Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CalCom

Disable NetBIOS on Windows Servers

While NetBIOS (Network Basic Input/Output System) has been historically used for local network communication, it has several security vulnerabilities and limitations, and its use has diminished over time. Here are some reasons why someone might want to disable NetBIOS: Broadcast Traffic: NetBIOS relies on broadcast traffic for name resolution, which can lead to network congestion and inefficiency, especially in larger networks.

User Account Control: Only elevate UIAccess applications

User Account Control (UAC) serves as a security feature in Windows, aiming to safeguard the operating system from unauthorized modifications. Whenever alterations demand administrator-level permissions, UAC prompts the user, allowing them to either authorize or reject the requested change.

Audit Kernel Object

The Audit Kernel Object feature dictates whether the operating system records audit events when users try to access the system kernel, encompassing mutexes and semaphores. Security audit events are generated exclusively for kernel objects with a corresponding System Access Control List (SACL). Typically kernel objects are only given SACLs if the AuditBaseObjects or AuditBaseDirectories auditing options are enabled.

Vulnerability Remediation for Servers: Beyond Just Patching

To understand vulnerability remediation one must first understand remediation in cyber. Remediation refers to the process of addressing and resolving security vulnerabilities or incidents that could potentially pose a threat to an organization’s information systems, data, or network.

What is FFIEC Compliance?

As financial institutions navigate the ever-evolving challenges of cybersecurity, understanding and implementing the Federal Financial Institutions Examination Council (FFIEC) compliance becomes paramount. Here, we aim to be your guide, providing valuable information and practical hardening tips to help financial institutions not only meet but exceed FFIEC compliance standards. This blog will discuss.

OS hardening 20 Best Practices

Operating system (OS) hardening, a facet of system hardening, involves the implementation of security measures of operating systems like Windows, Linux, or macOS (aka OS X) to bolster their defenses against cyberattacks. The primary aim is to fortify sensitive computing systems, thereby reducing their vulnerability to various security threats, including data breaches, unauthorized access, system intrusions, and malware in accordance with best security practices.

NIST Risk Management Framework (RMF) Explained

The National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) is a robust, adaptable method for managing and mitigating information security risks within government agencies and organizations working with government systems. It integrates security, privacy, and cyber supply chain risk management into the system development life cycle.

SQL server attacks: mechanisms you must know

SQL server attacks are one of the most painful attacks organizations can suffer. An organization’s database is one of its softest spots, with a wide surface area susceptible to attacks. This results in it being an attractive target of attackers. Neglecting your organization’s SQL server security is equivalent to having a bomb ticking in your organization’s IT infrastructure.

PCI DSS Compliance Hardening Policy

Server configuration hardening is a basic requirement for compliance with Payment Card Industry Data Security Standard (PCI DSS) v4.0 that was updated in April 2022 from PCI DSS Version 3.2.1. Server hardening is a fundamental process that ensures the security of servers in the network by reducing the servers attack surface through implementation of secure configurations.