What Are Advanced Persistent Threats (APTs)?

advanced persistent threats featured

Unlike traditional cyberattacks, advanced persistent threats are often carried out by well-funded and highly skilled threat actors who use a range of techniques to gain and maintain access to a target’s network and data for an extended period of time. As the number of APT attacks continues to rise, businesses of all sizes need to understand the threat landscape and take steps to protect their networks and data against APTs. 

In this blog post, we will explore APTs, how they work, the potential consequences of a successful APT attack, and best practices for preventing APTs.

Read More

ISO 31010 and Implementing Risk Assessment Techniques

ISO 31010 featured

We’ve previously discussed the role of risk assessment as defined by the International Organization of Standardization (ISO) 31000, and generally speaking, we’ve found that risk management is a key practice to supporting security and compliance. To better support organizations approaching risk assessment, ISO published the supplementary document, ISO/IEC 31010, “Risk assessment technique.”

In this article, we’ll provide a brief overview of the processes and techniques advocated by this publication.

 

Read More

What are ISO 30141 and the General Characteristics of Internet of Things (IoT) Systems?

ISO 30141 featured

The Internet of Things (IoT) was seen as the next big thing for the consumer market. While the impact of IoT technology is still unfolding, there is no doubt that IoT devices have made a much bigger impact in the commercial space. IoT networks are changing how we handle major industrial processes, from healthcare to supply chain logistics and manufacturing. Accordingly, the ISO has put forth a document, ISO 30141, on best practices and characteristics of operational IoT systems. 

 

Read More