What You Need to Know About the Log4j Zero-Day Vulnerability-post_thumbnail

What You Need to Know About the Log4j Zero-Day Vulnerability

  • Industry ,
  • News
by Walker Banerd - December 15, 2021

Just as people were starting to turn their attention to the upcoming holidays, the cybersecurity world received an unwelcome end-of-year surprise over the weekend: the critical RCE vulnerability CVE-2021-44228—now being referred to as Log4Shell. The vulnerability affects Apache Log4j, a very widely ...

Read More
What is Hybrid Cloud Security?-post_thumbnail

What is Hybrid Cloud Security?

  • Industry ,
  • SOAR
by Walker Banerd - March 27, 2020

Hybrid Cloud Security describes the unique process of applying cybersecurity tactics and methods to environments that are split across multiple types of cloud resources. Typically, hybrid cloud environments include are a private cloud, which a company generally operates and hosts on-premise, and a p...

Read More
2019 SANS Automation & Integration Survey: 5 Misconceptions About Security Automation-post_thumbnail

2019 SANS Automation & Integration Survey: 5 Misconceptions About Security Automation

  • Industry ,
  • SOAR
by Walker Banerd - May 10, 2019

D3 recently sponsored the 2019 SANS Security Automation & SOC Integration Survey. The detailed survey compiled responses from 218 professionals involved in cybersecurity practices. The survey is an excellent resource that provides insight into how security automation is perceived, how organizati...

Read More
SOAR Trends and Questions from RSAC 2019-post_thumbnail

SOAR Trends and Questions from RSAC 2019

  • Events ,
  • Incident Response
  • Industry
  • SOAR
by Alex MacLachlan - March 13, 2019

Just like at RSA Conference 2018, and 2017, it was great to connect with clients and partners at our booth and on the show floor this year, 2019. Some of the main differences this year were the sheer volume of clients we saw—which makes sense, since we closed deals with more than 50 Fortune 500 [&he...

Read More
5 Trend Reports Every SOC Should Track-post_thumbnail

5 Trend Reports Every SOC Should Track

  • Incident Response ,
  • Industry
  • SOAR
by Walker Banerd - January 14, 2019

By tracking specific metrics over time, trend reporting can establish a historical view of threats encountered, quantify SOC performance, and support smarter, more agile, and more data-driven incident response. Analyzing these reports can act as an early warning system to help identify threats and b...

Read More
How Much Does a Data Breach Really Cost You?-post_thumbnail

How Much Does a Data Breach Really Cost You?

  • Compliance ,
  • Data Breach
  • Incident Response
  • Industry
  • SOAR
by Denis Barnett - June 25, 2018

“If you protect your paper clips and diamonds with equal vigor, you will soon have more paper clips and fewer diamonds.” – Dean Rusk, former US Secretary of State   Do you know how much your organization stands to lose if it were to suffer a data breach? Even the legendary Warren Buffet h...

Read More
Why Modern Manufacturers Need Cyber Incident Response-post_thumbnail

Why Modern Manufacturers Need Cyber Incident Response

  • Forensics ,
  • Incident Response
  • Industry
  • SOAR
by Walker Banerd - June 12, 2018

Despite the constant news about cyber threats and the growth in major breaches, many companies are overly focused on prevention, while overlooking incident response and handling practices. With today’s environment of an increasing attack surface, numerous security tools, overworked analysts, and a n...

Read More
Data Breach of the Month: Rail Europe North America-post_thumbnail

Data Breach of the Month: Rail Europe North America

  • Data Breach ,
  • Industry
by Walker Banerd - June 11, 2018

Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...

Read More
Why Companies Need to Centralize Security Operations: Part 2-post_thumbnail

Why Companies Need to Centralize Security Operations: Part 2

  • Compliance ,
  • Data Breach
  • Forensics
  • Incident Response
  • Industry
  • SOAR
by Walker Banerd - May 10, 2018

In Part 1, we looked at the status quo of security systems as they are used in organizations, the reality that automation should be a baseline rather than a novelty in today’s security landscape, and we explored why centralization is essential. In Part 2 below, let’s look at how and why organization...

