Well Javvad Malik has created another awesome report taking on what taking security seriously actually looks like - both for customers and providers. Here's a little excerpt:The “we take security seriously” line is the security equivalent of the infamous call center “your call is important to us” line. Everybody says…
Javvad Malik and the rest of the AlienVault team surveyed 928 participants at Infosecurity Europe 2018 on this topic. Read the full report from Javvad here!Key FindingsLooking forward, cloud security threats are the most concerning external threatInternally, phishing (55%) and ransomware (45%) lead the pack of worries for security departments92 percent would rather pay a subscription fee, allow ads, or…
We recently ran a contest on Twitter to collect the best InfoSec memes from the community. First I polled folks from my personal account to gauge interest, and wow was there interest! You know me and I definitely had to do a compedium blog on these funny as well as educational security memes. Since this blog on IT jokes from 2015…
Privacy has always had a degree of overlap with security, however, recent years has increased the dependency each has on the other. Be that with regards to protecting individual information, the use of social media, or the requirements to respond to breaches.RSA 2018 gave us an excellent opportunity to gather the opinions of InfoSec professionals. We were able to get…
RSA 2018 was the best RSA ever from an AlienVault perspective! It was a "giant leap" for sure.The booth was Out of This World:We had hundreds of folks pop by for a demo or theater presentation.The Big News! OTX Endpoint Threat Hunter Free Tool!!The statistics on OTX participation are amazing - as of this writing 86018…
If you Google “SIEM Content Engineer,” “SIEM Threat Content Engineer,” or “SIEM Content Developer,” you will see a bunch of ads, job listings and very little other content. I believe this is because the concept is new, and it appears SIEM Content Engineer is emerging as a new job title that HR departments in…
It was a great year in blogs for AlienVault! Here are the top blogs from 2017, selected by number of views from all sources. Drumroll please.Explain Bitcoin to Me by Tristan Johns. It’s an approachable but technical explanation of how Bitcoin works. MacSpy: OS X RAT as a Service by Peter Ewane. It’s about one…
I ran a poll before the holidays, to understand the InfoSec community's thoughts and attitudes on Red Teaming versus Blue Teaming a bit better. As you likely know, Red Teamers are those who non-maliciously "attack" a company, and Blue Teamers are the defenders. We've had some interesting blogs on this topic, and for a very positive…
Sure, we've had some interesting, educational and factual blogs about Red Teaming in the past, such as:Red Teamers Can Learn Secrets by Purple Teaming Red teams; a diary from the garden of Red versus Blue Be a Red Teamer to be a Better Blue Teamer: Pen Testing ala Jayson StreetRed teamers are a proud lot. They particularly…
SpiceWorld was held last week. For those unfamiliar, it is Spiceworks' yearly conference for IT pros held in Austin every year. Here's the mob scene at the AlienVault booth at the opening Happy Hour on the exhibit floor.Garrett Gross, Director, Field Enablement at AlienVault, spoke on Tuesday about Open Source Tools. It was a standing room only…
I ran a poll on Twitter recently, trying to ask this question in an open way, to see what people thought. I was surprised that a lot of folks not only voted, but also shared some strong opinions. This was the final vote count:To be of value to #infosec community, must contributors be able to write code? — Kate…
Cybersecurity Insiders, partnering with the 380,000+ member Information Security Community on LinkedIn, commissioned Crowd Research Partners to conduct an indepth study to gather insights, reveal the latest ransomware trends, and provide guidance on effectively addressing the ransomware threat. A brief extract follows, but you can read the whole report here!Key FindingsRansomware is the fastest growing security threat, perceived as…
