Resources and insights
The latest industry news, interviews, technologies, and resources.
Now Available — Access Server 2.11.0 Update
The latest release of OpenVPN Access Server supports identity federation with SAML (Security Assertion Markup Language). You can now use a third-party SAML IdP to 1) establish SSO access to the client portal, and 2) authenticate prior to VPN connection.
3 minute read
Why VPNs and Zero Trust Network Access Are Not Mutually Exclusive
There are some voices within the IT and cybersecurity communities that insist VPNs are outdated, insecure, and insufficient for the network security demands facing today’s businesses. They instead advocate for zero trust network access (ZTNA) as the silver bullet for every IT and cybersecurity professional’s secure remote access woes. Theirs is a
7 minute read
Capital One Breach Shines Light on Cloud Security Risks, Human Error, and Insider Threats
On June 17, 2022, a former Amazon Web Services (AWS) employee was convicted of seven federal crimes related to her hacking of Capital One. This massive cloud data breach and crypto-mining incident stands out not just for the number of records breached but also for the nature of the attack. Misconfiguration in cloud environments is on the rise —
6 minute read
Cybersecurity for HIPAA Compliance
OpenVPN Cloud is now CloudConnexa® — learn more here.
14 minute read
SOX Cybersecurity Compliance
Implementing Security Controls for Sarbanes-Oxley Compliance Requirements The Sarbanes-Oxley Act (SOX) is a federal act passed in 2002 following financial scandals at Enron Corp., Tyco International, and WorldCom. The fallout from these events led Congress to strengthen disclosure and auditing requirements for public companies to restore investor
8 minute read
What is LDAP?
The Directory Access Protocol (DAP) is a protocol for accessing information in a directory service based on the X.500 recommendations. The Lightweight Directory Access Protocol (LDAP), as the name implies, is a lightweight, vendor-neutral version of DAP.
6 minute read
Why Faster Ransomware Means Defenders Must Shift Left on the Cyber Kill Chain
We all know ransomware is among the top threats facing today’s organizations. Whether you’re a provider of critical national infrastructure or a regular SMB, there’s increasingly nowhere to hide. The advent of ransomware-as-a-service and the affiliate model has led to an explosion in the number of threat groups out there successfully monetizing
5 minute read
The Lapsus$ Group: Who They Are and How to Protect Your Business
Staying one step ahead of cybercriminals takes extensive effort, especially when the targets seem to be constantly moving. There are new and persistent threats coming onto the scene all the time, some more alarming and chaotic than others. Recent hacks by a newer group called Lapsus$ are making waves in the infosec and business communities. Unlike
6 minute read
Why Zero Trust Access Should Be On Every CISO's Roadmap
Secure Access Service Edge (SASE) – defined by Gartner – is a security framework prescribing the convergence of security and network connectivity technologies into a single cloud-delivered platform to enable secure and fast cloud transformation. With SASE, enterprises can secure their resources and simplify the accessibility that users require
5 minute read
Top Retail Cybersecurity Challenges
E-commerce lets retailers use customer data and segmentation to deliver unique customer experiences. That’s why the industry eagerly pursued digital transformation. Unfortunately, that customer data also creates new vulnerabilities that weren’t part of traditional brick-and-mortar retail.
6 minute read