zafirt

Best Cybersecurity Practices: SIEM-Log Management

by

Gartner has a report on the Critical capabilities of Security Information and Event Management(SIEM) software by 13 companies. Each company was analyzed on several characteristics AccelOps, AlienVault, BlackStratus, EMC, EventTracker, HP (ArcSight), IBM Security QRadar, Intel Security, LogRythm, Micro Focus International (NetIQ), SolarWinds, Splunk, and Trustwave Holdings Characteristics that were measured: Real-time monitoring, threat intelligence, … Read more

Torte Botnet Infected 83k WordPress Hosting Servers

by

  It is an interesting document from the stateoftheinternet.com https://www.stateoftheinternet.com/downloads/pdfs/SpamBot-Investigation-whitepaper-R3.pdf This botnet had 83,000 unique infections (which include webservers running all operating systems) And on page 6 where the researchers revealed the botnet: Using these logged responses, we found that the size of this botnet is fairly large. Over 1,400,000 (including duplicates from the c2) probe requests … Read more

Cyberjoke Friday Halloween edition

by

  Kind of a Halloween mask/virus  vs retrovirus angle from TecheBlog http://www.techeblog.com/index.php/tech-gadget/18-funny-and-creative-geek-jokes. And even a Halloween-cloud computing angle also from Pinterest  and obviously CloudTweaks.com   I found a Halloween joke at https://karthiksankar.wordpress.com/2008/05/23/programming-jokes/    here are my 101(binary) favorites: ——————- Why do programmers always mix up Halloween and Christmas? Because Oct 31 equals Dec 25.  —————— There are … Read more

New Credit Cards(EMV) Hacked in France

by

EMV(Europay, MasterCard, Visa) is the standard with the pin and chip technology which the US has finally moved to on October 1st of this year. Since EMV history and about https://www.emvco.com/about_emv.aspx So it is good that we have gotten up to speed from our days of just mag stripe and pin number.  But since the standard has … Read more

Hybrid Clouds Not Secure?

by

Rich Mogull at Scurosis Blog (#13 at http://oversitesentry.com/security-news-reviewed/) has the latest post https://securosis.com/blog/hybrid-clouds-an-ugly-reality The problem? A Hybrid cloud is by definition part cloud and part local systems.  One can easily imagine administration problems as files and data have to bridge both environments. The disadvantage is the loss of compartmentalization, i.e. the ability to say the cloud … Read more