Powered By InformationWeek Business Technology Network
 
Welcome Guest. | Log In | Register | Membership Benefits

All News

Iranian Hackers Claim They Compromised NASA SSL Digital Certificate  May 21, 2012
'Cyber Warriors Team' says it stole information on thousands of NASA researchers via a man-in-the middle attack

Security Index Marks A Year Of Doing Business Dangerously  May 11, 2012
The Index of Cyber Security has measured top security officers' sentiment on cyberthreats for more than a year. So what does the index's steady rise mean?

Logs Still Tough To Decipher, SANS Survey Says  April 26, 2012
More organizations employ log management and SIEM tools, but are still struggling to sort the bad traffic from the good

Dead And Dying Targeted In ID Theft  April 24, 2012
IDs of 2.5 million dead Americans abused annually, new study shows

FBI Charges Man In $1 Million Stock-Fraud Hacking Scheme  April 18, 2012
Hacking crew used accounts under its control to conduct sham trades

Is Monitoring The New Must-Have Of Security?  April 14, 2012
With attacks regularly getting past the perimeter, detecting anomalies early is increasingly important. Companies should go beyond compliance, experts say

Monitoring And Understanding User Activity  April 12, 2012
Effective monitoring of user behavior can tip you off to a threat before it goes too far. Here are some tips on how to do it right

Deja Vu: Reincarnated Botnet Struck Down  March 28, 2012
Researchers at Kaspersky Lab, CrowdStrike, and Dell SecureWorks intercept bots from infamous spamming botnet -- but this time without the help of Microsoft and its legal team

Minimizing The Attack Surface Area A Key To Security  March 23, 2012
While many security experts lament the death of the network perimeter, the concept of attack surface area is still very much alive

Rogue Domain Registrars Pose Challenges  March 14, 2012
Security experts are calling for more to be done to police rogue registrars

Getting A Good Metrics Program Off The Ground  March 09, 2012
Metrics experts say that motivating a company with data requires getting away from the planning and collecting the information as soon as possible

A Case Study In Security Big Data Analysis  March 09, 2012
At the RSA Conference, Zions Bancorporation showed how Hadoop and BI analytics can power better security intelligence

Five Strategic Security Metrics To Watch  February 24, 2012
Is your security program paying off for the business? Here are five high-level metrics that the executive suite needs to watch

Security Startup Takes On SIEM  February 21, 2012
Former TippingPoint founders launch Click Security with a new platform based on automation and collaboration

Five Tactical Security Metrics To Watch  February 10, 2012
Wondering how secure the corporate network is? Here's five operational security metrics that can help. First of a two part series

Does SIEM Make Sense For Your Company?  February 10, 2012
Ten questions to ask before implementing SIEM technology -- and how to choose the right system for your enterprise

FBI Seeks 'Automated Search And Scrape' Of Social Networks  January 30, 2012
Agency issues RFI for technology to quickly find and surface 'events' via search of social networks, news sites

Do You Need A Security Operations Center?  January 28, 2012
When a company starts to worry about losing data to attack, it could be time to create a simple SOC. The most important steps to evaluating the need for an effective operations center.

IP D-Day: Major Providers, Vendors To Go IPv6 June 6  January 24, 2012
IPv6 implementations 'scrutinized' for security issues so no panic necessary, experts say amid concerns of as-yet undiscovered bugs

'Anonymous' Back With A Vengeance: Downs DoJ, MPAA, RIAA, Universal Music Websites  January 19, 2012
White House also being targeted as federal anti-piracy moves fuel widespread online attacks

Five Principles To Improve Your Security Monitoring  January 13, 2012
Companies should expect to be compromised. So how should firms better monitor their security to detect attackers?

Financial Companies Sharing Information About Security  January 13, 2012
Concerns about cyberthreats drive competing institutions to pool information, report says

Sandia Labs Offers Online DNSSEC Tool  January 12, 2012
New free visualization tool helps government agencies, businesses in their DNSSEC implementations

Study: Most Federal Agencies Uncertain About Meeting FISMA Security Monitoring Deadlines  December 14, 2011
Only 22 percent of federal IT people say their agencies have deployed continuous monitoring technology; ability to meet FISMA deadlines in doubt

Survey: Half Of Firewall Rules Improperly Configured  November 15, 2011
Firewall administration, auditing still mostly a manual process, leading to errors and breach risks



Security Monitoring Reports

report Fundamentals of User Activity Monitoring
Benchmarking normal activity and then monitoring for users who stray from that norm is an essential strategy for getting ahead of potential data and system breaches. But choosing the right tools is only part of the effort. Without sufficient training, efficient deployment and a good response plan, attackers could gain the upper hand.

report Does SIEM Make Sense For Your Company?
A security information and event management system serves as a repository for all the security alerts and logging systems from a firm's devices. But this can be overkill for a company that is understaffed or has overestimated its security information needs. In this report, we discuss 10 questions to ask yourself in determining whether SIEM makes sense for you--and how to pick the right system if it does.

report Monitoring Tools and Logs Make All The Difference
It's no longer a matter of "if" you get hacked, but when. In this special report, we take a look at ways to measure your security posture and the challenges that lie ahead with the emerging threat landscape.

Other reports from the Security Monitoring Tech Center:

Related Content

Security Management 2.0: Time to Replace Your SIEM?
Is it time? Are you waving the white flag? Has your first gen SIEM failed to meet expectations despite your investment? If you are questioning whether your existing product or service can get the job done, you are not alone. Read this Securosis white paper to learn how easy it can be to replace your SIEM with a next generation solution.

IT Executive Guide to Security Intelligence: Transitioning from SIEM to Total Security Intelligence
Read this whitepaper to learn how adopting a next generation SIEM solution provides security intelligence, to allow organizations to maintain comprehensive and cost-effective information security. Discover how security intelligence enables critical concerns in five key areas: Data silo consolidation, threat detection, fraud discovery, risk assessment/risk management, and regulatory compliance.

The Return on Security of QRadar: Improving Operational Efficiencies in Federal Government
In this study, IANS interviewed two Q1 Labs customers using QRadar to assess their Return On Security (ROS). The two customers were providers of service to the U.S. Government and had highly secure environments dealing with extremely sensitive data. The data yielded from the interviews showed substantial benefit to the organizations for the cost, both in money and staff time.

SANS What Works Webcast: Worldwide Retailer Boosts Privacy with Security Intelligence
A leading retailer with stores worldwide was seeking a more innovative tool to protect customer privacy and intellectual property. PCI compliance mandated log collection, but a vast number of different tools generated an overwhelming amount of log data, making it difficult for the small security team to review it effectively. The solution the company chose had to fit into a diverse network, provide intelligent reporting and offer a centralized management console.

Learn How Security Intelligence Can Help Combat WikiLeaks Stuxnet and Advanced Threats
WikiLeaks and Stuxnet have illustrated a few fundamental IT security issues that have underscored the need for Total Security Intelligence to counter advanced threats and to detect anomalous behavior. See how government and commercial organizations are using QRadar as an integral component of their IT security program to identify emerging threats based on context and situational awareness.




Featured Webcasts
Featured Whitepapers
Featured Reports