We were an early adopter of supporting Google map integration in our NetFlow collector system. Since then, we have had customers asked that we pull in the location information from SNMP (syslocation), IPAM solutions and other GPS coordinate applications in … [Read more...] about Google Map Integration | GPS Coordinates
Detecting Data Leaks
This month I had the opportunity to work with a customer that wanted to use our malware incident response system for detecting data leaks. I put together a solution that met the customers goals and thought it would make a good reference for anyone who needs a … [Read more...] about Detecting Data Leaks
DNS Firewall : Free Update to Bind
Recently we went through an exercise which turned our DNS into a firewall for a well-maintained list of requested hostnames. It was designed to work with our host reputation feed that is provided to our FlowPro Defender customers who use it to uncover … [Read more...] about DNS Firewall : Free Update to Bind
Verizon DBIR Hidden Message: cyber.pathogen.ai
Verizon recently released the 2016 Verizon Data Breach Investigations Report. The Verizon Data Breach Investigations Report (DBIR) is an annual publication that provides an analysis of information security incidents, focusing on data breaches. As an active … [Read more...] about Verizon DBIR Hidden Message: cyber.pathogen.ai
VPN Malware Protection
At Plixer we have a contractor “Shrek” that needs VPN access to our network. Our security team realizes that he may not be taking all the steps necessary to ensure that his computer stays virus and malware free. Because of this, we apply a few different … [Read more...] about VPN Malware Protection
LinkedIn Malware : Safe Browsing
As we enter 2016 please remember to browse safely. Many users have a tendency to click on links without considering the risks of their actions. Please use caution before clicking on any links. Below is an example of a Linkedin account (kashif shahzad) … [Read more...] about LinkedIn Malware : Safe Browsing
Incident Response to C2 Domain results in Disabling Google Chrome Prefetch
I got a call the other day that lead to a fast incident response relating to a C2 domain communication. I thought I would share the steps I took to investigate the event. Ultimately I learned that Google Chrome and its pre-fetch technology can be a bit of a … [Read more...] about Incident Response to C2 Domain results in Disabling Google Chrome Prefetch
DNS Command and Control Detection
This morning our malware incident response system triggered an event for suspected DNS “Command and Control” activities. Our security team jumped on it and I thought what we learned in the process of following up on the event was blog worthy. … [Read more...] about DNS Command and Control Detection
Salesforce Data.com Used as Conduit to Push Malware
Companies using Data.com which is maintained by Salesforce could be in for an infection if they aren't careful what they click on. These days attack vectors can come from anywhere, even the trusted resources we use. Many would consider data.com a trusted … [Read more...] about Salesforce Data.com Used as Conduit to Push Malware
NIKE Customer Service
Two years ago I was getting a bit over weight. Everything else was great. I have a great career, I loving relationship with my wife and I was obviously eating well. I just didn’t like the extra pounds that I was starting to pack on. Several of us were joking … [Read more...] about NIKE Customer Service
Social Media