What are the next Data Loss Prevention (DLP) Disruptions? Data Loss Prevention (DLP) is a technology used to prevent sensitive or confidential data from being shared or accessed by unauthorized parties. While others need to play catchup in the below categories, GTB DLP has led the way in: Artificial Intelligence [...]
HELP! I need to find my Data before I can secure it! REALLY? Do I need to first Classify? Many analysts and some DLP vendors are touting their Data discovery capabilities and promote the notion that one must first Discover and Classify the data before such data can be secured. [...]
The GLBA Overhaul: What you Need to Know New FTC data requirements are coming into effect by year’s end. The changes are expected to have a major impact across industries, including those outside the financial sector. In late 2021, the Federal Trade Commission made amendments to the Gramm-Leach-Bliley Act (GLBA) [...]
The Defense Department certification program known as Cybersecurity Maturity Model Certification, or CMMC, is currently in the final rollout stages. The CMMC’s official site describes the protocols as a “comprehensive framework to protect the defense industrial base” from increasingly common cyber threats. The certification granted by the Pentagon [...]
Industry thought leader Gartner recently published its July 2022 Market Guide for Data Loss Prevention (DLP)[i]. In the thirteen-page report, Gartner laid out the most pressing needs of business networks, the data security challenges they face, and the most effective solutions. Problematic Trends The researchers first turned to the more [...]
Fighting business email compromise (BEC) has become one of the top challenges for enterprise security professionals. The cost of falling victim to BEC incidents has been on a sharp uptick for years, with hackers discovering more and more exploits in an increasingly vulnerable domain. This pattern began to be noticed [...]
Extended detection and response or “XDR”, a new, and much lauded approach to threat detection and response. According to its proponents, XDR provides holistic protection against cyberattacks, unauthorized access, and general misuse of data. The capabilities touted by XDR supporters are indeed impressive. With this model, security teams can identify [...]
Protecting PII is Still a Problem Protecting PII is one of the central challenges for today’s enterprises. Firms large and small invest heavily in security budgets to ensure their networks are well protected and data remains intact. But before organizations can protect their sensitive data, they need to be able to [...]
With digital advancement, data privacy and protection is crucial. Comprehensive data protection strategies are effective when businesses have complete visibility and transparency into data. Enhancing data privacy accuracy is critical for improving your organization’s overall security posture. Many organizations are unable to accurately detect sensitive data when on-premise or syncing [...]
As IT tools become more complex and all-encompassing, the gaps in DLP are increasing [...]
In shocking findings, the majority of cybersecurity professionals admit they are not confident in their ability to prevent data loss. [...]
In shocking findings, the majority of cybersecurity professionals admit they are not confident in their ability to prevent data loss. [...]
SASE on the Edge The new global business reality has created a slew of new challenges on the data protection front. Changes to network configuration and norms in company system access have made many traditional security models inefficient if not completely obsolete. Trends in global commerce adapting to the [...]
Gartner 5 Star Leader In one of the more surprising pieces of news to hit the world of IT in the past year, cybersecurity giant McAfee announced it would be offloading its entire enterprise business. In a press release in early March, the company stated it will become a [...]
Data Risk, Intelligence and the Insider Threat When it comes to securing networks in today’s business environment, the single biggest challenge firms must contend with is that of the insider threat. While the term is typically associated with corporate espionage or perhaps disgruntled workers, this threat is mostly not caused [...]
“The Future Of Enterprise DLP Is Bright With GTB” Gartner Peer Review Senior Product Manager Finance Industry “Excellent solution, stellar support.” Gartner Peer IT Services Associate IT services “GTB Technologies DLP Solution A Step Above The Competition & Support 3 Steps Above.” Gartner PeerVP, IT Services Banking “GTB: Best DLP [...]
https://gttb.com/wp-content/uploads/2020/12/Data%20Security%20Works%20GTB_Tech%2090.mp4 [...]
User Behavior Analytics, or UBA, is one of the most important developments in digital data protection to emerge in the past several years. UBA is an advanced cybersecurity process designed to detect insider threats, primarily those connected to targeted attacks, financial fraud, and especially data exfiltration. By analyzing regular patterns [...]
