From the Core to the Cloud, See it All

Simplify, secure and scale your hybrid cloud infrastructure to accelerate digital innovation.

LEARN MORE

CLOUD VISIBILITY

GET A DEMO

DATACENTER VISIBILITY

GET A DEMO

NETWORK SECURITY

GET A DEMO

INDUSTRY

A Thriving Partner Ecosystem

Gigamon reseller and integration partners design, implement and optimize best-of-breed and validated joint solutions.

FIND A PARTNER

NOT A PARTNER?

ALREADY A PARTNER?

Proven Support and Services

Our global support team is committed to creating experiences of unmatched quality, scalability and efficiency.

MY GIGAMON

OVERVIEW

GET SUPPORT

COMMUNITY

Customer Success

Our global customers are empowered to transform their businesses and innovate with the power of complete network visibility and analytics.

CUSTOMERS

ANU

Australian National University

Fosters a safer campus community with Gigamon.

cegedim

Cegedim.cloud

Improves cloud infrastructure and visibility.

 

department of defense

Department of Defense

Confidently feeds different tool sets in the physical and the virtual world.

Resource Library

Your one-stop hub to explore content resources to stay current on the latest in network visibility and analytics.

RESOURCES

Network Tool Efficiency Evaluation

Efficient Tools Are Happy Tools

Answer a few questions and get real-time insights.

def-guide

Achieve Hybrid Cloud Observability

Strengthen visibility and security.

ebook

Deep Observability eBook

Supercharge your tools with real-time, actionable, packet-level intelligence.

WHY GIGAMON

We are the first company to deliver a unified visibility and analytics architecture across your hybrid infrastructure to simplify, secure and scale IT operations.

LEARN MORE

IN THE NEWS

COMPANY INFORMATION

Deep Observability

Supercharge Your Security and Observability Tools

Without deep observability, you're exposed.

Great Place to work

Join the Team

Become a part of the OneGigamon team. Search for your next opportunity.

SHARE
Security / January 9, 2018

An Open Letter to the New Year on My Five Cybersecurity Resolutions

Erin O'Malley, Senior Solutions Marketing Manager | Gigamon Erin O'Malley  

Dear, New Year,

My, how time flies. I can’t believe you’re already here, spurring me to make resolutions – presuming I have room to improve. 

By now, I think you know me well enough to guess the things I won’t be doing. Like signing up for a new gym membership or promising to eat less cheese. What I am willing to promise, however, is to be more diligent about my personal cybersecurity, starting with five easy tasks that can help me – or anyone – improve online safety. 

resolutions

1. Turn on two-factor authentication for email. 

Consider this a starting point. If there’s one thing you do this year – nay, today – this is it. 

Email is the skeleton key to your digital life. If you aren’t using two-factor authentication, just give up, stop trying to be secure. You don’t stand a chance. In fact, you may as well take photos of your passwords and put them up on the internet.

The reason is simple. Think about if you forget your bank password. What happens? You have a reset link sent to your email address. If a hacker can easily access your email, he can also access all your other accounts and reset their passwords. 

Two-factor authentication adds a massive layer of protection, and companies like Google and Microsoft have made it quite easy to set up. You don’t need to remember a pesky, complex password – average will do if multi-factor is behind it – and you only need to re-enter your code every 30 days. 

2. Implement a password manager. 

If you want to be even safer and avoid having two-step verification codes sent via SMS, you can choose to use Google Authenticator to receive a randomly-generated code from a password management program like 1Password. With these types of programs, you receive a one-time password (OTP) that is good for a single login session and cannot be sniffed out for use, say, in a replay attack. 

The password manager lives in your browser and makes it easy for you to maintain lots of different, unique passwords. When you want to access an online account, you simply click on your password manager and it logs you in. You only need to remember the password manager’s master password – or better, pass phrase. While we often think of a password as 8 to 15 characters with mixed case, a pass phrase –  like “Ich übe Geige mit meinem Hund” – is much harder for computers to crack. 

3. Update your wireless router firmware. 

Stick a reminder on your calendar and make checking for the most up-to-date version of firmware part a quarterly routine. In doing so, you can help to ensure that you’re getting fixes to detected security vulnerabilities and optimizing performance. Just check your router manufacturer’s website for specific download instructions – usually within support pages – and get ‘er done. 

4. Create VLANs for your IoT devices. 

Creating VLANs for internet of things (IoT) devices is a bit more esoteric than getting two-factor authentication set up for your email account, but it’s a nice and easy enough thing to do. In a nutshell, it’s about creating separate guest networks. For example, if you may have 20 clients or IP addresses – hooked up to your network. These could be iPhones, Alexa, Sonos, Chromecast, iPads, wireless access points, you name it. The idea is to set up a separate VLAN – or IoT guest network – for items, like your television or Alexa, that you don’t always have control over or necessarily know what they’re doing. 

5. Deactivate all old devices still connected to your account – and check to see what can access your account. 

Yup. Deactivate all old devices. Like with an iPhone, for example. Apple has this notion of trusted devices through which you can access your account. When you give away, sell or lose a phone, you need to be sure to remove it from your trusted devices so that no one can access your account. 

Next, it’s a good idea to periodically review what applications have access to your account and remove those you don’t need. Twitter, Facebook and Google, for example, all have an option to allow other applications to request access to your account. If you use Gmail, you can check permissions here

It’s also good to make sure the email addresses you have set up for account recovery are correct and to check that your account isn’t forwarding copies of your email to unauthorized places. It’s an old trick, but one that people can tend to forget. In Gmail, go to settings and check forwarding and POP/IMAP.

While these are all simple preventative tasks, I’d be curious to know how many people don’t do them – perhaps because they aren’t aware that they should. But just like regular dental checkups for personal health, these should be baked into your cybersecurity routine. Once implemented and practiced, they can become second nature. 

What do you think, 2018? Can you stop bugging me about the gym now?

Yours truly,

Erin

Originally posted on SecurityWeek.

 

RELATED CONTENT

REPORT
2022 Ransomware Defense Report
GET YOUR COPY  Go
WEBINAR
Unlock Ultimate Hybrid Cloud Security: Join Nutanix for Insights
WATCH ON DEMAND  Go
REPORT
2022 TLS Trends Data
DOWNLOAD REPORT  Go
WEBPAGE
Suddenly, Ransomware Has Nowhere to Hide
TAKE A LOOK  Go
COMPANY
GET HELP
PRODUCTS & SOLUTIONS
POPULAR LINKS
  • ©Gigamon 2022
Back to top