Network security

Enterprise cyberdefense strategies must include network security best practices. Get advice on essential network security topics such as remote access, VPNs, zero-trust security, NDR, endpoint management, IoT security, hybrid security, Secure Access Service Edge, mobile security and more.

Top Stories

News 08 Jun 2023
Barracuda: Replace vulnerable ESG devices 'immediately'

Customers with email security gateway appliances affected by a recent zero-day flaw, CVE-2023-2868, are being urged to replace devices, even if the hardware has been patched. Continue Reading
Tip 07 Jun 2023
6 blockchain use cases for cybersecurity

Is blockchain secure by design, or should blockchains be designed for security? Learn more through these six security and privacy use cases for blockchain. Continue Reading

News 31 Dec 2018

Why dating app security flaws should concern enterprises

Vulnerable dating apps on BYODs pose risks to more than just individual users. Find out what security flaws are common in these apps and what they mean for enterprises. Continue Reading
Tip 19 Dec 2018

The benefits of using a cloud honeypot for threat intelligence

A cloud honeypot can help enterprises gather threat intelligence. Expert Frank Siemons explains why a cloud-based honeypot deployment is preferable to a traditional one. Continue Reading
News 18 Dec 2018

Huawei bans set to continue, despite lack of supporting evidence

While the number of countries with Huawei bans in place grows and more issue warnings, a German investigation found no evidence of spying to support the fear. Continue Reading
Tip 13 Dec 2018

How a flaw in Apple DEP misuses an MDM server

Hackers are able to enroll their devices in an organization's MDM server via a flaw in Apple DEP. Expert Michael Cobb explains how hackers conduct these attacks. Continue Reading
Answer 11 Dec 2018

FragmentSmack: How is this denial-of-service exploited?

FragmentSmack, a DDoS vulnerability first discovered in Linux, affects Windows as well as nearly 90 Cisco products. Discover how it can be exploited with Judith Myerson. Continue Reading
Infographic 03 Dec 2018

Still no answers to endpoint security protection, survey finds

The frequency of endpoint attacks is on the rise, with 76% of IT security professionals reporting that their organization was compromised by new or zero-day (unknown) exploits. Continue Reading
Tip 21 Nov 2018

How to configure a vTAP for cloud networks

A vTAP can give enterprises better visibility into their cloud networks. Expert Frank Siemons of InfoSec Institute explains how virtual network TAPs work and the available options. Continue Reading
Answer 19 Nov 2018

How does a Bluetooth vulnerability enable validation attacks?

Bluetooth devices might be at risk after a new Bluetooth vulnerability was found targeting firmware and operating system software drivers. Learn how it works and can be mitigated. Continue Reading
Blog Post 12 Nov 2018

Android Ecosystem Security Transparency Report is a wary first step

Reading through Google's first quarterly Android Ecosystem Security Transparency Report feels like a mix of missed opportunities and déjà vu all over again. Much of what is in the new Android ... Continue Reading
News 09 Nov 2018

New spam botnet infects over 100,000 home routers

News roundup: A new spam botnet infected over 100,000 home routers through a UPnP vulnerability, according to researchers. Plus, HSBC Bank reported a data breach, and more. Continue Reading
News 02 Nov 2018

Bleedingbit vulnerabilities put Wi-Fi access points at risk

Armis researchers discovered two chip-level Bluetooth vulnerabilities -- dubbed Bleedingbit -- that could allow pseudo-remote code execution on wireless access points. Continue Reading
Feature 02 Nov 2018

Mobile security trends: app containers, app wrapping for BYOD

Threats evolve, and so should mobile security strategies. Mike Chapple explains how an app containers and app wrapping can protect enterprise devices and corporate assets. Continue Reading
Tip 25 Oct 2018

How to protect enterprise ICS networks with firewalls

ICS network security can be improved using firewalls. Expert Ernie Hayden explains how ICS-specific firewalls can help keep ICS networks strong and protected. Continue Reading
Answer 18 Oct 2018

How does the resurgent VPNFilter botnet target victims?

After a comeback of the Russian-built VPNFilter botnet, home network devices are at risk. Learn how this malware targets victims with expert Nick Lewis. Continue Reading
News 11 Oct 2018

Patched MikroTik router vulnerability worse than initially thought

Tenable Research finds new exploits of an already patched MikroTik router vulnerability that could enable hackers to launch remote code execution attacks. Continue Reading
Tip 04 Oct 2018

How Shodan helps identify ICS cybersecurity vulnerabilities

Shodan can be a helpful tool for security pros to locate ICS cybersecurity vulnerabilities. Expert Ernie Hayden explains how Shodan works and how it can be used for security. Continue Reading
Answer 26 Sep 2018

Android Trojan: How is data being stolen from messaging apps?