Cloud Office Security With the large-scale shift to the cloud in recent years, new challenges have arisen in the arena of data loss protection. Companies have had to adapt their DLP and data security protocols to suit their evolving approaches to data storage. Gartner Advice While [...]
Cybersecurity is really a Business Decision Back in February Gartner produced published a cyber risk assessment entitled “The Urgency to Treat Cybersecurity as a Business Decision”[1] In this paper, Gartner senior analyst Paul Proctor describes many important trends within the cybersecurity side of business, as companies are being forced [...]
Compliance for Cyber Liability Insurance With the threat of data breaches now firmly part of today’s operational risk, data security insurance has become increasingly sought after by businesses. Insuring the data-sphere is now a rapidly expanding field and is on the fast track to becoming a multi-billion dollar industry. Data [...]
CCPA, COVID-19 and Data Security In January, the CCPA went into effect, but enforcement was delayed until California’s Attorney General Xavier Becerra finalized the underlying regulations, or July 1, 2020. On June 1, the Attorney General of California submitted the final regulation package for the state’s comprehensive data protection law, the [...]
In one of the more sensational data breaches in recent times, media and entertainment law firm Grubman Shire Meiselas & Sacks was hit with a cyberattack that affected some of its most high profile clients. According to a Variety report, the breach compromised some 756 gigabytes’ worth of information [...]
Symantec the Black Hole of DLP & Data Protection The demise of mega security vendor Symantec has been known in the IT industry for years now. Once one of the biggest names in a slew of platforms, from antivirus to firewalls, is now in a clear state of [...]
Gain Control of Your Unstructured Data On-Premises and in the Cloud When it comes to data security, enterprises face a major challenge when it comes to preventing data loss. The nature of administering a large firm today means sharing information across a wide spectrum of users, spread out across [...]
What is Software-defined perimeter and Zero Trust? In the digital age, experts are constantly on the search for the best model of information security. While most improvements constitute tweaks or upgrades to existing paradigms, some designs have required a complete break with the past. Two models, in particular, exemplify this. [...]
Badmouthing Data Loss Prevention (DLP) is Fashionable Is DLP Really Dead? I recently came across several digital security vendor sites who describe themselves as a “DLP alternative.” Perusing through their pages, I came across comments such as “DLP is hard to deploy”, “DLP is hard to maintain” and [...]
What is TISAX (Trusted Information Security Assessment Exchange) Compliance? TISAX has become one of the big buzz words in info-sec today. The challenge of DLP and its importance for data security has triggered the creation of new methods and systems for enterprises to employ. The folks that put [...]
January 2020 Redefining Data Loss Prevention and Protection GTB Technologies is the Data Protection solution that can prevent the loss of data from Malware and trusted insiders by blocking sensitive data. “Data Protection” has been the name of the game for GTB Technologies since its inception in [...]
The Public Cloud. Is it Secure? In today’s business environment, data is everything. With data volumes increasing exponentially, the cloud has become the go-to for many companies to store their vital information. Offloading data storage and management has worked wonders. Firms no longer have to rely on in-house storage [...]
Dangers of Cloud Based Collaboration Applications In today’s data driven world, inter-connectivity has become key for efficient operations. Businesses need to provide timely and easy information access to both clients and employees–not to mention the slew of off-site collaborators they may be working with on any given project. [...]
The false promise of blanket encryption Why data needs to be inspected before its put under lock and key With cyber-attacks on the rise and compliance with regulatory regimes like HIPAA and GDPR becoming more urgent, businesses have been turning to encryption as a catch-all tactic to assure IP and [...]
What is Data Loss Prevention (DLP) Shelfware? With the huge volume of sensitive data companies must deal with today, it’s no wonder data loss protection (DLP) still tops the list of administrator concerns. Despite the attention, however, it seems that getting DLP right remains easier said than done. Even major [...]
Supply Chain Risk: The importance of vetting 3rd party vendors and their data protection tools Modern organizations are increasingly interconnected, with complex supply chains extending across continents and categories. While this brings a range of business benefits, it also brings risks. Cyber-criminals understand how data is shared between links [...]
