Cybersecurity Failures and the Cost of Negligence – The Case of Marks & Spencer
Cybersecurity Failures and the Cost of Negligence – The Case of Marks & Spencer My Perspective In the current cyber threat landscape, complacency can be devastating. Marks & Spencer (M&S), one of the UK’s most prominent retail giants, recently fell victim to a devastating cyberattack, exposing glaring weaknesses in their cybersecurity framework. The attack, which began as early as February, exploited human error through social engineering. Hackers convinced M&S’s IT helpdesk to reset a password, giving them access to the network. This initial lapse spiraled into a full-blown crisis when attackers moved laterally through the system, ultimately deploying ransomware to encrypt virtual machines in April. The consequences for M&S are staggering: more than half a billion pounds wiped off its market value, suppliers left in limbo, customers locked out of the online store, and significant financial penalties looming due to GDPR violations. Personal data including names, email addresses, and online order history were exposed—proof that inadequate security measures can have far-reaching consequences. As an IT security expert, I must point out that such a breach could have been mitigated with the right cybersecurity tools. BlackFog’s Anti Data Exfiltration (ADX) technology would have detected the unusual data flow patterns, stopping the attack in its tracks. Bluedog’s Managed Detection and Response (MDR) services, with 24/7 monitoring, could have identified abnormal login behaviors and taken immediate action. Additionally, the dynamic access control features of archTIS’s NC Protect would have restricted the attackers’ lateral movement, protecting sensitive data from exposure. Critical Analysis from an Expert From an analytical viewpoint, the M&S cyber incident is a classic example of how human error can lead to catastrophic outcomes when paired with inadequate security protocols. The lack of multi-factor authentication (MFA) and weak endpoint protection provided attackers with a clear path to move within the network, undetected for months. Implementing real-time endpoint protection, such as BlackFog’s ADX, would have established robust monitoring of outbound data traffic, flagging suspicious movements. Furthermore, archTIS’s NC Protect, designed to dynamically adjust access permissions, could have minimized the risk of unauthorized data access. Continuous monitoring through Bluedog’s MDR would have immediately flagged the anomalous activities related to the password reset, drastically shortening the response time. The failure to implement comprehensive cybersecurity measures at M&S was not just an oversight; it was a critical flaw in risk management. Companies of all sizes, especially in the retail sector, must prioritize layered defense strategies to prevent similar incidents. Conclusion This attack on M&S serves as a sobering reminder: neglecting cybersecurity is a gamble that no organization can afford. The lessons are clear: enforce multi-factor authentication, invest in endpoint protection, and maintain continuous monitoring. Leveraging solutions from BlackFog, Bluedog, and archTIS is essential for businesses to not only protect their data but to secure their reputation and financial stability in an increasingly hostile digital environment. Fill out my online form Fill out my online form #Cybersecurity #DataProtection #EndpointSecurity #AntiDataExfiltration #RansomwareProtection #MarksAndSpencer #Cyberattack #RealTimeMonitoring #ManagedDetectionAndResponse #ZeroTrustArchitecture #RetailSecurity #SMBSecurity
Achieving GDPR Compliance in Microsoft 365 with NC Protect
In today’s data-driven world, ensuring the privacy and security of customer information is more critical than ever. For businesses operating in Europe, the General Data Protection Regulation (GDPR) is the cornerstone of data privacy laws, establishing strict guidelines on how personal data should be handled. For organizations using Microsoft 365, achieving and maintaining GDPR compliance can seem daunting. However, with the right tools and strategies, it is possible to streamline this process. At Softlanding, we understand the unique challenges businesses face when managing sensitive data in the cloud. That’s why we’ve partnered with NC Protect, a powerful tool that integrates seamlessly with Microsoft 365 to simplify GDPR compliance. In this post, we will explore how NC Protect helps businesses meet GDPR requirements while enhancing the overall security and control of data in Microsoft 365. Understanding GDPR Compliance in Microsoft 365 The GDPR sets out the guidelines for the collection, storage, and processing of personal data, and it applies to any business