network security Archives - Page 10 of 20

Palo Alto Networks to Acquire Attack Surface Management Firm Expanse in $800 Million Deal

Issued by: Security Week

As its largest acquisition to date, Palo Alto will pay $670 million in cash and stock and approximately $130 million in equity awards. Expanse’s platform provides customers with a vulnerability map of externally exposed and untracked assets and helps evaluate and mitigate risk. Following the acquisition, Expanse’s attack surface management capabilities will be integrated into…

Network Security

Routers, NAS Devices, TVs Hacked at Pwn2Own Tokyo 2020

Issued by: Security Week

Due to the COVID-19 pandemic, the competition has been turned into a virtual event and Pwn2Own Tokyo is actually coordinated by Trend Micro’s ZDI from Toronto, Canada, with participants demonstrating their exploits remotely. Organizers have offered significant prizes for exploits targeting a wide range of mobile and IoT devices, but participants have only focused on…

Network Security

NAT Slipstreaming: Visiting Malicious Site Can Expose Local Network Services to Remote Attacks

Issued by: Security Week

Dubbed NAT Slipstreaming, the attack can be triggered when the victim visits a specially crafted website, exploiting the browser and Application Level Gateway (ALG), a connection tracking mechanism present in firewalls, NATs, and routers. According to the researcher, the attack chains “internal IP extraction via timing attack or WebRTC, automated remote MTU and IP fragmentation…

Network Security

Focusing on the Fundamentals of Network Security

Issued by: Security Intelligence

Focus on Security Fundamentals One of the key fundamental approaches for security is to ensure your security team can identify, investigate and respond to threats. We recommend mining network data to help identify potential vulnerabilities and understand the nature of the cybersecurity threats that have emerged during the crisis. This can help offset increases in…

Network Security

4 Cybersecurity Lessons from the Pandemic

Issued by: Dark Reading

I switched from epidemiology to network security as my day job years ago, but today’s pandemic reminds me of the similarities between the two fields. There are many lessons we can take from the real-world virus and apply them to security in the online world. It may not be obvious, but the spread of information…

Network Security

Threat modeling explained: A process for anticipating cyber attacks

Issued by: CSO

Threat modeling definition Threat modeling is a structured process through which IT pros can identify potential security threats and vulnerabilities, quantify the seriousness of each, and prioritize techniques to mitigate attack and protect IT resources. This broad definition may just sound like the job description of a cybersecurity professional, but the important thing about a…

Vulnerabilities

What are vulnerability scanners and how do they work?

Issued by: CSO

Vulnerability scanners are automated tools that allow organizations to check if their networks, systems and applications have security weaknesses that could expose them to attacks. Vulnerability scanning is a common practice across enterprise networks and is often mandated by industry standards and government regulations to improve the organization’s security posture. There are many tools and…

Network Security

5 Ways Enterprises Inadvertently Compromise Their Network Security

Issued by: Dark Reading

Strong network security is essential, yet creating and maintaining bulletproof network protection remains an elusive goal for many enterprises. Ensuring that every potential gap is securely sealed continues to be a challenge for organizations of all types and sizes. Even more distressing is the fact that many enterprises fail to take some basic actions that…

Network Security

Free security resources for work-from-home employees during the COVID-19 crisis

Issued by: CSO

As the world “shelters in place” amid the COVID-19 crisis, some tech companies are stepping up and offering their products and services free of charge for a limited time. These offers will help organizations set up and protect remote employees faster. In some cases, vendors are also offering support services to help companies through the…

Network Security

Global threat groups pose new political and economic dangers

Issued by: CSO

While widely known advanced persistent threat (APT) groups emanating from Russia and China grab most of the spotlight, an array of other nation-state and adjacent threat actors are increasingly launching cyberattacks around the globe. At this year’s Cyberwarcon conference, nearly 20 of the world’s top cybersecurity researchers presented their thoughts on these less visible and…