Business Email Compromise Among the growing threats within today’s cyber-sphere, the trend of Business Email Compromise, or BEC, is certainly nearing the top of the list. Broadly defined, BEC is a type of sophisticated scam targeting companies who conduct wire transfers, especially those with suppliers abroad. The [...]
Information overload. One of the key phenomena that has come to define the digital age. The consequences of this information glut cover a wide spectrum. From the analytical perspective, finding answers to important questions and identifying what constitutes relevant information, has become increasingly difficult for businesses seeking to [...]
Insider Threats and the difficulty in stopping data breaches In dealing with today’s digital-threats, the main focus of companies, is by far on preventing attacks emanating from outside the organization. Businesses invest fortunes on bolstering their digital defenses with ‘traditional’ tools such as firewalls and antivirus programs. Current estimates [...]
How enterprises can realize the full potential of CARTA Trust has traditionally been the cornerstone of network security. It’s what allows everything from files to data packets to move across a network, while also controlling permissions for end users. But in modern networking, establishing trust is getting harder. [...]
Among all the methods for securing digital data, the policy of air-gaping is certainly the most extreme. Drastic Measures As it’s name would imply, air-gaping is a security protocol that physically isolates a machine from a network. Air-gaping most commonly involves cutting off a computer from the World Wide Web, [...]
How to stay compliant with NIST SP 800-171 If you’re part of the US federal government supply chain, at some point you’ll have heard of NIST. The National Institute of Standards and Technology (NIST) sets out data security mandates for government departments and agencies. In 2017 it implemented a sweeping [...]
Big data, heavy data & DCAP With information volumes surging and compliance burdens growing, enterprises need a new approach to data security By 2025 humans will have generated 180 zettabytes of data [i]– or 180 trillion gigabytes. That’s a lot, and well up from the mere 10 zettabytes we’d [...]
From Gartner Peer Insights Previous Next More 5 Star Gartner Peer Insights Gartner Magic Quadrant for Enterprise Data Loss Prevention (DLP) 2023, 2022, 2022, 2021, 2020, or 2019 Where is it? It’s 2023, so where is the latest Magic Quadrant for Enterprise Data Loss Prevention (DLP)? It turns out that [...]
When knowledge is the best defense Cybersecurity education with data loss prevention technologies can help stop the insider threat There was a time when the average CSO’s top priority was to build a fortified wall around the company network. Lock hackers out, hold data in. Patch and reinforce continuously to [...]
Dangerous Cyber Attack Techniques Part 2 Password Reuse and Weak Passwords The weak password is far the most common factor resulting in the compromise of networks worldwide Research has shown than over 80 percent of all data breaches are caused by stolen passwords. And hackers manage to get their [...]
The Most Dangerous Cyber Attack Techniques and How to Confront Them Numbers on global trends in cyber attacks are pretty clear: hackers are making it big. Over the past year, the rates of many forms of cyber attacks increased dramatically, in some cases doubling or even tripling in [...]
GDPR Right to be Forgotten, CCPA Right of Erasure (RtbF/RoE) and Data Subject Access Requests (DSAR) Forget about forgetting Without the right technical capabilities, efforts to enable the ‘right to be forgotten’ under CCPA and GDPR may be doomed to fail The right to be forgotten/right of erasure (RtbF/RoE) [...]
Data Classification, Machine Learning & Detection Inaccuracy The advancement of technology and expansion of businesses might mean further development for the world as it is; however, it does mean that higher volumes of data and information has to be processed. As a result, data protection now sits on the top of [...]
Inaccuracies of Machine Learning Automation has found its way into every major technical industry. And it’s no wonder why. Streamlining operations with machines increases productivity and efficiency, especially for fields where large volumes of information are a factor. When it comes to data loss prevention however, [...]
GDPR and CCPA, An Update A look at the compliance picture 3 months into the international year of privacy Now that we’re a few months into 2019 it’s worth taking another look at the impact of recent sweeping privacy bills, in particular the EU’s General Data Protection (GDPR) regulatory regime, [...]
Data Security & Source Code Protection As far as sensitive data goes, few pieces of information rank higher then program source code. Source code is highly sensitive proprietary information, making up the program instructions for any application in their original form. The More Sensitive, the Bigger the Risk For years, [...]
