Network Security

Network Security | News, how-tos, features, reviews, and videos

Clues are mapped out for investigation with maps, events, dates and photos connected by red threads.
Feature

The Microsoft Exchange Server hack: A timeline

Ransomware > A masked criminal ransoms data for payment.
How-To

How malicious Office files and abused Windows privileges enable ransomware

network security / secure connections / integrated system of locks
Cybersecurity SnippetsBy

5 things CISOs want to hear about zero trust at the RSA Conference

Security executives are interested in how ZT vendors will integrate with existing technologies, supplement ongoing projects, and support business processes.

New York City / digital technology framework / binary code
Opinion

To better defend digital assets, follow physical security's playbook

It’s high time that the owners and managers of corporate networks take the same approach and sense of urgency to protecting corporate digital assets that their physical security counterparts have taken with building security.

A firmware message appears on a circuit board.
Feature

3 ways to prevent firmware attacks without replacing systems

Use these Microsoft Windows and Office features to mitigate the risk from firmware attacks. They are faster and cheaper than replacing computers.

A 'GitHub social coding' mug sits in a desktop workspace.
Feature

15 open source GitHub projects for security pros

GitHub has a ton of open-source options for security professionals, with new entries every day. Add these tools to your collection and work smarter.

vulnerable breach cyberattack hacker
Feature

Most common cyberattack techniques on Windows networks for 2020

Recent research breaks down the preferred techniques attackers use to gain access to Windows networks. Use this information to monitor your logs for these methods.

tools drill bits toolkit tookapic free cc0 via pexels binary thinkstock
Feature

21 best free security tools

Check out these free, standout software tools that will make your daily security work easier, whether it's pen-testing, OSINT, vulnerability assessment, and more.

CSO > secure mergers + acquisitions / floating puzzles pieces / abstract security mechanisms
Feature

Top cybersecurity M&A deals for 2021

The cybersecurity market is hot, and vendors are buying competitors to solidify their position or acquiring other firms to expand their offerings.

A large 'X' marks a conceptual image of a password amid encrypted data.
How-To

Tips to improve domain password security in Active Directory

Follow this advice to better secure domain passwords in a Microsoft environment.

zeroday software bug skull and crossbones security flaw exploited danger vulnerabilities by gwengoa
Feature

Zero days explained: How unknown vulnerabilities become gateways for attackers

A zero day is a security flaw that has not yet been patched by the vendor and can be exploited. The name evokes a scenario where an attacker has gotten the jump on a software vendor, implementing attacks that exploit the flaw before...

security posture / cybersecurity landscape / binary eye / locks / keyholes / firewall / gears
Cybersecurity SnippetsBy

4 steps to better security hygiene and posture management

Increasing scale and complexity have made keeping up with security hygiene and posture management cumbersome and error prone, leaving organizations exposed. Here's what leading CISOs are doing to close the gap.

Conceptual image of a password amid hexadecimal code.
How-To

How to reset Kerberos account passwords in an Active Directory environment

A regular reset of the KRBTGT account password will help prevent golden ticket attacks that allow wide unauthorized access to your network.

Encrypted blocks of multicolored data cubes rolling out.
Feature

What's next for encryption if the RSA algorithm is broken?

A recent, yet to be proven paper claiming to have found a way to "destroy the RSA cryptosystem" has cryptographers asking what might replace it.

Digital Transformation [DX] > dandelion seeds blown by a virtual wind of change
Feature

The SolarWinds hack timeline: Who knew what, and when?

Impact, detection, response, and ongoing fallout from the attack on SolarWinds' Orion remote IT management software.

Microsoft Windows security > Windows laptop + logo with binary lock and key
Feature

Microsoft 365 Defender updates bring a single portal view

New Microsoft 365 Security Center allows you to more quickly assess threat risk and take action, but you need an E5 license.

backdoor / abstract security circuits, locks and data blocks
News Analysis

PHP backdoor attempt shows need for better code authenticity verification

Attackers were able to place malicious code in the PHP central code repository by impersonating key developers, forcing changes to the PHP Group's infrastructure.

cso security hacker breach gettyimages 1134588944 by jossnatu 2400x1600px
Feature

Booming dark web gig economy is a rising threat

Experts seen a sharp increase in help-wanted ads for black hat hackers-for-hire. Here's what they are targeting and how to respond to the threat.

padlock / Domain Name System / DNS / ICANN / security
Feature

DNS over HTTPS, DNS over TLS explained: Encrypting DNS traffic

DoT and DoH provide data confidentiality with end-to-end encryption for DNS traffic, but each has trade-offs.

CSO > Azure automation for Let's Encrypt certificates
Feature

How Azure Active Directory helps manage identity for remote users

Still using Active Directory to manage identity for remote workers? You might want to consider moving to Azure Active Directory.

Load More