Cyber resilience

NIS2, the European Union’s new directive, imposes more stringent requirements on the security of information systems; specifically demands heightened attention towards Identity and Access Management (IAM) frameworks. The directive recognizes that effective IAM frameworks are essential not only for ensuring secure access to digital resources but also for maintaining the integrity and confidentiality of network […]

Every piece of information has value for somebody. Credit card data, personal data, business information, legal documents…   Cybercriminals still compose complicated attacks today but there is one thing in common in all of them: they all do intelligence gathering which includes not only the technological circumstances but the organization too. To succeed they have

As Salesforce’s Chief Trust Officer, Jim Alkove put it in the World Economic Forum:  “Cyber resilience starts with nailing the cyber security basics. At Salesforce, we call it ´doing the common uncommonly well.´… Business resources are often still allocated to defensive cyber security, which is focused on protecting the confidentiality and integrity of data. But

We are proud to announce that XS MATRIX is listed in the latest 2020 release of ECSO CYBERSECURITY MARKET RADAR which collects significant vendors on the European cybersecurity market and deployment-ready cybersecurity solutions. With more than 100 European cybersecurity companies the 3rd ECSO Cybersecurity Market Radar release presents rich European cybersecurity industry landscape.  Our solutions

Nowadays, employees can start working usefully at different organizations once they have got the necessary access rights in the system. There are several ways to obtain these: 1. The simplest, and for the smaller companies the most common, is that the manager calls/writes an email to their IT staff and asks them to create a new user,

Continuous growth of unnecessary access rights, called ‘privilege creep’, have both technical and human causes. The technical reason is that in different software products, entitlements can usually be set very finely and in many ways, but in order to manage them easily and efficiently, they aggregate them into different groups. This means that the access objects, belonged to some software functions and

Assigning unnecessary permissions to users puts both the organization and the user at risk. These cases can be so complex that I will demonstrate them in a series of articles later, for now, I present only the most common dangers. It can be dangerous for an organization that different kind of misuse can happen on behalf of a user: