banner-blog.jpg

BLOG

New Gartner Report Sheds Light on Digital Transformation Strategies in a Postpandemic World

Posted by Mehul Patel on Oct 16, 2020

Government Agencies Need to Rethink How They Provide Fast and Reliable—Yet Secure—Access to Remote Users.

Covid-19 and the resulting fallout has laid bare the inefficiencies of government and a failure to address these issues with existing digital transformation initiatives, according to a new report published by Gartner. These inefficiencies, the report said, is undermining the productivity of the federal workforce at a time when agencies dealing with the pandemic, the government response, and economic recovery need to react quickly to fast-changing conditions with organizational agility.

 

Read More

Tags: cybersecurity, gartner, web isolation, COVID-19, cloud-delivered security, federal agency, digital government

It’s Time to Address the Growing Cybersecurity Skills Gap

Posted by Mehul Patel on Oct 15, 2020

Cybersecurity warriors are in short supply these days. According to (ISC)2, 2.8 million professionals work in cybersecurity globally, but the industry would need another 4 million trained workers—500,000 in the U.S. alone—in order to properly defend organizations and close the skills gap.

Read More

Tags: cybersecurity, isolation, security, security operations center, ISSA, ISC)2, SOC, Menlo Security Platform, unintended security gaps, Menlo iSOC, reskilling, cybersecurity skills gap

Shifting Security to the Cloud

Posted by Mehul Patel on Oct 13, 2020

Build a Security Approach that Is Integrated, Simple, and Cloud Delivered

Last month I had the absolute pleasure of chatting with Kenny Yeo, a cybersecurity analyst from Frost and Sullivan and one of the leading security experts in the Asia Pacific region. Kenny and I locked horns during a conference recently, and we started sharing notes on how SaaS security has evolved. It turned into quite an interesting conversation, so I wanted to get his take on recent network and security shifts that are impacting companies.

 

Read More

Tags: cybersecurity, security, web isolation, Cloud Adoption, cloud security, cloud-delivered security, digital transformation and security, Frost and Sullivan

Five Cloud Security Considerations for CISOs

Posted by Kowsik Guruswamy on Oct 8, 2020

Discover How You Can Protect Users and the Organization in Today’s New Normal

The past six months have been a whirlwind of change. Security teams across the world have scrambled to empower distributed users with the tools and information they need to keep businesses running. Now everyone is accessing everything from everywhere, with limited control and visibility into who is accessing what, where, and on what device.

Read More

Tags: cybersecurity, phishing, spearphishing, cyberattacks, Web Security, HTTPS, SaaS, cloud security, VPN, email security, new normal, cloud apps, BYOD

Menlo Threat Labs Uncovers a Phishing Attack Using Captchas

Posted by Vinay Pidathala on Sep 30, 2020

Menlo Security’s iSOC—our isolation-powered SOC service—identified a credential phishing campaign targeting the hospitality industry. Menlo Labs researchers decided to take a deeper dive into the campaign and I’m glad we did, because it sure turned out to be an interesting one.

 

Read More

Tags: phishing, isolation, captcha

Phishing Attacks Are Scarily Easy to Build

Posted by James Locus on Sep 22, 2020

Targeting People, Not the Infrastructure

Historically, many cyberattacks tended to be technology-focused and required specialized knowledge to expertly fool a network into believing the attacker was an authorized user. Spoofing, man-in-the-middle (LAN or Wi-Fi), DNS, and other attacks require actual skill (and a bit of malice) to properly execute.

Read More

Tags: phishing, isolation, email isolation, link isolation, link wrapping

U.S. Department of Defense Leads the Industry with Cloud-Based Internet Isolation Program

Posted by Amir Ben-Efraim on Sep 15, 2020

Back in April 2019, the Menlo Security team learned that our Partner By Light IT Professional Services LLC and Menlo Security were one of two solution providers selected to design and implement a Cloud Based Internet Isolation (CBII) prototype capability for the Defense Information Systems Agency (DISA).

 

Read More

Tags: CBII, SWG, cloud security, remote browser isolation, AirGap, DoD

How Should Zero Trust Apply to Phishing?

Posted by James Locus on Sep 3, 2020

Isolation for Zero Trust Phishing Protection

Phishing sites frequently evade web and email filters because of the inability of secure gateways to detect new phishing websites or categorize them properly. According to Menlo Labs, web and email gateways wrongly categorize 10-15 percent of malicious websites as safe.

Read More

Tags: phishing, isolation, URL, email filtering, zero trust

How Isolation Changes Incident Response

Posted by James Locus on Aug 20, 2020

Large Groups of Isolated Users Shrink Your Exposure Surface

Enterprises frequently acquire an isolation solution (with Menlo for remote browser isolation) for groups of users, such as VIPs, rather than their entire workforce. While this strategy insulates VIPs from malware attacks, it assumes that only VIPs have access to potentially crippling information.

Read More

Tags: phishing, isolation, Incident Response, API, logging

New Attack Alert: Duri

Posted by Krishnan Subramanian on Aug 18, 2020

HTML Smuggling Campaign Is Stopped by the Menlo Security Cloud Platform

Menlo Security has been closely monitoring an attack we are naming “Duri.” Duri leverages HTML smuggling to deliver malicious files to users’ endpoints by evading network security solutions such as sandboxes and legacy proxies. Isolation prevents this attack from infecting the endpoint. Here’s what we know.


Read More

Tags: Isolation Core, Duri, DataURI

Connect with us

Lists by Topic

see all

Recent Posts