operating within the EU or handling data of EU citizens. Non-compliance can lead to hefty fines and reputational damage, which is why it’s essential to have the right tools in place to ensure adherence to GDPR standards. Microsoft 365 is a widely used platform that offers a variety of tools and services, including email, file sharing, and collaboration features, all of which often involve handling sensitive customer data. As convenient as it may be, Microsoft 365 can present compliance challenges, especially if organizations do not have the right tools to manage data privacy effectively. This is where NC Protect comes into play. By integrating with Microsoft 365, NC Protect adds an additional layer of data security that helps organizations maintain GDPR compliance more easily and effectively. How Softlanding Simplifies GDPR Compliance with NC Protect At Softlanding, we provide comprehensive solutions to help European businesses achieve GDPR compliance in Microsoft 365. NC Protect, our flagship product, is designed to streamline the process of securing personal data while simplifying the often-complex compliance tasks. Here’s how we make it easier for businesses to stay compliant: 1. Data Classification and Labeling One of the first steps in GDPR compliance is ensuring that personal data is properly classified and labeled. According to GDPR, businesses must differentiate between personal and non-personal data to ensure that privacy protections are applied where necessary. NC Protect’s data classification and labeling features automatically tag sensitive data as it enters Microsoft 365. This makes it easier for businesses to identify which data needs additional protection. Whether it’s customer contact information, financial records, or employee data, NC Protect enables businesses to classify and label all personal data within Microsoft 365 automatically. By using this feature, organizations can easily apply GDPR-required measures like data encryption, access restrictions, and retention policies to sensitive personal data. 2. Encryption of Personal Data GDPR requires that personal data is encrypted to ensure that unauthorized individuals cannot access or misuse it. This is particularly important when data is stored or transferred across cloud environments like Microsoft 365. NC Protect provides encryption capabilities to secure personal data in Microsoft 365, both at rest and in transit. Whether data is stored in SharePoint, OneDrive, or Exchange, NC Protect ensures that all personal data is protected through robust encryption protocols. This feature helps meet GDPR’s requirements for securing data and mitigating risks associated with potential data breaches. 3. Data Access Controls and Permissions Another key requirement of the GDPR is ensuring that only authorized personnel have access to sensitive personal data. With Microsoft 365, it’s easy for businesses to share data across teams and departments. However, this can create challenges in controlling who has access to what. NC Protect enables businesses to enforce data access controls within Microsoft 365. With customizable permission settings, businesses can control who has access to specific datasets, documents, and communications. For example, if certain files contain personal customer information, NC Protect ensures that only authorized personnel can view or modify those files. By implementing strict access controls, businesses can reduce the risk of unauthorized access, supporting GDPR compliance and protecting customer data. 4. Data Retention and Disposal GDPR mandates that personal data should not be retained longer than necessary. Companies must define retention policies and ensure data is deleted securely when it is no longer needed for business purposes. With NC Protect, businesses can establish data retention policies within Microsoft 365, ensuring that personal data is retained only for as long as necessary to fulfill the purpose for which it was collected. Once the retention period has passed, NC Protect can automatically delete or anonymize data to ensure compliance with GDPR’s “right to erasure” requirements. This automation simplifies data management and reduces the risk of retaining unnecessary or outdated personal data. 5. Audit Trails and Reporting GDPR requires businesses to maintain a record of how personal data is accessed, processed, and stored. Organizations must also be able to demonstrate compliance in the event of an audit. NC Protect’s audit trails and reporting features allow businesses to track and monitor how personal data is being used within Microsoft 365. Every action related to sensitive data, such as accessing or sharing a document, is recorded and can be reviewed at any time. This detailed logging provides