. The same should be said when it comes to your managed ...
When you're tasked with overseeing governance, risk management, compliance, and the firm's security technologies along ...
In previous articles, we’ve reviewed what the OWASP Top 10, testing guide, and ASVS are as well as how they may guide ...
In a previous article, we explored OWASP Top 10, testing guide, and ASVS, but how does OWASP apply to your security ...
Open Web Application Security Project (OWASP) Top 10 was created to show the critical risks facing applications, was ...
Although vetting your potential SIEM service providers is an important task, for obvious reasons, we find that the ...
SIEM technology helps to provide a much needed window into the logging and alerting activity taking place in your ...
Implementing Security Information and Event Management (SIEM) into an organization's infrastructure can be a valuable ...
Let's be honest: You have a lot going on, and it can be difficult to know if your security tools are working well ...
Security Information and Event Management (SIEM) platforms play a critical role in real-time response to threat ...
Today's organizations face unique challenges when protecting themselves against modern cybersecurity threats. Now more ...
While partnerships for pen testing and advisory services are crucial to the development of your security operations, ...
Launching a well-developed and adequately formatted SIEM platform requires time, effort, and most importantly, ...
If you’re hiring a company to help with your company’s SIEM, you can normally choose from two options: co-managed and ...
In an age where digital security is of paramount importance, nothing could be more critical for a growing business than ...
If you're beginning to research Security Incident and Event Management (SIEM) for your company, you may very well be ...
Recorded Wednesday, October 30th @ 11 a.m. CST When a CEO, an IT guy, and a CISO walk into a room... They're all bound ...
When thinking about the cost of managed SIEM, we know that in secret you might actually be wondering about the ...
Our penetration testing and security experts gave their insight on the value, and pitfalls, of the OWASP Top 10, ...
While your Incident Response Plan is a necessary part of your cybersecurity and InfoSec strategy, tabletop exercises ...
On August 15th, RedLegg hosted a successful workshop in Chicago for security professionals interested in Incident ...
Live Webinar - Wednesday, August 28 at 11 a.m. CST // 12 p.m. EST The conversations that a couple of security ...
In a landscape of advancing threats, building your security operations center is becoming more critical for company ...
Are you using the full extent of your resources in order to best protect your company?
The reporting phase may be the most critical part of your penetration test... Does your pen testing report better ...
Arguably the most important change in data privacy regulation in the past 20 years, GDPR can be daunting, yet this ...
On July 25th, RedLegg hosted a successful full-day workshop in Chicago for local LogRhythm® SIEM users. RedLegg’s ...
Can your team handle an incident? Will your team's response be effective?
You’ve heard it before: for most organizations, it’s not a matter of if they will be a target of a cyber attack—it’s a ...
Cybersecurity has quickly become a critical necessity for every business, and more so than ever before, IT teams and ...
After completing your organization’s Incident Response Plan, you must be prepared to use that plan amongst your teams. ...
A data breach is a cyber incident where sensitive information is attained through accidental or malicious means, and it ...
A tabletop exercise can validate your Incident Response Plan but conducting an effective tabletop with your Information ...
Live Webinar Recorded Wednesday, July 24 at 11 a.m. CST // 12 p.m. EST Now Available On Demand!
In the world of cybersecurity, we are well-aware of the increasing potential impact, and sophistication of, attacks on ...
In leading your organization’s information security practices and behaviors, your Incident Response Plan must become a ...
Year after year, cybersecurity risks continue to be a growing concern for companies of all sizes. But depending on your ...
Denial of Service (DoS) attacks have been orchestrated by a multitude of threat actors, from nation-states to vigilante ...
In your efforts to fix everything, here’s RedLegg’s cyber-news update, featuring some of the top vulnerabilities, ...
A strong penetration testing methodology evaluates the organization’s security posture, is comprehensive, and is not ...
With the complexity of software and network architecture increasing with every passing day, closing security loopholes ...
Mobile apps are just as susceptible to risk as any other platform. In today’s connected world, a single app attack on ...
