StealthWatch Labs Blog
POSTED BY TK Keanini on 10.30.2014
This past year, we have seen some pretty scary stuff happen in cybersecurity. Being that Halloween is almost here, I thought I would share with you some scenarios that keep me up at night. If you enjoy a good scare, read on.
POSTED BY TK Keanini on 10.22.2014
To safeguard information that could bring harm to your organization or customers if it falls into the wrong hands, you need to be ready to respond promptly and proactively to an attack and take immediate control of the situation. One wrong click has the potential to compromise your network and data, but utilizing secure communication and promoting safe habits among users can significantly reduce the likelihood of a successful attack.
POSTED BY on 10.15.2014
Lancope Director of Security Research Tom Cross will deliver a complimentary webinar on Wednesday, October 22 at 11 a.m. ET / 8 a.m. PT to help organizations cope with ever-advancing cyber threats. On today's increasingly militarized Internet, companies, non-profits, activists and individual...
CATEGORIES: 
POSTED BY Brandon Tansey on 10.15.2014
A few short weeks ago, the details of the Shellshock vulnerability were made public. Since the bug was published, we’ve seen all kinds of scanning activity on the Internet. Some of these scans were benign scans by researchers, but others were distributing malware. We were immediately curious about...
POSTED BY Brandon Tansey on 09.25.2014
On Wednesday afternoon, the details behind CVE-2014-6271 were published to the OSS-Sec mailing list. Shortly after that, the bug that is now being called “Shellshock” took off. Troy Hunt put together another write-up worth reading (the comments have some good information as well), but in short:...
POSTED BY Tom Cross on 09.17.2014
One of the concerns that has been raised about the Heartbleed vulnerability is that it was introduced into the OpenSSL code base several years ago, and it’s possible that some attackers were aware of it and launching attacks before it was publicly disclosed this week. Unfortunately, the attack,...
POSTED BY Tom Cross on 09.05.2014
In the last several installments of this blog post series, we spent some time talking about 1) the different types of insider threats, 2) how to combat each one, and 3) how network logs can play a vital role in thwarting all of the various insider threat actors. Below is a Top 10 List recapping...
CATEGORIES: 
POSTED BY Tom Cross on 08.21.2014
In Part 2 of this blog series, we discussed various security tools that can be used to detect and subvert the different classes of insider threats. While each type of insider threat requires different security measures, one technique that can help tremendously across the board is the monitoring of...
POSTED BY Tom Cross on 08.05.2014
Last year Edward Snowden revealed that the NSA is collecting the telephony metadata of millions of Americans. This revelation has sparked a debate about the power of metadata. Supporters of the program have attempted to reassure the public that their privacy is not being violated because the...
POSTED BY Tom Cross on 08.04.2014
Part 1 of this blog post series explained the various types of insider threats lurking on enterprise networks. Due to their variant characteristics, each type requires a separate set of security controls. In this post we outline the different defensive measures that can be put into place to address...

Pages