Unlike accidental data leaks caused by human error or misconfigured systems, data exfiltration is a deliberate and malicious act. It involves the unauthorized transfer of sensitive data from within a secured environment to an external destination controlled by threat actors. This ...
Continue ReadingHow many companies out there are monitoring DNS traffic? Are you concerned about data exfiltration over DNS? How many people even know that is...
Security is a top concern for most network administrators and engineers today. Those that want to detect suspicious network activity within their environment can use...
Targeted Attacks are well-thought-out efforts combined with tuned pieces of software specifically engineered to penetrate your best security efforts. Detecting targeted attacks often requires...
Thresholds are an advanced feature available to all Scrutinizer users. When applied correctly, they can be used to automatically send notification of potential problems on...
It seems as if monitoring DNS traffic has become pretty popular lately. Our security team just utilized DNS traffic records shown in NetFlow in...
EDIT 5/30/18: There is a newer version of this article available. In order to configure Cisco ISE NetFlow, we’re going to take advantage of...
This morning our malware incident response system triggered an event for suspected DNS “Command and Control” activities. Our security team jumped on it and...
In the past few months, I’ve noticed that the number of support calls we’re taking for help using our NetFlow Analyzer for detecting DDOS...
In my previous blog, I discussed what Cisco IWAN is, and the benefits it brings to multi-branch offices connected to an MPLS WAN. Today’s...
