Security

Network visibility shows IT where problems lie, but too much information hinders protection.

On November 1, 2022, The OpenSSL Foundation released OpenSSL version 3.0.7. This release is a security-fix and addresses two “High” severity vulnerabilities. Advanced notice was shared by the OpenSSL Foundation last week, alerting the industry of the vulnerability and upcoming patch.

Investigate breaches, see trends and know everything that happened on your network with log archiving.

In conjunction with a third-party security researcher, Assetnote, we addressed a series of chained vulnerabilities within Progress WhatsUp Gold. Learn how our combined efforts lead us to fix the identified issues and mitigate the risks and protect our customers.

As IT pros already know, when we speak of ports, we mean the 16-bit virtual ports used when interconnecting systems i.e. during communication over protocols such as TCP or UDP and not physical connections on the system such as USB, HDMI etc. See the OSI model and list of port numbers and their assigned function if not an IT pro. Port 80 is commonly used for HTTP activity, for example, and many applications communicate using assigned default ports.

The old line ‘What you don't know can't hurt you’ is dead wrong when it comes to network security. What you don't know is exactly what will hurt you.

SD-WAN (the software-defined wide-area network) offers a way to create a private network from widespread consumer internet connections without limiting their connectivity.

In this article, we'll be creating a baseline that will only be for Windows servers that will only have critical updates with an auto-approval of two days. Let’s make this happen in PowerShell.

Active Directory (AD) is a Microsoft® software solution to directory services. It locates resources and can handle millions of objects in a single domain, but it can also do a lot more.

You can get a leg up on a potential attacker by figuring out what processes are running under an administrative account in your organization. One way to do that for absolutely free is to use PowerShell!

Providing fast access to applications and data while protecting digital assets are the two biggest challenges faced by network administrators. Performance and security represent the two-pronged mission that administrators find themselves facing every day.

In many jurisdictions, there is a legislative or accounting requirement to store data for a minimum of five years. Easier said than done. That's why multiple data backups are necessary.

Windows event logs are a tool that every cybersecurity and IT professional should have in his or her arsenal. They can be used locally for troubleshooting or centralized for network awareness. When utilized centrally, powerful software known as a Security Information Event Management (SIEM) can be utilized to parse and search log files. But what if you are working locally?  Is there an efficient method to do the same? You will find the answer to these questions lies in Microsoft’s most powerful tool belt, Microsoft PowerShell.

Improper configuration changes to a network—or even just one server on a network—can cause huge issues. They can degrade network performance, shut down key services, and even result in noncompliance with regulatory standards like SOX, PCI, HIPAA and FISMA. And they can compromise network security.

According to the SANS Institute, Port Scanning is one of the most popular techniques attackers use to discover services that they can exploit to break into systems. In this article, we will discuss some best practices you can employ to defend against attackers and prevent potential network breaches.

Many companies that never dreamed they’d be developing their own software are having to “roll their own.” Sometimes it’s an internal-use-only, as a custom layer over an existing platform like Salesforce, sometimes as a product they’re selling. This is what has driven the DevOps methodology over the past several years.

One relatively simple and common tool that provides additional valuable analysis into security incidents is log management.

A lot can change in a decade. In so many ways, we’re living in a completely different landscape than we were just ten years ago, and workplace technology is no exception. We’ve moved workloads to the cloud, introduced BYOD policies, and now rely on workplace wi-fi way for all corporate provisioned devices. All of this network activity puts enormous stress on enterprise networks, and IT teams need to be able to keep track of it to keep things humming. That’s where enterprise network bandwidth monitoring tools come into play.

Every device, OS and application in your IT environment generates a record of activities in the form of log files. These audit trails of activity provide valuable information when investigating security breaches and when submitting regulation compliance reports.

Log data can be a tremendous resource for protecting digital assets against cyber attacks. Trouble is, trying to make sense of all the logs generated by IT networks is like pointing a fire hose at someone dying of thirst. They’re desperate for a drink, but they simply can’t handle that much water all at once!