In today’s digital world, nothing is safe. Just today I came across this post that talks about hackers attacking network printers. It’s not far-fetched to think that your printers are a major cyberattack vector, but how can this type of attack affect your … [Read more...] about Network Security Concerns: They’re Attacking My Printers Now?
Blog
Scrutinizer SaaS Deployment
Let’s talk about the cloud for a minute. A majority of IT infrastructure has been moving to the cloud over the last few years, and for good reason. The cost-saving benefit, ease of administration and space reduction are all good reasons to move your internal … [Read more...] about Scrutinizer SaaS Deployment
Extreme Networks: Enabling and Disabling SNMPv1, SNMPv2, and SNMPv3
Why am I seeing SNMPv1 and SNMPv2 attempts when I’ve only got SNMPv3 enabled? It appears some of Extreme’s switches handle their SNMP configurations a bit differently. Here, I’ll answer the above question as well as discuss how to configure, enable, and … [Read more...] about Extreme Networks: Enabling and Disabling SNMPv1, SNMPv2, and SNMPv3
5 Key Steps for GDPR Compliance
The General Data Protection Regulation (GDPR) was adopted in April 2016 and went into effect May 2018. The European Parliament established GDPR as a mechanism to protect the personally identifiable information (PII) of European Union citizens. PII, as defined … [Read more...] about 5 Key Steps for GDPR Compliance
Network Traffic Analytics with Gigamon
Quite some time ago, my colleague wrote about our Gigamon NetFlow support. That article will help you understand how to configure your Gigamon appliances to export rich metadata to your network and security intelligence platform. In this article, I will … [Read more...] about Network Traffic Analytics with Gigamon
Splunk NetFlow Support: Viewing Your NetFlow in Splunk
The last time we showed you how to seamlessly integrate Splunk with Scrutinizer was all the way back in 2015. Since then, we have made quite a few changes to Scrutinizer and how our third-party integrations work. … [Read more...] about Splunk NetFlow Support: Viewing Your NetFlow in Splunk
This WannaCry Phishing Email is an Empty Threat
One of last year’s biggest threats is rearing its ugly head again in the form of a WannaCry phishing email scam. Early on June 21st, many people in the UK received an email informing them that the sender had infected their system with WannaCry. The senders … [Read more...] about This WannaCry Phishing Email is an Empty Threat
Best Practices in Network Forensics, Part II: Insider Threats
In part 1 of our Best Practices in Network Forensics we discussed different integrations and how you can tie in your existing tools with our solution to correlate events with syslogs, DNS, IPAM, and cloud infrastructure logs. This blog will go a bit deeper on … [Read more...] about Best Practices in Network Forensics, Part II: Insider Threats
Username Reporting – NetFlow Integration with ForeScout CounterACT
User attribution is one of the things I’m asked for most frequently by customers who are looking at network traffic analytics. The use case is quite simple. In a DHCP environment it can be really cumbersome to see who was actually logged in to a machine when … [Read more...] about Username Reporting – NetFlow Integration with ForeScout CounterACT
How to Monitor Lateral Movement with NetFlow
During our incident response training conducted all over the world, we work with security professionals to identify various trends related to how malicious actors persist and move within a compromised organization. Once the patient zero has been compromised, … [Read more...] about How to Monitor Lateral Movement with NetFlow
Social Media