Editorial

Social Engineering is hardly a new concept — the term itself was coined more than a century ago by Dutch industrialist Jacques Marken discussing the manipulation of the human tendency to trust. Today social engineering is at the heart of all kinds of prominent cyberattacks: Phishing, vishing, CEO Fraud, Ransomware — the list goes on. The questions we need to ask ourselves are: Why is social engineering so effective? and What can we do about it? This ebook on Social Engineering will delve deeply into why we need to understand the underlying psychological underpinnings of social engineering, why it works the way it does, and how we need to break both good and bad habits in order to release ourselves from its insidious control that makes good people take inappropriate actions to make confidential data — or just, plain cash — available to attackers.

You know what you need to do – it's Cybersecurity 101. Keep the bad actors from getting a foothold in your network. Make sure everyone is who they say they are. Don't let work-from-home employees introduce malware because their home networks are compromised. Build out your cloud-based assets with tools optimized for the cloud, not jerry-rigged from on-prem applications that don't quite do the job. OK, you know this. Now, how do you do it? You can build it yourself — you probably have many of the tools already — or you can buy a fully integrated system. This ebook looks at some of the pros and cons of building versus buying the new defenses you need — the Secure Access Service Edge or SASE model — in this new normal of the pandemic environment.

We've seen it happen too many times now. SMBs that get hit with ransomware go out of business at an alarming rate within six months, according to recent government statistics. Even large companies are feeling the pinch, albeit not to the extreme of their smaller brethren. How you address a ransomware attack at the beginning can have a huge impact on the ultimate damage it can cause. This ebook addresses how you such handle the incident response to a potential ransomware attack along with the pluses and minuses of actually paying the ransom. We will look at how to ensure your backups are safe to restore and your network is free from any residual ransomware, how to make sure you work-from-home employees are not bringing their own disasters as well as their devices, and what kinds of strategies work best against an attack that normally requires someone to take some kind of action.

Next-generation firewalls (NGFW) have been "a thing" for nearly 30 years. The name itself is a misnomer, but that doesn't mean firewall technology stood still. While NGFW added deep packet inspection, intrusion prevention systems and other essential technologies, the requirements the original NGFW needed to meet are not the only issues today's CISOs face. Let's face it, Millennials are not exactly the proverbial new kids on the block and the issues of the 1990s are not the only vulnerabilities security teams face. With the pandemic changing the way companies do business, today's technology protects the corporate needs to address vulnerabilities in the cloud, home-based and other remote workers, and the emerging threats from state actors. This eBook looks at how firewalls are meeting these demanding changes what we can expect to see in the future.

Your employees are working from home. Your supply chain is expanding as you grow your business. New IoT devices are entering your workforce and offices faster than you can monitor them. In short, your attack surface is growing exponentially — at least it feels that way. As your attack surface grows, so do you vulnerabilities. Certainly you need to manage your endpoints, as well as increase the controls on who can access what on your network. Is Zero Trust the right approach for you? Can AI help identify potential intruders and protect your corporate and cloud-based assets and data? Is there something you're missing when you look at your attack surface vulnerabilities? This ebook looks at how you can better identify where your attack surface threats exist and how to contain them. We will look at both on-prem, cloud and remote surfaces, helping you identify potential threats — especially emerging threats — and how you can ensure your data, hardware and software's integrity.

Secure email gateways are supposed to be just that — secure. Unfortunately, like many other security appliances, gateways can be fooled and compromised. The key is knowing what to look for and how to mitigate and overcome the risks related to malware getting past the gateways and into users' mailboxes. This special report looks at secure email gateways and secure web gateways, identifying their vulnerabilities and how these legacy products remain relevant.