strategyThe principle of least privilege: what is it and why is it needed?
What’s the principle of least privilege, why’s it needed, and how does it help secure corporate information assets?
corporate security
26 articles
corporate securityNever trust, always verify: The Zero Trust security model
What is Zero Trust, and why is it attractive for modern business?
AppleNew features in iOS 8 in light of BYOD and corporate security
iOS-based devices have a large share in the enterprise, which assures a strong demand for BYOD-oriented security features. A number of them arrive in iOS 8.
What Ferrari team has to know about security
A visitor to Ferrari plant may find some of our rules too restrictive. Absolutely no cameras allowed inside, and we will need your signature to confirm that you were informed
Information security digest: May’14
May 2014 appears to be very stormy and volatile in regards to information security. Still overshadowed by Heartbleed and Windows XP “official demise” from April, it has brought a lot of troubles on its own.
business securityVirtualization security: What is ‘Light Agent’?
The virtual environment requires the same protection as physical PCs, but the approach should be different. Full blown security solutions on every virtual machine? The strain for a physical server would be too great. But here comes ‘Light-Agent’…
#KLIAS2014 Outcomes: The Cost of APTs is Going Down
This February, Kaspersky Lab held quite an important event: the annual Industry Analyst Summit. This was the third time we invited top security industry professionals to discuss a wide range
All your data will be erased in Ten… Nine… Eight…
Mr. Vitaly Kamluk, Kaspersky Lab’s security researcher, enters the stage, goes over a certain number of slides, and then proceeds to do a live demo. He warns the audience about
Database Security 101: How Attackers Get In, How to Keep Them Out
Despite maybe a decade of dealing with these problems, SQL injection and brute force or credential theft attacks remain among the most potent methods used by attackers seeking to compromise
The Biggest Leaks of 2013: No Occasional Victims
Media called 2013 the ‘year of personal data leaks’, and for a good reason: last year credentials of hundreds of people fell into the wrong hands. In this post, we
The threat landscape in 2014: why businesses are at risk
Kaspersky Lab published a survey entitled “The threat landscape: A practical guide from the Kaspersky Lab experts“, dedicated to the current cybersecurity situation and main trends in this field. As
The smokescreen: a new spambot hiding in its own traffic
CMS WordPress is in the spotlight again. Researchers detected another aggressive kind of malware that spreads from compromised sites running that popular CMS. At the moment, more than 200 infected
Commercialization of phishing
A few weeks ago Kaspersky Lab experts published a new study on the evolution of phishing over the past two years. Here is a summation of what the study found:
Kaspersky Small Office Security: When web policies may stand in good stead
The bill for your company’s Internet access just made you grunt in annoyance. And you know exactly who to thank for it. The offender has repeatedly been addressed, but either
Who should teach the staff the basics of IT security
Do companies need to take care of their personnel’s IT education today? This issue is controversial because on the one hand it is quite difficult to find people nowadays who
Current threats and graceless ignorance of users
The question of ordinary users’ awareness of cyber threats and the scope of their knowledge about them may seem philosophical or rhetorical, but only at first glance. The results of
Information hygiene at work
The concept of information hygiene seems quite paradoxical. However, this phrase is not new, and the problem is acute. We all live in a world of severe information overload, where
BYODUser’s habits: what employees bring and take back home
In a recent post we wrote about how the line between “work” and “personal” devices today is increasingly blurred. Users will not buy a separate smartphone or a tablet for
application controlDevice control, application control and dynamic whitelisting
What kind of corporate network would be considered secure? Primarily one that is controlled by its operators, or in other words, a network in which the system administrator knows where,
Mobile devices at work and home: the blurring borderline
88% of tablet users and 96% of smartphone owners use personal devices to store important personal information. These figures are from the survey B2B International and Kaspersky Lab cooperatively conducted
Transparent opacity: retrieving confidence in cloud services
Using leased infrastructure for storing large amounts of data has been typical for several years. Leased capacities provide an advantage by allowing businesses to greatly reduce the cost of tending