businesses with the necessary documentation to demonstrate compliance with GDPR. In the event of a breach or audit, businesses can quickly generate reports that show how personal data was handled, helping them meet GDPR’s transparency and accountability requirements. The Benefits of Using NC Protect for GDPR Compliance By integrating NC Protect with Microsoft 365, businesses not only streamline the GDPR compliance process but also gain several key benefits: Reduced Risk of Data Breaches: NC Protect helps prevent unauthorized access to personal data, reducing the likelihood of data breaches and the associated penalties under GDPR. Time and Cost Savings: Automated classification, encryption, and retention features reduce the manual effort required to maintain compliance, saving businesses valuable time and resources. Peace of Mind: With NC Protect, businesses can rest assured that they
Enhance SaaS Security with BYOK/HYOK Ensure Data Sovereignty and Compliance in the EU
Strengthen Data Security & Compliance With increasing data breaches and stricter regulations, European businesses must protect sensitive information—especially when using third-party SaaS platforms. Softlanding, in partnership with archTIS, offers Bring Your Own Key (BYOK) and Hold Your Own Key (HYOK) solutions to help organizations maintain control over their encryption keys within the EU, ensuring compliance with GDPR and other regulations. Why BYOK/HYOK Matters for European Businesses BYOK and HYOK empower organizations to: Retain full encryption key control, even when using global SaaS platforms. Ensure data residency compliance by keeping keys in EU-certified data centers. Minimize breach risks by isolating encryption keys from SaaS providers. Softlanding KMS: Centralized Security for Leading SaaS Platforms Our Key Management System (KMS) integrates seamlessly with major SaaS ecosystems, including: Microsoft 365 Salesforce Zendesk Google Workspace (Client-Side Encryption) ServiceNow SAP Cloud Key Benefits of Centralized Encryption Management Simplified Compliance – Automate audits, enforce policies, and meet GDPR/EU data residency requirements. Enhanced Security – Isolate encryption keys from SaaS providers to mitigate breach exposure. Operational Efficiency – Manage keys for databases, IoT, digital signatures, and more via a unified dashboard. Built for EU Data Sovereignty Softlanding’s KMS, powered by archTIS, ensures: EU-Based Key Storage – All keys are stored in ISO 27001-certified data centers in Stockholm, guaranteeing sovereignty. Quantum-Safe Cryptography – Future-proof encryption against emerging cyber threats. Zero Data Transit Outside the EU – Eliminate risks of cross-border data exposure. Enterprise-Grade Security & Management Automated Key Rotation – Scheduled updates ensure uninterrupted security. Granular Access Control – Define user permissions to view, edit, or revoke keys. Audit Logs & Backups – Maintain immutable records for compliance reporting. Why Partner with Softlanding? With 40+ years of cybersecurity expertise,Our Partner archTIS is trusted by governments, Fortune 500 companies, and critical infrastructure sectors. Their cutting-edge technology offers: AI-Driven Threat Detection – Identify vulnerabilities proactively. 24/7 EU-Based Support – Dedicated security specialists available anytime. Tailored Encryption Strategies – Solutions customized to industry needs. Secure Your SaaS Ecosystem Today Don’t compromise on data sovereignty or compliance. Softlanding and archTIS provide ironclad security for every SaaS platform while ensuring encryption keys remain firmly within EU borders. Ready to Take Control? Fill out my online form
Why BYOK is Essential for GDPR Compliance and Independence in the Microsoft World
Why BYOK is Essential for GDPR Compliance and Independence in the Microsoft World In today’s digital age, businesses operating in the European Union (EU) face an intricate web of regulatory requirements. Among these, the General Data Protection Regulation (GDPR) stands as a cornerstone of data sovereignty and privacy protection. When leveraging Microsoft’s Azure and M365 cloud services, organisations must consider a critical aspect of their compliance strategy: Bring Your Own Key (BYOK). This approach empowers businesses to manage their encryption keys, enhancing both security and compliance. Understanding BYOK and Its Role in GDPR Compliance BYOK allows organisations to generate, control, and manage their encryption keys rather than relying on a cloud service provider (CSP) to do so. In the context of GDPR, this independence is not just a best practice but an essential measure to: Ensure Data Sovereignty: GDPR mandates that personal data must be processed in compliance with robust security