December 2014

Vulnerability Management Solutions are Flawed
Many organizations are unknowingly at risk of a devastating security breach.
Why? A false sense of security and misplaced faith in highly touted continuous scanning and monitoring tools. Today’s Enterprise organizations are being misled with regard to their security risk exposure, and are in serious danger of becoming victims of security breach events. The vulnerability management (VM) solutions and products that are central to every Enterprise information security program, and which are essential in gauging network security information risk, contain a serious “hidden” flaw which is now beginning to come to light.

Gordon MacKay, Digital Defense, Inc. (DDI) Chief Technology Officer, has released the white paper, Vulnerability Management Solutions are Flawed, Leaving your Enterprise at High Risk, that shows how the lack of proper advanced network endpoint correlation technology (reconciliation) may generate an inaccurate view of the organization’s security posture and create the opportunity for a devastating breach. Read Report

HAS MICROSOFT INTRODUCED A HOLE IN YOUR PATCHING PROGRAM?

Mark Bell, Executive Vice President, Operations for Digital Defense, shares his insight into inconsistencies discovered in recent Microsoft patch releases and the impact it could have on the security of your organization.Read More

October 2014

Digital Defense Named a “Leader” in Gartner’s Security Awareness Computer-Based Training Magic Quadrant
San Antonio, TX – October 20, 2014 – Digital Defense, Inc. today announced that it has been named as a “Leader” for its SecurED^® solution in Gartner’s recent research report, “Magic Quadrant for Security Awareness Computer-Based Training Vendors.”¹ Gartner evaluated computer-based security training vendors and solutions using a proprietary scoring model based on their ability to execute, as well as the completeness of their vision.

Digital Defense Earns Center for Internet Security Certification
San Antonio, TX – October 16, 2014 – Digital Defense, Inc. today announced that its Frontline 6.0 platform has received security software certification from the Center for Internet Security. Certification from CIS verifies that Frontline 6.0’s vulnerability management capabilities meet industry-accepted, internationally recognized secure configuration standards.

DDI Named Cool Appliance of the month by MBX Systems
MBX Systems, one of the fastest growing manufacturers of servicer appliances and embedded systems just named Digital Defense, Inc. (DDI) as Cool Appliance of the Month. Read More.

Digital Defense Supports National Cyber Security Awareness Month
Free Resource Released to Help Organizations Bolster Security
The Dirty Dozen- Information Security Mistakes You Don’t Want to Make
San Antonio, TX – October 01, 2014 – Recognizing the importance of information security and the need for increased awareness of security threats, Digital Defense, Inc. (DDI), a leading provider of managed security risk assessments, proudly supports October 2014 as National Cyber Security Awareness Month. For this observance and to help businesses build a culture of security, DDI is kicking off their awareness campaign by offering a free guide detailing the “Dirty Dozen,” pairing common information security mistakes with actionable recommendations for addressing them to bolster organizational security. Covering issues such as garnering executive support and incorrectly equating compliance with security, the guide aims to help curtail the potential financial and reputational impact associated with a security breach.

September 2014

Test Your Risk for the Shellshock Vulnerability
Are you vulnerable to a breach due to the “Shellshock" bug?

The “Shellshock" Bash vulnerability is a serious information security issue . It is a powerful attack affecting businesses of all sizes and industries.  Digital Defense, Inc. (DDI) has teams of vulnerability researchers and personal security analysts addressing concerns, mitigating risk and answering commonly asked questions.

DDI applauds UTSA for being named a National Center of Academic Excellence in Information Assurance/Cyber Defense.

The University of Texas at San Antonio (UTSA) is one of only 44 institutions in the nation designated as a National Center of Academic Excellence (CAE) in Information Assurance (IA)/Cyber Defense (CD) by the National Security Agency (NSA) and Department of Homeland Security (DHS). Read More

August 2014

Phishing Tops Lists of Concerns

Digital Defense, Inc., (DDI), a leading provider of managed information security risk assessments, announced the publication of the 2014 Study of the Legal Industry’s Information Security Assessment Practices. Published for the consecutive second year, the report will also be available at the International Legal Technology Association’s (ILTA) 37th Annual Educational Conference on Aug. 17–21. Read More

Digital Defense Publishes Legal Industry Information Security Benchmarking Report

Phishing/Vishing tops list of highly ranked concerns

San Antonio, TX – August 13, 2014 – Digital Defense, Inc., (DDI), a leading provider of managed information security risk assessments, announced the publication of the 2014 Study of the Legal Industry’s Information Security Assessment Practices. Published for the consecutive second year, the report will also be available at theInternational Legal Technology Association’s (ILTA) 37th Annual Educational Conference on Aug. 17–21.

Ponemon Institute Releases Study on Security Risk Technology

Digital Defense Vulnerability Data Refinery Capabilities Deemed Positive

Digital Defense, Inc. (DDI), a global security risk assessment provider, has released the final report of a Ponemon Institute commissioned study, Vulnerability Data Refinery Validation Study, that evaluates the market receptiveness to the company’s new security technology.  The report follows the June release of the study’s preliminary findings which were disseminated during the Gartner Security & Risk Management Summit and includes deeper context surrounding the findings.

