Cybersecurity is the state of being protected in cyberspace, including measures taken to protect computer systems against unauthorized access or attack. It refers to the policies, processes, and technologies to protect networks, devices, and data from cybercrime and data breaches. Today, at an enterprise level, cybersecurity is typically carried out through a security program, including continual risk assessment to see where an organization could be vulnerable.
URL filtering is a way to prevent access to certain web content through an organization’s network or endpoints. This generally includes blocking malicious websites to protect users and endpoints from cyberattacks. Organizations can also use URL filtering to restrict specific URLs or URL categories that tend to use high bandwidth or hamper productivity, such as social media and streaming video.
A virtual private network (VPN) is an encrypted tunnel that allows a client to establish an internet connection to a server without coming into contact with internet traffic. Through this VPN connection, a user’s IP address is hidden, offering online privacy as they access the internet or corporate resources—even on public Wi-Fi networks or mobile hotspots and on public browsers such as Chrome or Firefox.
Endpoint detection and response (EDR) is designed to protect endpoint devices from cyberthreats like ransomware, fileless malware, and more. The most effective EDR solutions continuously monitor and detect suspicious activities in real time while providing investigation, threat hunting, triage, and remediation capabilities.
Data security is a term for all the security solutions that help organizations protect their sensitive data from security risks such as data breaches, phishing, ransomware attacks, and insider threats. Data security solutions also draw on compliance frameworks such as HIPAA and GDPR to support data privacy and simplify audits.
The SolarWinds cyberattack was a software supply chain attack involving the SolarWinds Orion platform, wherein a Russian nation-state adversary gained access to SolarWinds systems and deployed trojanized updates to the Orion software. This, in turn, allowed threat actors to install stealthy malware on SolarWinds customers’ networks. The SolarWinds hack was disclosed by multiple cybersecurity companies in conjunction with the US Cybersecurity and Infrastructure Security Agency (CISA) in December 2020.
A shared responsibility model is a cloud security and risk framework that delineates which cybersecurity processes and responsibilities lie with a cloud service provider (CSP) and which lie with the customer. With more IT architectures moving to the cloud, a shared responsibility model promotes tighter security and establishes accountability as it relates to the security of the cloud.