BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

3 Things To Look For At RSA 2012 In San Francisco

Posted February 27, 2012    Peter McCalister

Yep, It’s that time of year again when everyone interested in protecting their IT assets across physical, virtual and cloud environments converge on Mascone Center in San Francisco for the annual RSA conference.

Expect over 350 vendors/sponsors and 16,500 other attendees clamoring for 220+ sessions. The theme this year is “The great cipher mightier than the sword” and according to the website “Protecting yourself and your company against cyber attacks and those who launch them is a full-time job. You need up-to-the-minute information, the latest technology, insight into techniques and trends, and so much more.”

As you put together your plans for attacking the exhibit hall and incredible sessions make sure you look for the following 3 things:

Keynotes: I’m a huge fan of the keynotes and suggest you don’t miss a single one. Starting off with Art Coviello, Jr., EVP, EMC Corporation, Executive Chairman, RSA, The Security Division of EMC through to Tony Blair, Former Prime Minister, Great Britain and Northern Ireland, I expect all 15 keynotes to be insightful, educational and enlightening.

Sessions: I’m a bit biased to sessions that separate the outsider from insider threats facing your organization. Too much time can be spent worrying about the hacker trying to get in when the most expensive and biggest threat is actually when “Good People Do Bad Things”.

Vendor exhibits: The expo floor is always a crazy place with every vendor vying for your attention deploying every technique from models to magicians, and motorcycle to iPad giveaways. Just go straight to booth 545 and let BeyondTrust show you how to protect your organization from the intentional, accidental and indirect misuse of privilege of your very own employees. We will have some great new announcements tomorrow so stay tuned.
See you at RSA!

Leave a Reply

Additional articles

How To Implement The Australian Signals Directorate’s Top 4 Strategies

Posted October 20, 2014    Morey Haber

The Australian Signals Directorate (ASD), also known as the Defence Signals Directorate, has developed a list of strategies to mitigate targeted cyber intrusions. The recommended strategies were developed through ASD’s extensive experience in operational cyber security, including responding to serious security intrusions and performing vulnerability assessments and penetration testing for Australian government agencies. These recommendations…

Tags:
, , , ,
asp-mvc

Exploiting MS14-059 because sometimes XSS is fun, sometimes…

Posted October 17, 2014    BeyondTrust Research Team

This October, Microsoft has provided a security update for System.Web.Mvc.dll which addresses a ‘Security Feature Bypass’. The vulnerability itself is in ASP.NET MVC technology and given its wide adoption we thought we would take a closer look. Referring to the bulletin we can glean a few useful pieces of information: “A cross-site scripting (XSS) vulnerability exists…

Tags:
4bestpracticesaudits-blog

Four Best Practices for Passing Privileged Account Audits

Posted October 16, 2014    Chris Burd

Like most IT organizations, your team may periodically face the “dreaded” task of being audited. Your process for delegating privileged access to desktops, servers, and infrastructure devices is a massive target for the auditor’s microscope. An audit’s findings can have significant implications on technology and business strategy, so it’s critical to make sure you’re prepared…

Tags:
, , , ,