Google to give more weight to encrypted websites in search results

Digital Defense, Inc.'s EVP/Chief Information Officer, Tom DeSot, shares his insight into the Google announcement that it will give higher priority to websites that use encrypted connections to keep their online visitors secure. Read More

July 2014

DDI Releases the Top Five Critical Issues Affecting Servers

With the release of the critical OpenSSL Heartbleed flaw and the impact it had on organizations and industries of all sizes, DDI’s Vulnerability Research Team is providing an examination of commonly seen critical security issues that could post a threat by affecting servers and damaging the overall security posture of the targeted organization. Download the Report Today

DDI's Tom DeSot Shares Thoughts on Hacking

Three Rivers Chamber of Commerce website hacked and defaced by someone purporting to represent ‘Anonymous.’ Authorities doubt the hackers are who they claim to be. Read more:

Theories on how Ground Control was hacked

Tom DeSot, Chief Information Officer of Digital Defense, Inc., shares his insight with the Houston Chronicle regarding theories on how Ground Control was hacked. Read More

DDI's Tom DeSot Interviewed by Credit Union Times

...San Antonio security company Digital Defense. DeSot referred to unauthorized entry into credit unions and banks on assignments where Digital Defense was contracted to attempt to get in. The hiring organization... Read Full Article

June 2014

Digital Defense Unveils New Security Technology at Gartner Security & Risk Management Summit

Vulnerability Data Refinery perceived as positive in Ponemon Research study

San Antonio, TX – Monday, June 23, 2014 – Digital Defense, Inc. (DDI), a global security risk assessment provider, is exhibiting Vulnerability Data Refinery (VDR) capabilities at the Gartner Security & Risk Management Summit this week.   DDI’s new VDR offering refines data from a variety of assessment sources producing higher quality guidance to remediation teams to more efficiently address findings.  Through integration via application programming interfaces, the VDR also provides more intelligent guidance to enforcement technologies to protect information assets on a more proactive basis.

Mike Cotton, DDI Vice President of Research and Development weighs in on P.F. Chang Security Breach

P.F. Chang's China Bistro confirmed a credit card data breach impacting all 211 of its restaurants and indicated that digital forensics investigators are still determining the scope of the attack. Read the full story.

IDC Security Market Data Reflects Economic Impact of Cybercrime

A study that estimated the global cost of cybercrime at $400 billion also revealed information security market trend data from research firm IDC showing a burgeoning market for products associated with identifying threats, data protection and incident response activities. Read Full Article.

May 2014

DDI Security Analyst Wins Hacking Competition

San Antonio, Texas – May 28, 2014 – Digital Defense, Inc. (DDI) Security Analyst Sam Shapiro took home top honors from the “Hackenger Hunt” competition held at the recent BSides SATX 2014 conference in San Antonio. The annual information security event provides a venue for information security professionals to both present and participate in an intimate atmosphere that encourages collaboration.

Digital Defense, Inc. Names New Head of Research and Development

San Antonio, TX – May 21, 2014 – Digital Defense, Inc. (DDI) today announced that it has elevated Chief Security Architect, Mike Cotton, to a new role as Vice President of Research and Development.

Digital Defense Helps Broadway Bank Strengthen Data Defenses

To a financial institution that holds nearly $3 billion dollars in assets, information security is more than just a goal. It’s a promise to every one of its customers that their funds and information are protected from those with malicious intent. When Broadway Bank sought to take a step further in fortifying their information security efforts, they turned to Digital Defense, Inc. (DDI).

April 2014

Test Your Risk for the "Heartbleed" Bug

Are you Vulnerable to a breach due to the “Heartbleed” Bug?

The “Heartbleed” Bug is a serious information security issue sweeping the globe. It is a powerful attack affecting businesses of all sizes and industries.  Digital Defense, Inc. (DDI) has teams of vulnerability researchers and personal security analysts addressing concerns, mitigating risk and answering commonly asked questions.

February 2014

Data Center Security Challenged by Configuration Issues

SAN FRANCISCO - Not all security problems are caused by zero-day vulnerabilities; some are created accidentally.

Data centers are not immune to this reality. According to Michael Cotton, chief security architect at Digital Defense, common configuration and network architecture issues not normally viewed as problematic could be abused by a skilled attacker to wreak havoc. He presented his findings on the issue at the RSA conference this week in San Francisco. Read the Full Article on www.SecurityWeek.com

Ponemon Institute Appoints Digital Defense, Inc. CTO Gordon MacKay as Distinguished Fellow

Digital Defense, Inc. (DDI), today announced that Executive Vice President and Chief Technology Officer (CTO), Gordon MacKay, has been named a Distinguished Fellow by the Ponemon Institute.

The Ponemon Institute, an independent research center dedicated to privacy, data protection and information security policy, selects all distinguished Fellow candidates based on nominations from top privacy and security strategists around the world. Together with the Ponemon Institute, Fellows contribute their experience, thinking and best practices to educate organizations and advance data protection initiatives.

Hijacking the Cloud: Systematic Risk in Datacenter Management Networks.

Michael Cotton, DDI Chief Security Architect, to Present at RSA

With the recent rash of high-profile data breaches, many companies are looking to patch  even the most obscure data security holes, ripe for exploitation. Under great scrutiny, we  ask the question "Is it possible that a common vulnerability existing in large data centers is flying under the radar?" According to Cotton, it is not only possible, it is happening. Cotton will share his expertise on how organizations can fight back and mitigate risks.

January 2014

Mark Bell, Executive Vice President of Operations at Digital Defense, Reveals Theories Regarding Target Attack

Mark Bell, Executive Vice President of Operations at Digital Defense shares his theories regarding the Target security breach with Softedia. Read the Full Article Here.