Gartner Blog Network

Tag: 'lockdown' Blog Posts

from the Gartner Blog Network

Virtualization, Containers and Other Sandboxing Techniques Should be on Your Radar Screen

by Neil Macdonald  |  March 16, 2013

  The idea of “sandboxing” potentially malicious content and applications isn’t new but interest in this type of approach on Windows desktops is growing. Further, the increasing variety of virtualization...

Read more »

This Just In: Signature-based Protection Ineffective Against Targeted Attacks

by Neil Macdonald  |  January 31, 2013

  Seriously, is anyone surprised? I’m sure you’ve seen the news about Chinese infiltration at the New York Times: According to the article: Over the course of three months,...

Read more »

Does Protecting Desktops Require a Different Vendor/Product than Protecting Servers?

by Neil Macdonald  |  September 29, 2011

I’ve made it a point over the past 6 months to ask clients if they are combining their endpoint protection platform contracts across desktops, laptops and servers. In most cases...

Read more »

The Single Most Important Way to Improve Endpoint Security

by Neil Macdonald  |  August 23, 2011

Run more of your Windows users without administrator rights. I’ve talked about this several times before – including here, here and here. While it may not be feasible to remove...

Read more »

Removing Administrator Rights for Windows Users is not “Lockdown”

by Neil Macdonald  |  May 4, 2011

In discussions with clients, I still run into some confusion on whether or not removal of administrator rights constitutes “lockdown”. Perhaps this was the case a few years ago with...

Read more »

Two Lessons for Information Security from the iPhone and iPad

by Neil Macdonald  |  May 2, 2011

Rapid adoption rates, three hundred and fifty thousand apps, but not much malware. What gives? 1) The power of whitelisting. Call it what you may, but having Apple act as...

Read more »

Even With Windows 7, Privilege Management Tools May be Needed

by Neil Macdonald  |  April 8, 2011

One of the top recommendations I made to increase your security “bang for the buck” in 2011 was to increase the percentage of users that run without administrative access. For...

Read more »

Yes, Standard Users can Install Software

by Neil Macdonald  |  March 15, 2011

The conventional wisdom is that a user who is configured with “standard user” privileges (the least possible in Windows 7) cannot install software (or malware for that matter). This is...

Read more »

Improving Your 2011 Security Bang for the Buck Continued

by Neil Macdonald  |  January 6, 2011

In my previous post, I kicked off 2011 with a recommendation for improving your “security bang for the buck” or quick wins for information security in 2011 – increasing patching...

Read more »

159 Pages of Security Goodness… and More on Symantec/PGP/GuardianEdge

by Neil Macdonald  |  May 6, 2010

Three quick things: The Center for Internet Security recently published its hardening guidelines for Windows Server 2008. It's comprehensive – 159 pages of explicit guidance for the correct configuration of...

Read more »