Insights, updates, and technical deep dives from our team
False positives are rarely caused by too many alerts, but by missing context. Let’s say a spike in outbound traffic shows up in the firewall logs. Around the same time, ...
Read More
It’s becoming more and more evident that an effective cyber threat incident response system requires the implementation and fine
Read MoreThis morning our malware incident response system triggered an event for suspected DNS “Command and Control” activities. Our security
Read MoreMy colleague Jake recently wrote about Disaster Recovery Monitoring, and about how our Incident Response System, using IPFIX/NetFlow is
Read MoreI have had a few customers ask about username reporting with Netflow within their incident response system. Collecting user
Read MoreCompanies using Data.com which is maintained by Salesforce could be in for an infection if they aren’t careful what
Read MoreWhen I was studying at the University, every floor of every dorm had a fire extinguisher. I sort of
Read MoreIdentifying a compromised host in your environment is a common task for administrators in most network environments. What about
Read MoreIf you are looking to learn about how to investigate malware, chances are you’re already infected and under the
Read MoreWorking in support, customers often ask me how to start using NetFlow and IPFIX in their network monitoring tool, to get
Read MoreDue to potentially steep fines and loss of customer good will, retail and financial services companies are guardedly concerned
Read More