Read More
Why Companies Need to Centralize Security Operations: Part 1-post_thumbnail

Why Companies Need to Centralize Security Operations: Part 1

  • Compliance ,
  • Data Breach
  • Incident Response
  • Industry
  • SOAR
by Walker Banerd - May 2, 2018

Enterprises need a centralized security solution: a system that connects the infrastructure to allow seamless bidirectional data flow between each system and the enterprise security control center. Despite digital applications permeating nearly every aspect of our lives, many enterprises’ daily proc...

Read More
Why Mass Transit Could Be the Next Big Cyber Target — SecurityWeek-post_thumbnail

Why Mass Transit Could Be the Next Big Cyber Target — SecurityWeek

  • Data Breach ,
  • Incident Response
  • Industry
by Walker Banerd - April 17, 2018

A new article by Stan Engelbrecht, Director of D3’s Cyber Security Practice, is currently featured on SecurityWeek. Cyber attacks can cluster around certain industries for a period of time, once a particular method of attack has proven to be successful. Examples in recent years include ransomware in...

Read More
Data Breach of the Month: City of Atlanta-post_thumbnail

Data Breach of the Month: City of Atlanta

  • Data Breach ,
  • Industry
by Walker Banerd - April 4, 2018

Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...

Read More
Winning Best Security Automation Platform Was Just the Beginning-post_thumbnail

Winning Best Security Automation Platform Was Just the Beginning

  • Incident Response ,
  • Industry
  • SOAR
by Alex MacLachlan - March 8, 2018

While it might not be as glamorous as the Oscars, the cybersecurity industry has its own awards season, culminating in the red-carpet SC Awards during the RSA conference in April. So far in 2018, D3 Security has had a remarkable awards season, with our Incident Response Automation Platform earning t...

Read More
Data Breach of the Month: Decatur County General Hospital-post_thumbnail

Data Breach of the Month: Decatur County General Hospital

  • Data Breach ,
  • Industry
by Walker Banerd - March 8, 2018

Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...

Read More
Managing Financial Crime with D3-post_thumbnail

Managing Financial Crime with D3

  • Forensics ,
  • Incident Response
  • Industry
by Walker Banerd - December 14, 2017

The Challenge: Dealing with crime is nothing new for financial institutions. The lucrative target they present has always inspired innovation and persistence among thieves, fraudsters, and other criminals, but the digital era is increasing the potential attack surface to a previously unthinkable deg...

Read More
Key Findings from Five Major Cybersecurity Reports-post_thumbnail

Key Findings from Five Major Cybersecurity Reports

  • Compliance ,
  • Data Breach
  • Incident Response
  • Industry
  • SOAR
by Walker Banerd - November 29, 2017

At D3, we are always evolving our products to meet the needs of our customers and stay on the forefront of cyber incident response technology. This requires us to always be informed on the latest industry research, in order to understand the present and future of incident response, and where our sol...

Read More
New Report Details the Fight Against Ransomware-post_thumbnail

New Report Details the Fight Against Ransomware

  • Incident Response ,
  • Industry
  • SOAR
by Walker Banerd - October 5, 2017

The 2017 Ransomware Report, a comprehensive study produced in partnership with D3 Security, was published on September 26. The report compiles survey answers collected by Crowd Research Partners from over 500 cybersecurity professionals to create a complete picture of ransomware in 2017, including h...

Read More
D3 is the Most Popular Incident Management Software – ASIS Survey-post_thumbnail

D3 is the Most Popular Incident Management Software – ASIS Survey

  • Incident Response ,
  • Industry
  • Physical Security
by Alex MacLachlan - August 23, 2017

In ASIS International’s recently published Global Security Operations Communications Center (GSOCC) survey, almost half of respondents (41%) said they used D3 for incident management. The next most popular solution was used by 29%. This is an exciting result for us. ASIS is the leading professional ...

Read More
How to Avoid HIPAA’s Wall of Shame: Protecting Against Ransomware-post_thumbnail

How to Avoid HIPAA’s Wall of Shame: Protecting Against Ransomware

  • Compliance ,
  • Data Breach
  • Incident Response
  • Industry
by Alex MacLachlan - July 13, 2017

The healthcare industry is a lucrative target for cybercriminals. Healthcare organizations are often laggards in adopting cybersecurity and data management best practices, a vulnerability that criminals have been quick to exploit. In the first half of 2017, 149 breaches have compromised nearly 2.7 m...