Data regulation is now a strong, permanent feature of the IT landscape. Over the past year, a series of sweeping regulations have come into force that have brought change on entire industries. Global business will have to operate in a new data environment in 2019. With the year coming to [...]
Data breaches are the cost of doing business. [spacer] At least this is the complacent attitude often taken by many in the business world today. While it is true that cybercrime and the risk of data loss aren’t going away within the near future, many users fail to realize [...]
IT Technology Our ever expanding IT technology is creating major changes in the way enterprises handle their data. While the expansion and diversification of computation tools has brought tremendous growth to the IT industry–as well as the business that utilize them–the new trends have come with a price. As organizations [...]
Today is the era of big data. The volume of information that requires storage, processing, and assessment is growing at an exponential rate. What this means for enterprises, is that new methods for managing digital data are becoming a necessity. Nowhere is this need felt more than when [...]
The shift to the cloud. It’s one of the IT world’s fastest growing trends. Cloud storage has brought about a revolution in data management, allowing enterprises to store and process large quantities of data without dealing with the costs and maintenance of on-site hardware. More importantly, the cloud has [...]
A Gartner Analyst and “It’s Time to Redefine Data Loss Prevention” Today, it seems to be in vogue to criticize DLP solutions as out of date, insufficient for modern business needs, and generally out of touch with industry realities. One of the more notable sources to voice this [...]
Zero Trust Data Protection Out with the Old Conventional security models, those based on firewalls, IDS, and the like, operate on the outdated assumption that “everything on the inside of an organization’s network can be trusted”. The contemporary threat landscape facing IT has shown that this is simply [...]
In an era where cyberattacks can paralyze entire networks, the need for effective, reliable IT security has become paramount. Some think they have found the silver bullet in the war against hackers. The Blockchain Revolution When Bitcoin creator Satoshi Nakamoto, whose true identity is still unknown, revealed his [...]
PageUp and the 3rd Party Liability Problem 3rd Party Liabilities The tech world was thrown into frenzy over the recent hack of international HR service provider PageUp. In late June, chief executives reported “unusual activity” in its IT infrastructure. An investigation was launched and emergency notifications were distributed to [...]
Increasingly demanding data regulations. The trend has been the strongest factor affecting the world of IT over the past several years. Over the recent period, state, national, and international authorities have been producing legislation creating tight protocols for the digital information sphere. While these laws [...]
Taking on the Threat of Fileless Malware Over the past two years, the IT industry has faced an important shift in the way cyber criminals go about their attacks. Some of the biggest names in the field of cyber security have been tracking the growing threat of fileless malware [...]
Equifax Submits Additional Statements to Congress Regarding the Incident Equifax submitted a statement to congressional committees to supplement the company’s responses regarding the extent of the incident impacting U.S. consumers. “As announced on September 7, 2017, the information stolen by the attackers primarily included: “As a result of its analysis of the [...]
What is the Right to Erasure (‘right to be forgotten’) of the EU GDPR? The fast approaching General Data Protection Regulations (GDPR) of the European Union is the most comprehensive set of laws to hit the world of data technology. GDPR is unique not only in the broad range [...]
DLP, THE ANALYSTS AND VENDORS A blog: For nearly two decades, deploying Data Loss Prevention (DLP) has been a staple for enterprises seeking to secure their data assets. Despite being such an important part of an information security strategy, some observers have recently begun to cast doubt on the [...]
Insider & Outsider Threats in Today’s Digital Age What is the value of trust? How much do you trust the security of your business in today’s’ digital age? Would you know if an attacker breached your infrastructure and sent out sensitive data? Would you know if a [...]
Intelligent Technologies for EU GDPR With the long anticipated General Data Protection Regulations (GDPR) of the European Union coming into effect in May, companies across the globe are scrambling to insure their data management systems are ready for the new responsibility. GDPR presents a tall order for firms that want [...]
The Cost of BIPA Non Compliance is High The floodgate of lawsuits being brought in the State of Illinois over improper storage of biometric data has continued over the past several months, pretty much unabated. Illinois’ Biometric Information Privacy Act (BIPA) has proven to be one of the more consequential [...]
