December 23, 2013 | Conrad Constantine

How to Handle Your First Security Breach: Survival Tips

So you've finally accepted it's just a matter of time before you need to handle your first security breach; despite all the work you've put in to your monitoring and response program, the long hours chasing down those last unidentified systems on the network, the endless meetings with department stakeholders and the uncountable hours optimizing your SIEM'…

December 17, 2013 | Sandy Hawke

What’s New in AlienVault v4.4?

Over the past ten years or so, I've worked on various computer security product teams. And in my experience prior to AlienVault, it felt like somewhat of an arms race with other vendors. Trying to release the next great big feature before the other guys can. And while that competitive spirit can sometimes produce leaps in technology innovation, as…

Get the latest security news in your inbox.

Subscribe via Email

December 10, 2013 | Lauren Barraco

What are the most common types of malware?

APTs (Advanced Persistent Threats) get all the press, but generally the most common types of malware cause the most damage when considered in the aggregate. Broad-based attacker techniques are effective because they benefit from the reuse and recycling of the same basic sets of malicious code when targeting organizations. That's why it's important to drive awareness regarding these…

December 3, 2013 | Sandy Hawke

The Agony & Ecstasy of Open Source Software

An Interview with Dominique Karg, AlienVault's co-founder and Chief Hacking Officer One of the most interesting debates in IT/infosec circles is around the use of and reliance upon open source security software. Open source security software has its share of fans as well as detractors, and I thought it would be interesting to get a perspective from one…

November 26, 2013 | Sandy Hawke

Rethinking Vulnerability Management: The attacker’s perspective

Here's a really basic question... Why do we do vulnerability management? If your child asked you that question, how would you answer? It’s pretty simple really. We need to find and fix vulnerabilities because that’s what attackers exploit. You would then likely explain to your child that vulnerabilities are weaknesses, and weaknesses can be exploited…

November 19, 2013 | Patrick Bass

PCI DSS v3.0: What’s new and some key recommendations

On November 7, the Payment Card Industry (PCI) updated security requirements for handling credit card numbers and related data. The updated Data Security Standard (DSS) 3.0 reflects a number of key changes important to any organization that stores, processes, or transmits cardholder data (CHD). The new requirements become effective January 1, 2014. The older 2.0 standard will remain active until December 31, 2014 to help ensure adequate…

November 11, 2013 | Lauren Barraco

Log Analysis 101

The challenge for any security practitioner is the same: how to get adequate security visibility for your organization. Securing your environment requires an understanding of the current and evolving threat landscape as well as knowledge of network technology and system design. The traditional approach to event log analysis says “collect logs from everything connected to the network and let…

November 6, 2013 | Sandy Hawke

Top Five Myths About Log Management

Event logs provide all the information you need to troubleshoot operational errors, and investigate potential security exposures. They are literally the bread crumbs of the IT world. But as you're likely aware, finding the insight you need inside those scattered bread crumbs, isn't all that straightforward. Thankfully, there are some useful technologies that can assist with bringing together…

November 4, 2013 | Sandy Hawke

Five Common Security Mistakes and How to Detect Them

We’ve all made mistakes. And the best we can hope for is that we learn from them. Unfortunately, IT security mistakes can often have much more wide-ranging consequences than your standard mistake like a missed typo in a press release or a forgotten name of a new colleague. That’s why it’s so critical to…

November 4, 2013 | Sandy Hawke

Welcome to Security Essentials

"Simplicity is the ultimate sophistication." --Leonardo Da Vinci For the past few decades, I've had a hard time in cocktail party conversations. When someone asks what you do for a living, it's far simpler to say, "I'm a teacher" or "I work on Wall Street" than "I help companies secure their networks and data against bad people…

Watch a Demo ›
Get Price Free Trial