Read More
How Vulnerable are Modern Cars to Hacking?-post_thumbnail

How Vulnerable are Modern Cars to Hacking?

  • Data Breach ,
  • Industry
by Walker Banerd - May 30, 2017

The most recent film in the Fast & Furious franchise contained a memorable set piece in which a hacker remotely takes control of hundreds of cars, sending them racing through the crowded streets of Manhattan, dropping out of multi-story parking garages, and colliding in massive pileups. This mig...

Read More
EU GDPR Data Breach Requirements: What You Need to Know-post_thumbnail

EU GDPR Data Breach Requirements: What You Need to Know

  • Compliance ,
  • Data Breach
  • Industry
by Stan Engelbrecht - May 19, 2017

On May 25, 2018, the General Data Protection Regulation (GDPR) will go into effect across the EU. The purpose of this regulation is to harmonize Europe’s regulatory environment by creating a ‘one-stop shop’ for data protection. The GDPR applies to European companies in all sectors, but also any busi...

Read More
How to Establish and Build Upon Clery Act Compliance-post_thumbnail

How to Establish and Build Upon Clery Act Compliance

  • Industry ,
  • Physical Security
by Walker Banerd - April 24, 2017

Since its introduction in 1990 following the brutal murder of Jeanne Clery, a freshman at Lehigh University in Pennsylvania, the Clery Act has posed reporting and compliance challenges to higher education institutions. Some of the common challenges include establishing the baseline reporting, and un...

Read More
Risks Affecting Point of Sale Terminals-post_thumbnail

Risks Affecting Point of Sale Terminals

  • Data Breach ,
  • Industry
by Walker Banerd - April 17, 2017

We recently published a briefing on the subject of securing ATM networks that includes a lot of information that will be valuable to banks, payment card companies, retailers, and any other organizations whose business involves ATMs. You can check out that document here. As a companion piece to the A...

Read More
Hacking Hollywood: Cyber Security Threats in the Entertainment Industry-post_thumbnail

Hacking Hollywood: Cyber Security Threats in the Entertainment Industry

  • Data Breach ,
  • Incident Response
  • Industry
by Walker Banerd - April 5, 2017

The reach and profile of entertainment companies make them an attractive target for a diverse group of adversaries, each with their own motivations and methods. Insiders, content pirates, hacktivists, and state-sponsored attackers—all of these threats pose a tangible risk to the financial, legal and...

Read More
Meeting NERC CIP Requirements with a Centralized IRP-post_thumbnail

Meeting NERC CIP Requirements with a Centralized IRP

  • Compliance ,
  • Forensics
  • Incident Response
  • Industry
  • Physical Security
by Walker Banerd - March 29, 2017

The Critical Infrastructure Protection (CIP) program administered by the North American Electric Reliability Corporation (NERC) holds Utilities to a broad set of security standards in order to minimize risk to the power grid across North America. NERC CIP standards are comprehensive—encompassing cyb...

Read More
Incident Response Trends in 2017-post_thumbnail

Incident Response Trends in 2017

  • Incident Response ,
  • Industry
  • SOAR
by Walker Banerd - March 20, 2017

Analysts and security professionals agree that 2016 brought cyber security unprecedented levels of attention, with vivid examples of cyber attacks in the news, and a seemingly constant string of hacks, ransomware, and other malicious incidents. The ubiquity of cyber incidents has led to a major shif...

Read More
Stories From The Front Lines: The Silo Effect vs. The Single Source of Truth-post_thumbnail

Stories From The Front Lines: The Silo Effect vs. The Single Source of Truth

  • Compliance ,
  • Data Breach
  • Forensics
  • Incident Response
  • Industry
by Alex MacLachlan - March 16, 2017

Preface: This is the last installment of our three-part blog series called “Stories from the Front Lines”.  This installment is slightly different, in that it features three different archetypical characters from different departments.  Each of the problems they face is different, but keep reading t...

Read More
How to Comply With 23 NYCRR 500-post_thumbnail

How to Comply With 23 NYCRR 500

  • Compliance ,
  • Data Breach
  • Incident Response
  • Industry
by Walker Banerd - March 13, 2017

In February of 2017, the New York State Department of Financial Services (NY DFS) released the updated version of their Cybersecurity Requirements for Financial Services Companies (23 NYCRR 500). The new legislation, which takes effect on March 1, reflects a growing concern in the NY DFS regarding t...