measures, such as encryption (Art. 32(1)). With BYOK, organisations maintain control over their encryption keys, ensuring data sovereignty even when using cloud services. Mitigate Legal Risks: Laws like the U.S. CLOUD Act and the Australian TOLA Act can compel CSPs to provide access to encrypted data. BYOK mitigates this risk by ensuring the CSP does not have access to the keys required to decrypt data. Prevent Unauthorised Access: Data breaches can result from CSP vulnerabilities. BYOK ensures that even if the CSP is compromised, encrypted data remains inaccessible without the keys controlled by the organisation. Risks of Relying on CSP-Managed Encryption Keys When organisations use encryption services provided by CSPs like Microsoft, the provider often retains access to the keys. This creates several vulnerabilities: Potential Data Exposure: CSPs, including Microsoft, can become targets for cyberattacks. If the encryption keys are compromised, sensitive data could be exposed. Legal Compliance Conflicts: While GDPR prioritises data protection within the EU, laws like the CLOUD Act can conflict by requiring CSPs to hand over data stored abroad. Organisations using BYOK avoid such conflicts by keeping encryption keys out of the CSP’s reach. Loss of Control: Entrusting encryption keys to a CSP undermines organisational control over data security, which is critical for compliance and operational independence. How BYOK Addresses Data Sovereignty Challenges Data sovereignty involves ensuring that personal and sensitive data is handled according to the laws and regulations of the jurisdiction in which it resides. BYOK addresses this challenge by: Enabling Localised Key Management: Organisations can store their keys within the EU, ensuring compliance with GDPR’s strict data residency and processing requirements. Maintaining Encryption Integrity: Even if data is stored outside the EU, encryption ensures that the data cannot be accessed without the decryption keys, which remain under the organisation’s exclusive control. Empowering Regulatory Confidence: By demonstrating full control over encryption keys, organisations can show regulators their commitment to GDPR compliance, reducing the risk of fines and reputational damage. Implementing BYOK in Microsoft Environments Microsoft’s Azure and M365 services provide some encryption capabilities, but these often fall short of full compliance requirements for organisations operating under GDPR. For instance: Native BYOK Limitations: While Microsoft supports BYOK, the keys are often uploaded to CSP-managed environments, leaving them potentially accessible to the provider. Enhanced Solutions with Third-Party Tools: Solutions like NC Encrypt from archTIS allow organisations to integrate independent key management with M365, offering dynamic encryption and compliance-friendly controls. With these tools, businesses can: Secure sensitive data dynamically based on predefined policies. Apply attribute-based access controls (ABAC) to ensure only authorised individuals can access protected data. Maintain full control over encryption keys and access policies. Advantages of BYOK for GDPR Compliance and Business Independence Adopting a robust BYOK strategy not only ensures GDPR compliance but also offers significant business advantages: Enhanced Data Security: Organisations retain exclusive control over encryption keys, reducing the risk of breaches. Legal and Regulatory Alignment: BYOK aligns with GDPR’s principles, protecting businesses from non-compliance penalties. Operational Autonomy: Organisations can avoid over-reliance on CSPs, gaining independence in managing their data security. Key Takeaways For businesses operating in the Microsoft ecosystem, BYOK is not just a technical choice but a strategic imperative. By retaining control over encryption keys, organisations can: Protect sensitive data against potential CSP vulnerabilities and external legal conflicts. Ensure compliance with GDPR and other data sovereignty laws. Strengthen their overall security posture and build trust with stakeholders. Recommendations for Businesses Conduct a GDPR Compliance Audit: Assess current data protection measures and identify gaps in key management. Invest in Independent Key Management Solutions: Tools like NC Encrypt offer enhanced BYOK capabilities tailored for M365 environments. Educate Your Teams: Ensure IT and compliance teams understand the critical role of BYOK in data security and sovereignty. Stay Proactive: Continuously monitor the regulatory landscape to adapt data protection strategies accordingly. By implementing BYOK and leveraging independent encryption tools, businesses can achieve GDPR compliance, secure their data, and operate with confidence in the Microsoft world.
