Network Access Control

Ebb72d4bfba370aecb29bc7519c9dac2

Security Essentials? Basics? Fundamentals? Bare Minimum?

June 25, 2014 Added by:Anton Chuvakin

Let’s think together – what technologies and practices constitute information security essentials?

Comments  (0)

E595c1d49bf4a26f8e14ce59812af80e

Why a User-Centric Approach is Required for Network Security

June 25, 2014 Added by:Patrick Oliver Graf

With employees demanding network access for many different types of devices, operating systems and applications, a CIO’s job has never been harder. But do employees always know what’s best for network security?

Comments  (0)

201d6e4b7cd0350a1a9ef6e856e28341

Are Spies or Malware in our ICS Networks - Who is Really Looking?

June 23, 2014 Added by:Joe Weiss

Are spies in our ICS networks – who really knows but we really should find out.

Comments  (0)

Ebb72d4bfba370aecb29bc7519c9dac2

On SIEM Tool and Operation Metrics

June 19, 2014 Added by:Anton Chuvakin

Measuring SIEM health and operations is still an emerging art, and there is no set of accepted SIEM metrics.

Comments  (0)

Ec47f9657c90a6db70e5e4f1cd1f7a02

The Struggle to Secure the New IT

June 16, 2014 Added by:Gretchen Hellman

Securing the New IT can seem daunting. However, by broadening your skillsets and seeking to have impactful conversations with business executives on the importance of security strategies and investments, it doesn’t have to be.

Comments  (0)

B64e021126c832bb29ec9fa988155eaf

Wide Open “Online Enabled” Physical Security Devices

June 12, 2014 Added by:Dan Dieterle

With the mad rush to make things more user friendly and convenient, security is being left aside, even in devices that are being used to protect facilities!

Comments  (0)

E595c1d49bf4a26f8e14ce59812af80e

Will Network Security Concerns Sink Government BYOD?

June 11, 2014 Added by:Patrick Oliver Graf

Government BYOD is inevitable – IDC predicts that although currently “personal devices make up just 5 percent of the government market, that figure will grow at double-digit rates for the next three years.”

Comments  (0)

Ebb72d4bfba370aecb29bc7519c9dac2

SIEM Analytics Histories and Lessons

June 09, 2014 Added by:Anton Chuvakin

I’ve been obsessed with stored/historical data analysis inside a SIEM for a while, long before the current craze about so-called “security analytics” has been inflicted upon the community.

Comments  (0)

B64e021126c832bb29ec9fa988155eaf

Quick and Easy Website Vulnerability Scans with OWASP-ZAP

June 05, 2014 Added by:Dan Dieterle

OWASP ZAP is a web application penetration testing tool that has some great features. It is a very easy to use scanner that allows you to do manual or automatic website security checks. In this tutorial we will learn how to use the automatic attack feature.

Comments  (0)

Bd07d58f0d31d48d3764821d109bf165

Effectively Communicating Attack Surface Analytics

June 02, 2014 Added by:Tripwire Inc

Executive leadership (including the board member) is not typically interested in operational security details such as answers to questions about specific security control metrics. This information is too detailed and will be viewed as “noise” by those outside the IT and security teams.

Comments  (0)

B64e021126c832bb29ec9fa988155eaf

Iranian Hackers Target US Military Personnel via Social Media

May 29, 2014 Added by:Dan Dieterle

People trust and share way too much on social media sites, and unfortunately this extends to government employees and military troops around the world.

Comments  (0)

1b061b1cec6b5898e5326992d9461610

"Back to Basics": What does this mean?

May 28, 2014 Added by:Dave Shackleford

So what ARE “the very basics”? And how exactly do we “get back to them”?

Comments  (0)

Bd07d58f0d31d48d3764821d109bf165

Vigilance: Maintaining an Effective Enterprise Security Posture

May 27, 2014 Added by:Tripwire Inc

So the question for us, security professionals and dabblers alike, is how do we make this moment one that makes a difference?

Comments  (0)

D8853ae281be8cfdfa18ab73608e8c3f

Effective NTLM / SMB Relaying

May 22, 2014 Added by:Rob Fuller

Most of the tools to exploit it either catch the authentication in NTLMv2/NTLMv1 (which is not always easy to crack) or assume administrative access (because they attempt to PSEXEC with the incoming session). Well, since MS08-068 that's much harder to pin down.

Comments  (0)

201d6e4b7cd0350a1a9ef6e856e28341

The Electric Industry Still Doesn't Understand What Sophisticated Attackers Are After

May 21, 2014 Added by:Joe Weiss

Stuxnet and Aurora utilized design features of the system or controllers to attack physical systems. Stuxnet and Aurora are not traditional network vulnerabilities and cannot be found or mitigated by using traditional IT security techniques.

Comments  (1)

7ddc1f3000a13e4dfec28074e9e7b658

A Deep Dive into the House's Version of Narrow NSA Reform: The New USA Freedom Act

May 20, 2014 Added by:Electronic Frontier Foundation

Here's how the House version of the USA Freedom Act compares to the Senate's version, what the new House version of the USA Freedom Act does, and what it sorely lacks.

Comments  (0)

Page « < 1 - 2 - 3 - 4 - 5 > »