Continuous Risk and Trust Assessment Approach The industry standards in information security have been undergoing dramatic changes over the past several years. So what is the Continuous Risk and Trust Assessment Approach? The paradigm of network security monitoring has firmly shifted from a rigid, concretized approach, to one the focuses [...]
DFARS / NIST 800-171 Compliant Preventing the loss of sensitive information is one of the biggest challenges facing organizations in their day-to-day operations. Data loss prevention techniques are vital for establishing secure protocols. It is not surprising that the National Institute of Standards and Technology (NIST) in their last special [...]
Edge Computing, IoT and Data Breaches In the era of high demand on data storage and organization, one of the most employed methods by firms to consolidate resources is edge computing. Edge computing is a method of optimizing cloud computing systems by performing data processing at the “edge”, the logical fringes of [...]
GTB Data Loss Protection Gives Users the Edge The application of a robust data loss protection (DLP) program is vital for the secure function of organizations. The very real risk of a data leak is exponentialized by the sea of data transfers typically taking place in within a high performing [...]
The Encryption Burden of GDPR and the New York DFS The persistently growing threat of cyber attack has begun to spur government agencies to enact security guidelines. These guidelines will have a mounting effecting on private industry. The most pertinent additions to these official protocols are the European Union’s General [...]
Applying Smart Algorithms for Intelligent DLP & Data Protection Data loss prevention (DLP) and Data Protection programs play a vital role in an organization’s information security strategy. DLP is essential for tracking a company’s volume of data and organizing it within security protocols. This includes classifying files / data streams [...]
The Importance of the Technology Behind e-Discovery Solutions The sheer quantity and quality of data at the core of major investigations have reached new levels. It is no longer uncommon to have complex cases with tens and even hundreds of millions of disparate evidentiary files, including e-mail correspondence, significant [...]
The Failings of Blanket Encryption As the rate and severity of data breaches increase, industry leaders in the IT sector have sought more all-encompassing measures to safeguard sensitive information stored on company systems. Many have identified the lack of blanket encryption for company files to be the primary cause of [...]
Insider Threats, preventing data exfiltration The digital economy is undergoing remarkable transformation and security is being compelled to evolve as organizations embrace services that are more dynamic in nature. The things organizations do to grow, innovate, and drive performance change the cyber risk landscape every day. Business leaders today are [...]
Which DLP Solution are you using? Sound familiar? Many organizations are now being required to discuss with their customers which DLP solution they have in place and how effective the solution is. Healthcare Organizations, Defense Contractors, Financial Firms and the like, are now requiring most of their 3rd party service providers (including [...]
Using a Zero Trust Approach towards Data Protection and Data Exfiltration Prevention What is Zero Trust Security? Face it, traditional network perimeter security (firewalls, IDS, and the like) have failed. Add into the mix the growth of cloud services (both sanctioned and unsanctioned) and you have a big problem. Zero [...]
What are the EU General Data Protection Regulation Articles relevant to Data Protection? [spacer] [spacer] Section 1 General obligations Article 15: Right of access by the data subject Article 17: Right to erasure (‘right to be forgotten’) Article 20: Right to data portability Article 25: Data protection by design and by default [...]
Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure … Is your report ready? May 11, 2017 Section 1 c (ii) of the Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, where the Executive Order mandates that the NIST Cybersecurity Framework [...]
GTB’S Vision for the DLP Data Protection Space From a philosophical standpoint, the main difference between GTB DLP and the others is policymaking. Good Data Protection / DLP Policy making has many ingredients. First, is the classification of data. Then, the ability to detect that data followed by [...]
What are the Data Protection Officer’s Tasks defined under EU GDPR? Article 39 Tasks of the Data Protection Officer (DPO) The data protection officer shall have at least the following tasks: (a) to inform and advise the controller or the processor and the employees who carry out processing of their [...]
ICO publishes International Strategy to help protect UK public’s personal information in a global environment 04 July 2017 Latest news from the UK’s Information Commissioner’s Office (ICO) website The ICO has published its first ever International Strategy to help it meet overseas data protection challenges including increased globalism, changing [...]