The cybersecurity field is becoming ever more fractured and specialized. Even the most seasoned IT professionals can ...
As you look to build your threat and vulnerability management program, here are RedLegg’s considered top security risks.
In your efforts to fix everything, here’s RedLegg’s cyber-news update, featuring some of the top vulnerabilities, ...
It seems like every day we hear about another security breach that damages a company’s reputation. IT professionals are ...
During a pen test, enumerating and targeting web applications can be a cumbersome and time-consuming task. In this ...
With the recent wave of cyber attacks on enterprises such as the European Central Bank, Sony Pictures Entertainment, ...
Building an effective cybersecurity infrastructure takes time. With the threat of malicious attacks increasing with ...
If you store data on your organization’s network, you want to keep the network as secure as possible, without any ...
Open-source intelligence (OSINT) is generating more buzz every year in security spaces, from employee training programs ...
A year after the European Union’s General Data Protection Regulations (GDPR) went into effect, we’re starting to see ...
It’s been a year since GDPR (General Data Protection Regulation) went into effect in the European Union. At the time it ...
There is no shortage of companies that say they are experts at conducting pen tests. Determining which vendor is the ...
“You are not protected against social engineering threats.” This is a scary statement to throw in front of network ...
Today’s workforce is increasingly mobile. Mixing professional and personal devices at work and at home is now ...
Although often used interchangeably, Vulnerability Assessment (VA) and Penetration Testing (PT or pen testing) are ...
On February 28th, RedLegg hosted a successful full-day workshop in Chicago for local LogRhythm® SIEM users.
Vulnerability scanning (vuln-scan) is the process of finding exploits, flaws, security holes, insecure access entry ...
Your Managed Security Services provider is a crucial player in your overall security posture, and our number one goal ...
Network security is an ongoing task: you need to continuously scan for threats, assess vulnerabilities in your network, ...
The last couple years have been a challenge to businesses that haven't yet fully addressed their cybersecurity issues. ...
Data is the building block of everything we see and do in the Digital Age. But our reliance on data goes beyond that. ...
Every day, there seems to be a news story about the latest data security breach. Guarding the privacy of company ...
Securing your organization using policies and technical controls is critical; however, unless these controls and ...
Go back to part one 4. Device loss/theft GDPR and other privacy mandates are just one end of the spectrum of concerns ...
A shocking reality of today's world is the availability of cybercrime as a professional service: in the event of a ...
Many publications compare Managed Detection and Response (MDR) to Managed Security Services (MSS), but this premise may ...
Consider these 12 items to prepare for the new General Data Protection Regulation (GDPR), arguably the most important ...
The European Union General Data Protection Regulation (EU GDPR) is a set of rules governing how organizations that have ...
Plan for a three-phased approach to establishing GDPR compliance across your organization.
Join the RedLegg team, customers, partners, and friends on December 20th for our annual holiday celebration. Come ...
Security posture is a concept that has changed very little through time. Protect all sides, restrict access, monitor ...
What is RedLegg's Analysis Platform ?
Metrics here, metrics there, metrics everywhere—it can be daunting. How do you choose a cybersecurity services ...
If you search the word 'Cloud', you get synonyms like darkness, fog, gloom, puff, and even pea soup, with verbs like ...
As IT continues to grow more complex, managing security through Security Information and Event Management (SIEM) ...
Last month, the world’s fourth most popular social media site, Reddit, was attacked and successfully breached by an ...
Whether your business is large or small, it’s always necessary to keep your data secure. There are a lot of companies ...
As of just last week (mid-July), yet another Bluetooth exploit has been discovered. On average, a Bluetooth device is ...
Alexander Pope once said, “To err is human; to forgive, divine”. Clearly, Pope never had to deal with being a CISO and ...
Many people use common password patterns because they are convenient to enter and remember. But these types of ...
The importance of the customer experience in an industry that is not typically known for its warmer customer focus is ...
The age of server-side ransomware is here. On March 22, 2018, the hacker group known as SamSam gained access to the ...
As the popularity and use of Apple’s technologies increase, the importance of iCloud security increases as well. The ...