Read More
How Root Cause Analysis Can Help Your Hospital Avoid HIPAA Fines-post_thumbnail

How Root Cause Analysis Can Help Your Hospital Avoid HIPAA Fines

  • Compliance ,
  • Data Breach
  • Forensics
  • Incident Response
  • Industry
by Alex MacLachlan - March 10, 2017

The Health Insurance Portability and Accountability Act or HIPAA provides data privacy and security provisions for safeguarding medical information. HIPAA regulations are enforced by the Department of Health and Human Service’s Office for Civil Rights (OCR). This office carries out its mandate by in...

Read More
5 Incident Response Takeaways from the Yahoo Breach Fallout-post_thumbnail

5 Incident Response Takeaways from the Yahoo Breach Fallout

  • Compliance ,
  • Data Breach
  • Incident Response
  • Industry
by Walker Banerd - March 10, 2017

The ongoing fallout from the 2014 data breach at Yahoo has personally cost CEO Marissa Mayer upwards of $14 million. On March 1, Mayer announced on her blog that she had agreed to forego her annual bonus and equity grant, due to the breach happening on her watch as CEO. The bonus is worth $2 [&helli...

Read More
Cyber Security for the Manufacturing Industry-post_thumbnail

Cyber Security for the Manufacturing Industry

  • Incident Response ,
  • Industry
by Walker Banerd - February 26, 2017

According to the 2016 Cyber Security Intelligence Index performed by IBM’s X Force Research, manufacturing has moved up in the ranks to become the third most hacked industry second only to health care and information and communications. Businesses of these types include those that produce text...

Read More
Stories From The Front Lines: Part One-post_thumbnail

Stories From The Front Lines: Part One

  • Compliance ,
  • Forensics
  • Incident Response
  • Industry
by Alex MacLachlan - February 24, 2017

Preface: This is the first installment of a 3-part blog series called “Stories from the Front Lines”.  Each installment will feature a different user story, inspired by real D3’s projects and interactions with customers.  Each will illustrate a common problem, and explore an effective solution with ...

Read More
7 Reasons why Enterprises Need a NIST-Compliant Cybersecurity IRP-post_thumbnail

7 Reasons why Enterprises Need a NIST-Compliant Cybersecurity IRP

  • Compliance ,
  • Incident Response
  • Industry
by Alex MacLachlan - October 27, 2016

As cyber attacks inflict increasing damage on organizations of all kinds across every sector of the economy, it has become critical for cybersecurity programs to evolve. Gone are the days of rudimentary intrusion detection systems and retroactive damage control following a security breach. To be tru...

Read More
Protecting Your Critical Infrastructure-post_thumbnail

Protecting Your Critical Infrastructure

  • Compliance ,
  • Incident Response
  • Industry
  • Physical Security
by Alex MacLachlan - October 11, 2016

The Patriot Act was passed in 2001 in response to terrorist attacks on American soil. However, we don’t usually think about how it helped define cybersecurity and how it continues to inform the framework for defining critical infrastructures and how we protect them in the US. With a growing number o...

Read More
Hospital Cyber Security: Risk Reduction in 5 Easy Steps-post_thumbnail

Hospital Cyber Security: Risk Reduction in 5 Easy Steps

  • Compliance ,
  • Data Breach
  • Incident Response
  • Industry
by Alex MacLachlan - December 18, 2015

Securing private health information and responding to security breaches have presented incredible challenges to hospitals whose healthcare records yield 10 to 20 times more value on the black market than credit card information. Moreover, the proliferation of BYOD, social media and phishing scams, m...

Read More
Incident Management Software Drive Cost Reductions at Utilities-post_thumbnail

Incident Management Software Drive Cost Reductions at Utilities

  • Compliance ,
  • Incident Response
  • Industry
by Alex MacLachlan - June 8, 2015

With the unique ability to categorize different energy diversion types and perform theft analytics, D3 Security’s Incident Reporting and Case Management products give utilities and their security teams an incisive view at the root cause of energy diversion losses. Theft Analytics Drive Energy ...

Read More

Get Started with D3 Security

One platform to stop alert overwhelm. Transform how your security team works, by focusing its resources on real threats.
Get Started