The Sentinel Advantage: Customized Cybersecurity for KMUs in the DACH Region
Navigating the Cybersecurity Landscape with Bluedog’s Sentinel for Small Businesses Introduction: The digital era has brought unprecedented cybersecurity challenges, especially for small and medium-sized enterprises (KMU) in the DACH region. With limited resources but facing the same threats as large corporations, these businesses need effective yet budget-friendly cybersecurity solutions. Bluedog’s Sentinel hardware emerges as a beacon of hope, offering KMUs an effective way to protect their internal networks from both external and internal threats. Understanding the Cyber Threat Landscape for KMUs Recent incidents in the DACH region, like the cyber-attack on Austria’s Palfinger and the ransomware attack on Swiss firm Comparis, demonstrate the vulnerabilities KMUs face. These examples highlight the need for robust cybersecurity measures that can safeguard businesses against complex cyber threats. The Sentinel Solution: Tailor-Made for KMUs Bluedog’s Sentinel hardware is designed specifically for KMUs, providing a simple yet comprehensive solution to monitor internal networks. It addresses the unique challenges KMUs face, offering high-level security without the complexity or cost typically associated with such systems. Real-World Impact of Cybersecurity Breaches on KMUs Incidents like the ransomware attack on a district council in eastern Germany and the cyberattack on Brenntag’s North American division illustrate the devastating impact of cybersecurity breaches on businesses of all sizes. These examples underscore the necessity for KMUs to adopt robust cybersecurity solutions like Bluedog’s Sentinel. Bluedog’s Sentinel: A Comprehensive, Cost-Effective Solution Bluedog’s Sentinel provides a 360-degree view of network security, offering real-time monitoring and protection against a wide range of cyber threats. Its affordability makes it an ideal solution for KMUs in the DACH region, ensuring they do not have to compromise on security due to budget constraints. Conclusion: In a world where cyber threats are becoming increasingly sophisticated, KMUs can no longer afford to overlook their cybersecurity needs. Bluedog’s Sentinel offers a practical, effective solution tailored to the unique requirements and budget constraints of KMUs in the DACH region. It’s an investment in security that promises peace of mind and business continuity. Fill out my online form
Four Ways to Transform Secure Access in 2021
We proudly announce Some of the biggest security blunders of 2020 were tied to the exploitation of VPNs. The limitations of this 25-year-old technology were exposed just as global mass remote workforce initiatives reached a fevered pitch. VPNs are not fit for purpose in a world where secure access is more important than ever. Join two of the industry’s most prolific experts on secure access, Dr. Zero Trust himself, Chase Cunningham, and Brigadier General (ret) Greg Touhill, President of Appgate Federal and the first Federal CISO of the United States, as they help you navigate your way toward a state of Zero Trust. We’ll discuss the four main pillars of building and executing a superior remote access strategy: 1. Confront your VPN 2. Develop your Roadmap 3. Enforce Zero Trust Access 4. Unleash Operations With: Dr. Chase Cunningham, Zero Trust Expert, former Principal Analyst at Forrester Brigadier General (ret) Greg Touhill, President, Appgate Federal Moderated by: Jason Garbis, SVP Products, Appgate 25.Feb..2021 5:00 PM (CET)
Softlanding announces a Partnership with Appgate an industry leader in secure access solutions
Softlanding announces a Partnership with Appgate an industry leader in secure access solutions . The partnership allows Softlanding , to resell and provide services for App Gate. Helmut Hubmann, CEO at Softlanding , said, “Our customers are looking for solutions to help them with data discovery, secure collaboration, Sharepoint and TEAMS security. Our partnership with AppGate allows us to expand our security solutions portfolio to include Software Defined Perimeter,Digital Threat Protection,Risk based Authentication and offensive Services. About AppGate An industry leader in secure access solutions changing cybersecurity for the better by making it simpler for users and operators and harder for adversaries. Secure Access to Your Network and for Your Consumers We work hard to master the offense, understanding how cybercriminals operate, so that we can build the best defense. Our solution
Cybersecurity Tips For 2021
2020 has proved to us all that a new year does not necessarily have to be better than the last. It could go worse, and for most of us, COVID-19 proved to be a lethal obstruction in our lives. While this a fact known to everyone, we would like to highlight some alarming piece(s) of news. Coronavirus, alone, is to be blamed for a 238% rise in cyberattacks on banks. Ransom attacks crossed 148% in the first quarter of 2020. In the first six months of 2020 alone, more than 81 international firms from 81 countries complained of data breaches. A whopping 600% increase in phishing attacks was witnessed before the arrival of March. You are highly mistaken if you feel cyberattacks like phishing attacks or data breaches are only limited to big companies and firms. You could personally fall prey to cyberattacks if you do not secure your personal information and gadgets. Take a look at the following cybersecurity tips that you must take note of and implement in the coming times. Secure passwords The era of using Password or 12345 as your password is long gone and not so hysterical anymore. Today, you have your personal and sensitive information stored in your system and your emails. Tomorrow it could be all wiped off or leaked. Firstly, make sure you do not let anyone use your computer while you are gone. Do not use predictable passwords like your name or your birthdate to make it easy for you to remember. It is also easy for hackers to crack it. Use two-factor authentication options 2FA codes are the best way to secure your online account (along with a strong password). It could be a four- or six-digit code sent on your registered phone number or email address. Whether it is your social media count or email id; make sure you enable 2FA. Antivirus software Cybersecurity breaches can happen unknowingly by clicking on “interesting” links or unknown website portals. Installing antivirus software and firewall on your system is definitely a safe and sane decision in this time and age. Make sure to purchase such software from reputed companies. Install updates Outdated software can pose a big security threat to your device. Software updates are meant to provide better security and ward off any kind of bugs that act as access to steal information. Enable automatic updates on your device to reduce cybersecurity risks. Along with staying updated on the tips mentioned above, make sure you keep your devices secure by only installing applications from trusted developers. Avoid public WiFi at all costs unless it’s an emergency and most importantly, always backup your data. These tips are simple and easy to follow. Also, they significantly reduce the risks of cybersecurity attacks.