Senate, House Versions of Cyber Hygiene Bill Introduced NIST, FTC, DHS would work together Jun 30, 2017 05:21 AM ET By John Eggerton eggerton Rep. Anna Eshoo (D-Calif.) has introduced a “cyber hygiene” bill, H.R. 3010, which would require the National Institute of Standards and Technology to come up with [...]
Europe hit by massive cyberattack By Associated Press June 27, 2017 | 11:20am | Updated “PARIS — A new and highly virulent outbreak of malicious data-scrambling software appears to be causing mass disruption across Europe, hitting Ukraine especially hard. Company and government officials reported serious intrusions at the Ukrainian power grid, [...]
Ohio governor’s website among government sites apparently hacked on Sunday BY ADAM FERRISE, CLEVELAND.COM aferrise@cleveland.com CLEVELAND, Ohio — The Ohio governor’s website was apparently hacked on Sunday, along with the state’s prison system’s website. The official website for Ohio Gov. John Kasich showed the same message from the hacker on [...]
What is the GDPR Risk Assessment from GTB Technologies? The GTB Technologies EU GDPR Data Protection Risk Assessment Organizations are adopting cloud apps at a rapid pace. Whether you allow or block these apps, chances are your users have found a way to access them. With the European Commission [...]
What is the GDPR EU General Data Protection Regulation? General Data Protection Regulation Defined: The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all [...]
What is Data Encryption and Decryption? Encryption is the process of translating plain text data (plaintext) into something that appears to be random and meaningless (ciphertext). Decryption is the process of converting ciphertext back to plaintext. To encrypt more than a small amount of data, symmetric encryption is used. [...]
Privacy Mandatory – Data Breach Notification in Australia Australia’s Data Breach Bill amends the Privacy Act 1988 (Cth) (“Privacy Act”) and requires private and public organisations regulated by the Privacy Act to notify affected individuals and the Australian Information Commissioner of “eligible data breaches”. Click the article title to [...]
5 time Visionary , GTB Technologies positioned furthest for Completeness of Vision, strengths noted as: ” ■ GTB’s combination of data fingerprinting, OCR and native SSL decryption provides powerful interception capabilities, particularly for intellectual property protection use cases ■ Customers speak highly of GTB Discovery, which allows for [...]
MSPs who take advantage of intelligent cloud-based and on-premises data protection security are better able to protect their clients from the constantly evolving, never ending environment of insider and outsider threats. Some of the necessary data protection security features and facets for true Data Protection include: Preventing data exfiltration from [...]
Notable GDPR Cybersecurity News Click the article title to continue reading Rethink on bank cybersecurity rules might only follow major bank breach, says expert Banks ‘effectively unregulated on cybersecurity’ 10 Jan 2017 at 10:00, OUT-LAW.COM It might take a major bank to fail as a result of a cyber attack [...]
// Top Cybersecurity Conferences & Events – #infosec 2017 Feb 11-12, 2017 ISSA CISO Executive Forum Series The CISO Executive Forum is a peer-to-peer event. The unique strength of this event is that members can feel free to share concerns, successes, and feedback in a peer only environment. Membership is [...]
HIPAA Privacy, Security, and Breach Notification Audit Program OCR senior advisor Linda Sanches said at the recent HIMSS and Healthcare IT News Privacy & Security Forum “We will be conducting a small number of on-site audits in 2017,” Sanches added. [1] What is the OCR Audit Phase 2?[2] [...]
Free Healthcare Data Risk & Audit Preparedness Assessment Can you meet all those compliance & regulatory requirements? Do understand your HIPAA Risk? Risk Analysis is the first step in an organization’s Security Rule compliance effort. Risk Management is a requirement. GTB’s Healthcare Data Risk Assessment allows an organization to conduct an accurate [...]
Happenings at the Gartner IAM Identity and Access Management Summit With the increase of cloud adoption at an exponential rate, businesses are asking themselves what data security precautions and prevention tools need to be adopted and put in place. Additionally, recent independent research and analyst reports on Cloud Access Security [...]
New DLP Report to be Released In a few days, Forrester Research releases its first DLP Wave report in over 6 years. Titled “The Forrester WaveTM: Data Loss Prevention Solutions, Q4 2016″, will offer opinions on many different “DLP” solutions. Much has changed over the last decade of [...]