Networks

Taking Charge of Application Security

Jun 14, 2022 By AlgoSec In AlgoSec

Eric Jeffery, AlgoSec's venerable regional solutions engineer, calls on the attention of AppSec network engineers and offers sage advice to organizations how to align their AppSec teams with their business goals.

View Video

AlgoSec

Read more about Taking Charge of Application Security

Flow Use Case: Automate Continuous Firewall Traffic Monitoring

Jun 13, 2022 By Devo In Devo

This Flow allows you to monitor all the traffic from your firewall by correlating it against a table that contains malicious IP addresses. If there is a match, Flow will generate an enriched event that will be logged in a designated my.app table. From this new table, you can take further action by creating detection rules to identify threats that put your organization at risk. Table of Contents.

View Video

Devo

Read more about Flow Use Case: Automate Continuous Firewall Traffic Monitoring

5 Steps to Unsticking a Stuck Network Segmentation Project

Jun 13, 2022 By A.J. Dunham In Forescout

Digital transformation has ushered in interconnected networks that enable information sharing and collaboration. That’s great for efficiency and productivity, but many networks are flat, leaving organizations susceptible to cyberthreats that can move laterally, even across distributed environments, enabling hackers to exploit openings and pivot into their most valuable data.

Read Post

Forescout

Read more about 5 Steps to Unsticking a Stuck Network Segmentation Project

Breaking down firewalls with BPFDoor (no e!) - How to detect it with Falco

Jun 9, 2022 By Nicholas Lang In Sysdig

BPF (not eBPF), typically viewed from a defender/sysadmin’s perspective, provides easy access to network packets and the ability to take actions via programs written based on custom filters BEFORE they ever reach a (local) firewall. This same power, according to the PWC report and pending conference talk, was leveraged by a threat actor named Red Menshen, where the attackers have used BPFDoor technique to gain stealthy remote access to compromised devices from at least 2018 to the present.

Read Post

Sysdig

Read more about Breaking down firewalls with BPFDoor (no e!) - How to detect it with Falco

Not all "Internet Connections" are Equal

Jun 8, 2022 By Trustwave In Trustwave

People commonly think that any “Internet Connection” is exactly the same, or they may be vaguely aware that some connections are faster than others. However, there are significant differences between the connections. While these differences may not matter to someone who just wants to browse websites and read email, they can be significant or even showstoppers for more advanced users or s. This is especially true for anyone looking to do security testing or vulnerability scanning.

Read Post

Trustwave

Read more about Not all "Internet Connections" are Equal

Enhanced Network Evidence for the Modern SOC

Jun 7, 2022 By Corelight In Corelight

Security leaders protect their businesses by using analytics and insights to understand security needs, attack surfaces, and trends. Every company from ‘big box’ travel sites to powerhouse car manufacturers needs to optimize their SOCs, retain talent, and expand business opportunities securely.

View Video

Corelight

Read more about Enhanced Network Evidence for the Modern SOC

Forescout and Cysiv: Threat Detection Across Your Digital Terrain

Jun 6, 2022 By Ian Curry In Forescout

Today marks an exciting moment in time for our customers and partners. Today, Forescout announced its intent to acquire Cysiv, a company with deep expertise in data-powered threat detection and response.

Read Post

Forescout

Read more about Forescout and Cysiv: Threat Detection Across Your Digital Terrain

Forward Networks Adds New Verification Capabilities To Make Hybrid Multi-cloud Networks More Secure

Jun 2, 2022 By Forward Networks In Forward Networks

New Product Features and Rapid7 Integration Provide End-to-End Security Posture Verification and Enhanced Visibility to Help Engineers Accurately Prioritize Remediation.

Read Post

Forward Networks

Read more about Forward Networks Adds New Verification Capabilities To Make Hybrid Multi-cloud Networks More Secure

Enriching NDR logs with context

Jun 2, 2022 By Stan Kiefer In Corelight

In this post, we show how enriching Zeek® logs with cloud and container context makes it much faster to tie interesting activity to the container or cloud asset involved.In cloud or container environments, layer 3 networking is abstracted away from the higher-level tasks of running workloads or presenting data. Because of this abstraction, when Zeek logs are collected for cloud or container network environments, the attribution of a network flow to actual workload or application is difficult.

Read Post

Corelight

Read more about Enriching NDR logs with context

Killnet: Analysis of Attacks from a Prominent Pro-Russian Hacktivist Group

Jun 2, 2022 By Vedere Labs In Forescout

In our new threat briefing report, Forescout’s Vedere Labs leverages a list of IP addresses known to be used by Killnet hacktivists during past attacks to study their TTPs when attacking a series of honeypots we control.

Read Post

Forescout

Read more about Killnet: Analysis of Attacks from a Prominent Pro-Russian Hacktivist Group

Subscribe to Networks

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Networks

Taking Charge of Application Security

Flow Use Case: Automate Continuous Firewall Traffic Monitoring

5 Steps to Unsticking a Stuck Network Segmentation Project

Breaking down firewalls with BPFDoor (no e!) - How to detect it with Falco

Not all "Internet Connections" are Equal

Enhanced Network Evidence for the Modern SOC

Forescout and Cysiv: Threat Detection Across Your Digital Terrain

Forward Networks Adds New Verification Capabilities To Make Hybrid Multi-cloud Networks More Secure

Enriching NDR logs with context

Killnet: Analysis of Attacks from a Prominent Pro-Russian Hacktivist Group

Monthly Archive

Follow Us