expert perspective

Secure Web Gateway (SWG) Security – SASE Part 3

Posted on October 6, 2022October 7, 2022 by Admin

How does it all work? First, it starts out with knowing your users and environment. By deploying sensors and integrating with common SaaS apps directly such as Microsoft Office, Google Workspace and many Identity Providers (Azure AD, Active Directory, Okta, etc.), a profile is built around the user and environment. This profile, made up of user and application behavior, can determine risk to the organization and suggest access control policies. Traffic from the ZTNA is…

Cyber Security Framework: Back to Basics

Posted on October 4, 2022October 4, 2022 by Admin

Electrical Academia Benefit of the OSI model include: Reduces complexity by dividing aspects of network operations into simpler components Standardizes interfaces, enabling more specialized design and development efforts to specific functions Accelerates evolution and makes troubleshooting easier; network admins can look at the layer that is causing an issue instead of investigating the entire network Facilitate modular engineering and prevents changes in one layer from impacting others Enables network admins to determine the required hardware…

CISA Gov Alert: 2023-25 Plan Focuses on Unified Cybersecurity

Posted on October 3, 2022October 4, 2022 by Admin

Breakdown of CISA Strategic Plan Goals & Objectives A strategy is a Litmus test for evaluating alternate plans or a guide for investing scare resources. This document plan does not meet those requirements. Instead, it lists a set of noble aspirations and goals. Goal 1: Cyber Defense, and Goal 2: Risk Reduction and Resilience, are core to CISA’s mission to protect critical infrastructure. Goal 3: Operational Collaboration and Goal 4: Agency Unification, speak to the…

Incident Response Services & Playbooks Guide

Posted on September 29, 2022September 29, 2022 by Admin

Cybersecurity Awareness Month 2022 Series No matter the size of a business, it faces the risk of a cyberattack. Over 50% of organizations experienced a cyberattack. And while proactive protection is ideal, there is no silver bullet when it comes to security—meaning you should plan for incident response as well. Yet, 63% of C-level executives in the US do not have an incident response plan, according to a report by Shred-It. That’s where an incident…

How to Prevent Ransomware as a Service (RaaS) Attacks

Posted on September 22, 2022September 22, 2022 by Admin

Connections between other ransomware and APT groups have been noted. MalwareHunterTeam tweeted many similarities between Black Basta and Conti, while Trend Micro Research found correlations between Black Basta and QakBot. SolidBit Trend Micro Research analyzed a sample of a new SolidBit ransomware variant targeting users of popular video games and social media platforms. It’s been disguised as different applications, include a League of Legends account checker tool, and an Instagram follower bot, to lure in…

Cybersecurity Awareness Month 2022: 3 Actionable Tips

Posted on September 20, 2022September 20, 2022 by Admin

Decrease the Risk Assessment Time Gap Towards Continuous Assessment Semi-annual penetration tests get a box checked and keep you out of compliance jail, but cybersecurity has moved to near-real time and so too must your assessment. Continuous monitoring has been an important goal, but we need to advance it to making continuous decisions based on that continuous monitoring. Even events such as authenticating to use a VPN are too infrequent to make actionable judgements: in…

Red Teaming to Reduce Cyber Risk

Posted on September 15, 2022September 15, 2022 by Admin

Modern organizations are primarily focused on managing complexity introduced by digital transformation as well as data privacy and compliance requirements. Along with a widening digital attack surface and the rise in a work-from-anywhere labor force, it’s clear that there’s been a crisis of perception among security teams. One faction has become overlooked—the growing sophistication of threat actors and how to stay one step ahead. What is red teaming? A red or purple team engagement simulates a…

Pros and Cons of 5G

Posted on September 13, 2022September 13, 2022 by Admin

With the introduction of the 5G Stand Alone (SA) method for operating a 5G base station independently by an independent 5G core network, 5G will finally be able to simultaneously support three different requirements: enhanced mobile broadband (eMBB) (high speed and large capacity), ultra-reliable and low-latency communication (URLLC), and massive machine type communication (mMTC) (ultra-mass terminal). Pros and Cons of 5G According to Deloitte Insights, there were 756 private network deployments in enterprises worldwide as of…

« 1 … 5 6 7 8 9 … 16 »

Cyber Security Framework: Back to Basics

How to Prevent Ransomware as a Service (RaaS) Attacks

Red Teaming to Reduce Cyber Risk

VMWARE

Helping Public Sector Organisations Define Cloud Strategy

How to change the VLAN ID of the Service Console in ESX from the command line/console

Cisco UCS and Vmware Interfaces (Vnics) HA Design Considerations

Troubleshooting network and TCP/UDP port connectivity issues on ESX/ESXi(2020669)

vSphere Client Parameters

Configuration Templates

CUE Licenses

Trouble shooting Unity Express with Call Manager Integeration & Operational Issues

CME Configuration Example: SIP Trunks to Viatalk and VoIP.ms

SIP Phone registration – CME Configuration

CUE Voicemail + VPIM networking (CUE to unity)