Resources

Hopefully for most of you, this is old news, but I know how busy everyone gets, especially this time of year with the end of school coming upon us.   So, in case you missed it Microsoft RDP has been back in the news again as the source in yet another serious vulnerability – dubbed BlueKeep […]

I was recently reading a security study that said that 25% of applications are unpatched for an entire year!  As you approach the summer remember that you need to patch not only the operating system but also all your applications. Many of our biggest threats are application based: Adobe Flash Oracle Java Adobe Reader (PDFs) […]

Now that we have shifted to predominantly remote workers and remote teaching and learning, we have a number of new challenges as well as increased threats. Challenge #1 – Remote File Access.   The solution is moving files from traditional home directories and traditional common drives to cloud-based shared folders and home directories.

This tidbit is part three in a series on understanding some mechanisms available to you for protecting e-mail sent from your domain.   We covered this topic in last month’s Tech Talk / SYSOP meetings but for all those that missed them or those that want a refresher, I am covering this again here in this […]

This tidbit is part two in a series on understanding some mechanisms available to you for protecting e-mail sent from your domain. We covered this topic in last month’s Tech Talk / SYSOP meetings but for all those that missed them or those that want a refresher, I am covering this again here in this […]

Bob and I have discussed over and over the need for improved public wireless configuration.   Some of you have gotten the message.  Sadly many have not.  As we approach the summer, let’s get this fixed once and for all. Here are a few design changes many of you need to implement: If your endpoints in […]

Do you know how secure you are from the outside world?  Maybe you’re new and inherited a network, or there has been so much churn over the years with servers being added and retired and software previously available in-house now being hosted?   Maybe you have just lost track of patching? Regardless of the reason, a […]

I have been watching the Cisco AMP and Paladin CyberSentinel Managed Endpoint Detect & Respond consoles for a number of clients of late.  One thing is extremely apparent. Your administrators are under constant attack from emails with fake invoices, as well as Microsoft Word and Excel documents – all of which are infected.

This tidbit is a refresher on looking at Cisco Firepower Intrusion Event logs and daily reports. Specifically, I wanted to review for all of you again the meaning of two key columns, the Impact and Inline Result columns The Firepower Impact scale is designed to help the recipient understand where to focus scarce resources first.

Keeping up with my theme on DNS related posts, this week I will again reprise a post from over a year ago on the importance of implementing proper control of DNS as part of your malware protection program.   It remains as valuable part of your overall all network and security management policies.