Trustlook Labs discovered an Android Trojan stealing data from messaging apps. Learn what mobile security pros should look for to detect this malware with expert Nick Lewis. Continue Reading
News 24 Sep 2018

AI and machine learning expected to solve security problems

A global Ponemon survey of security professionals found that many believe artificial intelligence and machine learning technology will improve enterprise and IoT security. Continue Reading
Answer 19 Sep 2018

WPA3 protocol: Should enterprises implement the changes?

The Wi-Fi Alliance released the updated WPA3 protocol, adding security enhancements to the Wi-Fi access process. Learn why enterprises should update with Judith Myerson. Continue Reading
Answer 18 Sep 2018

What is VPNFilter malware and how can users protect themselves?

A new threat named VPNFilter was discovered by cybersecurity researchers after home and office routers were compromised. Learn how this malware works with Judith Myerson. Continue Reading
News 17 Sep 2018

New Mirai variant attacks Apache Struts vulnerability

New variants of the Gafgyt and Mirai botnets are targeting unpatched enterprise devices, which indicates a greater shift away from consumer devices, according to researchers. Continue Reading
Answer 17 Sep 2018

How can attackers exploit a buffer underflow vulnerability?

A buffer underflow was found to be caused by a vulnerability in strongSwan's open source VPN. Learn how this is possible and how attackers can exploit it with Judith Myerson. Continue Reading
Answer 10 Sep 2018

How does the Android Rowhammer exploit affect users?

Android Rowhammer is a hardware weakness in older devices that puts users at risk of remote exploits. Expert Michael Cobb explains why it's important to upgrade to newer devices. Continue Reading
Tip 30 Aug 2018

How hard-coded credentials threaten ICS security

Hard-coded credentials open industrial control systems up to unauthorized access by malicious actors and threaten ICS security. Expert Ernie Hayden explains the threat and what enterprises can do about it. Continue Reading
Tip 23 Aug 2018

Network reconnaissance: How to use SI6 Networks' IPv6 toolkit

SI6 Networks' IPv6 toolkit can do network reconnaissance using search engines and the Certificate Transparency framework. Learn how to use IPv6 toolkits from expert Fernando Gont. Continue Reading
Answer 22 Aug 2018

My Cloud EX2: How can this device expose unauthorized data?

SpiderLabs discovered My Cloud EX2 backup devices exposing unauthorized HTTP requests. Join Judith Myerson as she explains how this happens, as well as the impact on DLNA devices. Continue Reading
Answer 20 Aug 2018

How does an IMSI catcher exploit SS7 vulnerabilities?

A warning was issued by the Department of Homeland Security regarding the exploitation of SS7 vulnerabilities by IMSI catchers. Learn how this puts mobile communication at risk. Continue Reading
Answer 16 Aug 2018

What is missing from the NIST/DHS botnet security report?

The joint DHS and NIST report on botnet security offers goals and action items to counter distributed cyberthreats. Learn the report recommendations with expert Nick Lewis. Continue Reading
Tip 07 Aug 2018

What to do when IPv4 and IPv6 policies disagree

Unfortunately for enterprises, IPv4 and IPv6 policies don't always agree. Fernando Gont examines the differences between these two security policies, as well as some filtering rules. Continue Reading
Tip 25 Jul 2018

Anonymity tools: Why the cloud might be the best option

The cloud might be the best of the available anonymity tools. Expert Frank Siemons explains the other options for anonymity for security and why the cloud is the best for privacy. Continue Reading
News 19 Jul 2018

NSS Labs ranks next-gen firewalls, with some surprises

Researchers used individual test reports and comparison data to determine the value of investments in next-generation firewall technology. Continue Reading
Answer 11 Jul 2018

What are the implications of DNS over HTTPS for privacy?

