The harsh truth about the next cyberattack
I don’t know about you, but it seems like there’s news of some big data breach every other month. The hard truth is that...
All
Security Operations
5 ways of verifying security risks and avoiding false positives
I think I can safely assume that everyone knows the cautionary tale of the boy who cried wolf. If you don’t, the moral is...
How human negligence affects network security
As enterprises adjust to the new normal and remote work, they are bracing for potential attacks resulting from employee carelessness. Bad habits, such as...
Five ways Plixer Scrutinizer helps retail networks
Even though most of us have looked at a calendar recently and thought, “I could have sworn we were in May, not October,” you...
Username reporting: NetFlow integration with Splunk
I was recently able to explore the Splunk software development kit with a customer. This helped me to implement another way to get username...
How to detect suspicious ICMP traffic
A few years ago, we added a behavioral algorithm to Plixer Scrutinizer that looked at all the flow data that was collected and determined...
How to detect a reverse SSH tunnel
Today we are going to talk about Plixer’s new Flow Analytics algorithm, Reverse SSH Shell, which has been included in the latest Plixer Scrutinizer...
STIX/TAXII for threat intelligence
What is STIX/TAXII? STIX stands for Structured Threat Information Expression, which is an open-source language and serialization format used in sharing threat intelligence. Think...
Enhance NetOps/SecOps collaboration with Plixer’s new collections feature
I can’t tell you how many calls I’ve been on where the NetOps and SecOps teams really don’t know what the other is doing....
How to detect bogon connections
Many ISPs filter bogon connections because bogon IP addresses have no legitimate use. If you find a bogon or bogus IP address in your...