Why vpns fail to protect industrial controls
Building management maintenance is important for data center operators. This can be done using VPN access but it has inherent limitations that make the use of VPNs risky for the safety and security of corporate networks. Covid-19 has forced businesses to rethink the working ways and has caused the propagation of a work-from-home or remote-working culture on a massive scale. Cloud-based SaaS videoconferencing and other supporting applications have made this transition a smooth one and allowed the corporate workforce to remain productive. The real problem is now being faced by the exceptionally skilled technical workers who require system access which is possible only on highly-secure corporate networks like industrial building management systems. Managers also have to ensure that only authorized personnel are granted access to these systems. Till 2019, access to the systems was only possible if the employee was present on-site. The travel restrictions and social distancing measures that were put in place in 2020 have strained these employees and created potential risks that are critical to operations. For building management system maintenance, earlier the data center operators allowed access through traditional VPN software. But this software has limitations such as vulnerability to common attack vectors and the complexity and difficulty in managing these VPNs. Also, in most cases, dynamic access is not allowed based on user context and conditions. Owing to these problems, many data center operators are now looking for suitable alternatives to the more traditional VPNs. One of the best answers for such data center operators who manage sensitive industrial systems is the Software-Defined Perimeter (SDP). One of the biggest advantages offered by SDP is the ability to enforce least privilege access to third party organizations. In contrast to a VPN, SDP based access allows employees to work on specific systems which are a part of the support contractor’s agreement, without giving them access to the entire network. For example, if a contractor is responsible for the maintenance of wireless humidity and temperature sensors of a data center, that contractor can be given limited access to the relevant servers without allowing access to the other building management systems. SDP also has a feature that allows the data center operators to determine whether or not a system is sufficiently updated and secured to access the network. These additional security and audit controls provide much better safety access control than traditional VPNs. All in all, The traditional VPNs are no longer suitable for dynamic and multi-dimensional access control for industrial building management systems.
Why Get Serious About Zero Trust Security
Zero Trust is one of the latest buzzwords in cybersecurity. However, it is one of the efficient tools to deal with today’s sophisticated threats. Zero trust is a security model that requires all users to be authorized, authenticated, and continuously validating security posture and configuration, before being given access to data or apps. Simply put, the users and devices, both inside and outside the network, are considered untrustworthy (even they have passwords to access). The trust is vulnerability in a zero trust model. That’s why this concept is known as zero trust. Even a trusted and familiar user needs to get verified to get access. Zero trust can be incorporated through multifactor authentication identity and access management, and endpoint security technology to validate the user’s identity. For example, an OTP is sent to the registered number of a user once he logs in using their password. However, Zero Trust can only be successful if organizations can continuously monitor and validate that a user and his device has the right attributes and privileges. Single validation simply won’t be sufficient, because threats and user attributes are likely to change. Therefore, organizations should ensure that all access requests are continuously screened before allowing connection to any of your organization or virtual accounts. The implement of Zero Trust policies mainly relies on real-time visibility into user attributes such as user identity, endpoint hardware system, path levels, OS versions, and user logins. Why Get Serious about Zero Trust Security Zero Trust is one of the essential measures to control access to applications, data, and networks. It integrates a wide range of preventative techniques such as endpoint security, least privilege controls, identity verification, and micro-segmentation to prevent potential attackers and restrict their access in the event of a data incident. This security layer is important as organizations often increase their number of endpoints within their network and increase their infrastructure to cover cloud-based applications and servers. Zero trust networks let access rights only when it is more than important, verifying all request to link to its systems before approving access. Minimizing security perimeters into tiny zones to create distinct access to various parts of the network minimizes lateral access across the network. Finally, by strengthening the network and limiting user access, Zero Trust security aids the organization prevents breaches and reduce potential damages. This is an important preventive measure as the attack might be launched by the users inside.