With enterprises testing DNS over HTTPS to encrypt domain name traffic, some fear the potential privacy issues. Discover the challenges and benefits of the new protocol. Continue Reading
News 26 Jun 2018

New WPA3 security protocol simplifies logins, secures IoT

Latest WPA3 security protocol update adds new features to the Wi-Fi access specification for simple and secure wireless access for individuals, as well as enterprises. Continue Reading
News 22 Jun 2018

Unprotected Firebase databases leaked over 100 million records

Android and iOS mobile apps that use unprotected Firebase databases leaked over 100 million records that include PHI, financial records and authentication information. Continue Reading
News 22 Jun 2018

No more selling mobile location data, promise carriers

Sen. Ron Wyden got all major U.S. wireless carriers to promise not to sell mobile location data to third parties, but experts question the basic security practices in place. Continue Reading
Feature 01 Jun 2018

Stranger things: IoT security concerns extend CISOs' reach

The internet of things has drastically expanded the scope of what enterprises need to protect, adding challenges big and small to CISOs' responsibilities. Continue Reading
News 01 Jun 2018

SS7 vulnerabilities enable breach of major cellular provider

News roundup: A major cellular network may have been compromised by exploiting SS7 vulnerabilities, according to reports. Plus, Kaspersky's lawsuits have been dismissed, and more. Continue Reading
Answer 31 May 2018

How has a Broadcom flaw affected the Lenovo ThinkPad?

A previously disclosed flaw found in Broadcom's Wi-Fi controller chips is now believed to affect the Lenovo ThinkPad. Learn how this vulnerability works with expert Judith Myerson. Continue Reading
29 May 2018

Stranger things: IoT security concerns extend CISOs' reach

Continue Reading
News 17 May 2018

Securus hack exposes law enforcement customers of location tracking

Following news that it provides near real-time location data to law enforcement without warrants, a Securus hack exposed information on those law enforcement customers. Continue Reading
Tip 09 May 2018

Protecting the DNS protocol: How DNSSEC can help

Securing the DNS protocol is no joke. Learn what the DNS Security Extensions are and the efforts the United States government is taking to push DNSSEC adoption. Continue Reading
Tip 09 May 2018

Ways to solve DNS security issues in your organization

Get up to speed fast on means and methods for reducing or eliminating security-related issues in DNS, an integral service upon which the internet depends. Continue Reading
Answer 04 May 2018

How will the new WPA3 protocol strengthen password security?

The development of WPA3 helps advance Wi-Fi protocol, as the next generation of Wi-Fi-enabled devices begins to demand more. Expert Michael Cobb explains how it differs from WPA2. Continue Reading
News 26 Apr 2018

IXPs asked to mind their 'MANRS' to improve routing security

The Internet Society expands its Mutually Agreed Norms for Routing Security, or MANRS, to IXPs as a means to protect the internet from route hijacking, leaks and IP address spoofing. Continue Reading
News 17 Apr 2018

Device wars: Researchers track new IoT botnet DDoS attacks

A variant of the Mirai IoT botnet is the suspected cause of distributed denial-of-service attacks on financial services companies earlier this year, according to Recorded Future. Continue Reading
News 16 Apr 2018

CrowdStrike Falcon X takes aim at incident response

CrowdStrike introduced a new component for the vendor's cloud-based security platform -- dubbed Falcon X -- that looks to speed up enterprises' incident response times. Continue Reading
News 13 Apr 2018

A UPnP vulnerability hides bad traffic in a new way

News roundup: Home routers are susceptible to a UPnP vulnerability that proxies bad traffic in a new way. Plus, AMD and Microsoft released patches for the Spectre flaw, and more. Continue Reading
Feature 03 Apr 2018

New cloud threats as attackers embrace the power of cloud

Safeguarding your critical data is getting harder as threat actors embrace the advantages -- and missteps -- of cloud. Here's what to watch out for in 2018. Continue Reading
Answer 30 Mar 2018

What VPN alternatives should enterprises consider using?

VPN vulnerabilities in products from popular vendors were recently found to enable serious threats. Discover how detrimental these threats are and best alternatives to the use of VPNs. Continue Reading
News 01 Mar 2018

Memcrashed DDoS amplification exploits memcached UDP port

Memcrashed, a devastating new DDoS amplification attack that exploits UDP port 11211, is only possible when memcached servers are exposed to the public internet. Continue Reading
Answer 15 Feb 2018

How does the Devil's Ivy bug compromise security cameras?

