Featured Blogs
McAfee’s Defenses Against Microsoft’s CryptoAPI Vulnerability
Microsoft made news this week with the widely reported vulnerability known as CVE-2020-0601, which impacts the Windows CryptoAPI. This highly critical vulnerability allows an attacker to fake both signatures and digital certificates. The attacker would use spoofed Elliptic-curve cryptography (ECC) certificates for signing malicious files to evade detection or target specific hostnames ...
How Frankfurt Stopped Emotet In Its Tracks
During a time when ransomware continues to bring governments around the world to a halt, one city has turned the tables, by bringing their government to a halt pre-emptively to prevent ransomware. According to ZDNet, in late December, Frankfurt, Germany—one of the world’s biggest financial hubs—reportedly shut down its IT ...
MITRE ATT&CK™, What’s the Big Idea?
MITRE describes ATT&CK™ as “a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations.” While this is a fine definition, it helps to understand the significance this framework enables. The tactics, techniques, and procedures (TTPs) represented in ATT&CK allow organizations to understand how adversaries operate. Once you ...
How to Apply the Lessons of 2019 to the Security of 2020
What keeps executives up at night? According to the World Economic Forum’s (WEF) 2019 Executive Opinion Survey, it’s cyberattacks. When reflecting on 2019, it’s clear why that is. From healthcare and insurance to manufacturing and telecommunications, cybercriminals spared no industry from their schemes, with a few key verticals bearing the ...
2019 Recap: A Year to Remember
Working Even Harder To End the Cybersecurity Talent Shortage The term “skills gap” is all too familiar to those in the cybersecurity industry. A recent ISACA survey found only 18% of respondents said they believed the cybersecurity skills gap will be mostly or entirely filled during the upcoming decade, while ...
Independent Research Firm Ranks CWS Vendors in Report: McAfee a Leader
Forrester, a leading independent research firm in the field of cybersecurity, recently published its inaugural WAVE report on Cloud Workload Security. We’re proud to report that McAfee was named a leader. The Forrester Wave evaluates and ranks products in the CWS category against 30 pre-defined criteria. The report provides security ...
Cybersecurity & Artificial Intelligence (AI) – a view from the EU Rear Window, Part II
In Part I of this blog, we discussed the debate around AI: what it is, whether it exists, and to what extent it plays a role in our daily lives. In Part II, we turn our focus to the future, and how AI must be developed deliberately and thoughtfully to ...
Endpoint Security 301: When Products, Policies, and People Break Down the Lines of Communication
Security architecture is like the ocean: no one owns it, and it is constantly affected by change. New technologies are introduced, staff changes occur, and as a result, communication suffers. I often see environments where ownership is placed into silos across teams in the enterprise, meaning IT administrators preventing threats ...
McAfee Up Levels Insights for Customers
Authored by Anand Ramanathan McAfee recently announced MVISION Insights designed to help customers proactively detect, rank and respond quickly and accurately to threats. On top of having to respond to threats that persistently target their companies, security professionals also face another huge challenge – prioritizing what threat information is relevant ...
Cybersecurity & Artificial Intelligence (AI) – a view from the EU Rear Window, Part I
Much has been said about the power of AI and how tomorrow’s CISO won’t be able to provide efficient cybersecurity without it. The hype surrounding AI is based on both the quickening pace of natural language capability development and the current deficiency of capable and competent cybersecurity professionals. A quick ...
