From Stuxnet to the Office of Personnel Management and then Sunburst, what have we learnt and what is so obvious, no one is looking at what is staring them in the face?
How to identify and manage the security risk hidden in your organisation
Organisations rely on strong authentication as a capability to provide access to their corporate assets. For many years Public Key Infrastructure (PKI) and SSH Keys have been at the forefront of these types of critical security controls. However until now PKI systems didn’t allow owners to find all the certificates and keys on their systems.
Cyber Threats to Critical National Infrastructure
Don’t let your certificates expire and catch you out
Do you use a certificate management provider and yet still have certificates expire and catch you out? Ponemen recently surveyed 2500 global companies and found that the average cost for a global 5000 company due to a certificate outage was about $15M to recover from the loss of business, and faced a further $25m in potential compliance impact, that’s a total of $40M per outage, surely this is unacceptable?
Survivorship Bias
In 1943 the US Air Force tasked Abraham Wald with a problem. Too many of their planes were being shot down so they wanted to add extra armour to the vulnerable parts of the planes. Too much armour would make the planes too heavy to fly properly, so they couldn’t add extra armour over the entire plane. They asked Wald to tell them how much extra armour to add to the parts of the planes that were being hit most often…