The Devil's Ivy bug affects millions of internet-connected security cameras. Expert Judith Myerson explains how the exploit works and what can be done to prevent it. Continue Reading
News 30 Jan 2018

Critical Cisco ASA vulnerability patched against remote attacks

Experts urge users to patch a new Cisco ASA vulnerability that earned the most critical CVSS score of 10.0 and could lead to remote code execution and denial-of-service attacks. Continue Reading
Tip 30 Jan 2018

Cryptojacking: How to navigate the bitcoin mining threat

Due to the rising value of bitcoin and other cryptocurrency, hackers have started to use cryptojacking to mine bitcoin. Learn what this means for end users with expert Nick Lewis. Continue Reading
News 26 Jan 2018

A series of new IoT botnets plague connected devices

News roundup: New IoT botnets compromise tens of thousands of devices worldwide. Plus, Kaspersky Lab filed an injunction against DHS, mobile POS gets a PCI standard, and more. Continue Reading
News 19 Jan 2018

Okiru malware puts billions of connected devices at risk

News roundup: Okiru, a new Mirai variant, could put over 1.5 billion devices at risk of a botnet. Plus, G Suite Enterprise now comes with a security center, and more. Continue Reading
Tip 17 Jan 2018

TLS 1.3: What it means for enterprise cloud use

The latest draft version of TLS 1.3 is out, and it will likely affect enterprises that use cloud services. Expert Ed Moyle explains the impact on users and their monitoring controls. Continue Reading
Tip 16 Jan 2018

What the OWASP IoT security project means for device creation

The OWASP IoT security project aims to get developers to incorporate security at the beginning of a device's life. Expert Ernie Hayden outlines how it is tackling the issue. Continue Reading
News 11 Jan 2018

WPA3 Wi-Fi protocol aims to improve security in 2018

The new WPA3 Wi-Fi protocol aims to improve security for IoT devices and strengthen password security with protections against brute force attacks. Continue Reading
Tip 11 Jan 2018

Security compliance standards as a guide in endpoint plans

Consider security compliance regulations for your industry as a starting point and a guide for planning your specific approach to enterprise endpoint protection. Continue Reading
Tip 11 Jan 2018

The endpoint security controls you should consider now

With the perimeter wall gone, securing enterprise endpoints is even more essential. Learn how automation and other developments can up endpoint protection now. Continue Reading
Answer 11 Jan 2018

How should enterprise firewall settings be reviewed?

Getting firewall settings right is one of the most basic ways to protect enterprise data from accidental exposures. Expert Judith Myerson discusses how to review firewall policies. Continue Reading
Feature 08 Jan 2018

The top six EMM vendors offering MDM capabilities

With vendors expanding their horizons from just MDM to more comprehensive EMM products, it is crucial to look at these EMM vendors who offer MDM capabilities. Continue Reading
Feature 08 Jan 2018

Comparing the leading mobile device management products

Expert Matt Pascucci examines the top mobile device management offerings to help you determine which MDM products are the best fit for your organization. Continue Reading
Answer 08 Jan 2018

How can a BGP vulnerability in Cisco products be fixed?

A BGP vulnerability in some Cisco products enabled denial-of-service attacks. Expert Judith Myerson explains the vulnerability and how Cisco fixed the problem. Continue Reading
Feature 05 Jan 2018

Six questions to ask before buying enterprise MDM products

Mobile device management can be a crucial part of enterprise security. Expert Matt Pascucci presents the key questions to ask when investigating MDM products. Continue Reading
Feature 04 Jan 2018

Understand the basics of mobile device management products

Implementing MDM products has traditionally been the go-to answer for securing mobile devices, but with the role of mobile devices in the enterprise growing, admins need a more comprehensive security option. Continue Reading
Feature 04 Jan 2018

Three enterprise scenarios for MDM products

Expert Matt Pascucci outlines three enterprise uses cases for mobile device management products to see how they can protect users, devices and corporate data. Continue Reading
Answer 02 Jan 2018

Broadpwn flaw: How does the new iOS exploit compare?

An iOS exploit similar to the Broadpwn flaw was recently developed by a researcher at Google's Project Zero. Expert Kevin Beaver explains what the exploit is and how it works. Continue Reading
Blog Post 29 Dec 2017

Official TLS 1.3 release date: Still waiting, and that's OK

Protocol scrutiny is good for the upcoming TLS 1.3 update as the process continues to expose, and fix, problems. Continue Reading
Feature 15 Dec 2017

Three reasons to implement an NAC system

The growth in devices on the network has heightened the need for network access control products. This article presents scenarios where an enterprise might need an NAC system. Continue Reading
Answer 15 Dec 2017

How can a vulnerability in Ruggedcom switches be mitigated?

Vulnerabilities in Ruggedcom switches could open the industrial switches and other communication devices up to attacks. Expert Judith Myerson explains how to mitigate the risks. Continue Reading
Answer 14 Dec 2017

Which 4G vulnerabilities should BYOD users be aware of?

