The InfoSec Marshmallow

April 23, 2018 | Bob Covello
March 20, 2018 | Brandi Timmerman

New! Getting Certified as an AlienVault USM Certified Security Engineer (AVSE)

I’m very pleased to announce that we have expanded the AlienVault® certification program. Our newest certification—AlienVault USM Certified Security Engineer (AVSE)—is now available for those who want to validate their skills with the AlienVault USM Anywhere products. Earning this certification demonstrates to the InfoSec community that you are skilled in the latest…

March 19, 2018 | Jeff Thompson

DNS Poisoning and How To Prevent It

DNS poisoning. Simply the name conjures up the kind of thoughts that keep network admins up at night. What if my RNDC key gets leaked? Could there be a rogue DHCP server within my perimeter? Are the Lizard Squad planning an attack on  for Christmas?Much of what we know now about DNS, address protocol, and packet priority is…

Get the latest security news in your inbox.

Subscribe via Email

March 16, 2018 | Javvad Malik

Things I hearted this week 16th March 2018

Last weekend, my daughter and I finally got around to watching Wonder Woman. We quite enjoyed it. There was a part in which Chris Pine’s character said, “My father told me once, he said, "If you see something wrong happening in the world, you can either do nothing, or you can do something". And I already tried…

March 14, 2018 | Kim Crawley

Explain Vulnerability Management

All software and hardware has vulnerabilities. So do the non-computing aspects of your organizational security, such as the physical security of your building or how susceptible your employees are to social engineering. Vulnerabilities are everywhere and are in everything. The key to good security is to know how to manage your vulnerabilities. What are they? Where are they? How can…

March 13, 2018 | Laureen Hudson

Infosec Language Grows Up: The Bishop Fox Cybersecurity Style Guide

 On February 15, Bishop Fox released their Cybersecurity Style Guide. I am absolutely stoked for them, and for the arrival of what looks like a new era in InfoSec language consistency.I was lucky enough to get to speak to Technical Editor Brianne Hughes last week. “I polled the internal team,” she told me, “and got the…

March 12, 2018 | David Bisson

Countering Crypto-Malware: A Guide to Preventing a Ransomware Infection

Ransomware had what Malwarebytes describes as a "banner year" in 2017. In the 2017 State of Malware report, telemetry gathered by the anti-malware provider reveals that business and consumer ransomware detections swelled by 90 percent and 93 percent, respectively. The monthly rate of ransomware attacks against businesses grew by approximately 10 times the rate of 2016 over the same period in 2017. A 700 percent increase in ransomware…

March 9, 2018 | Javvad Malik

Things I hearted this week 9th March 2018

It’s been an uneventful week for the most part. I did spend a lot of time reading tweets by Today In Infosec. If you don’t know of it, I suggest checking it out. As the name suggests, it tweets out news from the world of information security from previous years. I was thinking that maybe I…

March 8, 2018 | Kim Crawley

Explain What DDoS Is

Your favorite website goes offline. That firewall in your office network isn’t filtering anything and is overwhelming the server machines that it is connected to. If an LDAP port is hit by a DDoS attack, you have no Active Directory securing the user accounts on your Windows client PCs. Maybe an IMAP server was hit,…

March 7, 2018 | Javvad Malik

An Interview with Graham Cluley

I can’t remember what year I first met Graham Cluley. It may have been around 2006 at an awards event of some sort. We were both nominated in the same category; I believe it was for best security blogger. Graham was already well-established with many awards under his belt, whereas I was the jittery newbie, glad to have even…

March 6, 2018 | John McLeod

AlienVault USM Anywhere ISMS is Now Certified to ISO 27001:2013

I’m pleased to announce that AlienVault’s USM Anywhere Information Security Management System (ISMS) is certified to ISO 27001:2013 by an accredited certification body. This certification underscores our commitment to providing effective threat detection and rapid incident response capabilities in a secure cloud environment.Our certification process was led by Coalfire ISO, Inc., an ISO/IEC 27001 Certification Body…

March 2, 2018 | Javvad Malik

Things I Hearted this Week 2nd March 2018

This week London has been in the midst of snowmageddon! An inch of snow ground the city to a halt with schools closed and the capital on red alert. Fortunately, one of the perks of working from home is that I get to stay on top of the security news regardless of the weather, so put on your snow boots…

March 1, 2018 | Bob Covello

What We Lack Most in InfoSec: Inherited Credibility

Ask any InfoSec person the following question:What do you lack most in your job?Can you predict the answers?  Of course you can.  Most InfoSec folks will answer that they lack money, and resources (also known as “people”).  Some of the more creative types will also mention that they lack time.These are all…

Watch a Demo ›
GET PRICE FREE TRIAL CHAT