Enterprises should consider pressing 4G vulnerabilities when developing a BYOD strategy for their employees. Expert Judith Myerson explains the flaws and what to do about them. Continue Reading
Answer 05 Dec 2017

iOS updates: Why are some Apple products behind on updates?

A study by Zimperium found that more than 23% of iOS devices aren't running the latest software. Matt Pascucci explains how this is possible, even though Apple controls iOS updates. Continue Reading
Answer 28 Nov 2017

How can attacks like the Cherry Blossom project be prevented?

With the WikiLeaks Cherry Blossom project, attackers can potentially inject malicious firmware into wireless routers. Expert Michael Cobb explains how to stop it from happening. Continue Reading
Answer 16 Nov 2017

What QNAP vulnerabilities affect NAS storage device security?

QNAP vulnerabilities in NAS enabled attackers to control devices. Expert Judith Myerson explains each of the QNAP NAS vulnerabilities and their fixes. Continue Reading
Tip 09 Nov 2017

How to prepare for potential IPv6 DDoS attacks

Enterprises learn how to prepare for IPv6 with DDoS attack tools. Michael Cobb further addresses the inevitable attacks and what users can do. Continue Reading
Answer 25 Oct 2017

How did a Windows Defender antivirus bug enable remote exploits?

A vulnerability in Microsoft's Windows Defender antivirus tool left users open to remote code exploitation. Expert Nick Lewis explains how it happened, and what to do about it. Continue Reading
News 17 Oct 2017

KRACK WPA2 flaw might be more hype than risk

Researchers discover a WPA2 vulnerability and brand it KRACK, but some experts say the early reports overstate the risk of the flaw and downplay the difficulty of an exploit. Continue Reading
Answer 09 Oct 2017

How does an Amazon Echo vulnerability enable attackers to eavesdrop?

Hackers could take advantage of a physical Amazon Echo vulnerability to turn the Echo into a listening device. Judith Myerson explains how this works and what can be done about it. Continue Reading
News 06 Oct 2017

Dnsmasq server flaws unmasked and patched by Google

News roundup: Google researchers find and patch vulnerabilities in the Dnsmasq server that are used widely in routers and IoT devices. Plus, EU-U.S. Privacy Shield challenge and more. Continue Reading
Tip 02 Oct 2017

Securing endpoints with supplementary tools protects data

Learn how network access control (NAC), data loss prevention (DLP) and robust data destruction tools secure the data in your corporate endpoints against data loss. Continue Reading
Answer 28 Sep 2017

How can a DDoS reflection attack abuse CLDAP?

A new exploit of CLDAP servers can be used for a DDoS reflection attack that gives attackers a 70x boost. Nick Lewis explains how to defend against this new threat. Continue Reading
Answer 07 Sep 2017

How do network management systems simplify security?

Network security teams can find themselves overwhelmed with protecting an enterprise network. Expert Matthew Pascucci explains how network management systems can help with that. Continue Reading
Answer 05 Sep 2017

Should an enterprise BYOD strategy allow the use of Gmail?

Using personal Gmail accounts for business purposes is not a secure enterprise BYOD strategy. Expert Matthew Pascucci discusses why companies should avoid implementing this tactic. Continue Reading
Feature 25 Aug 2017

Learn what network access control systems can do for you

Network access control systems keep rogue or compromised devices off of corporate networks. See how they work and the other security technologies with which they work. Continue Reading
Answer 25 Aug 2017

How is cross-platform malware carried in Word docs?

Cross-platform malware enables attackers to leverage their attacks using infected Microsoft Word docs. Expert Nick Lewis explains how the attacks work and how to defend against them. Continue Reading
News 04 Aug 2017

IoT device security bill mandates security standards

News roundup: U.S. Senators introduce a bipartisan bill to standardize IoT device security for government vendors. Plus, Anthem suffers another data breach, and more. Continue Reading
Feature 02 Aug 2017

Symantec Endpoint Protection and the details for buyers to know

Expert Ed Tittel examines Symantec Endpoint Protection, an intrusion prevention, firewall and antimalware product for physical and virtual endpoints. Continue Reading
Feature 02 Aug 2017

A closer look at Kaspersky antimalware protection services

Expert Ed Tittel looks at Kaspersky antimalware product Endpoint Security, which provides multilayered protection against malware, phishing attacks and other exploits. Continue Reading
Feature 01 Aug 2017

Details of Trend Micro Worry-Free Business Security Services

Expert Ed Tittel takes a closer look at Trend Micro Worry-Free Business Security Services, an antivirus and antimalware product for small organizations. Continue Reading
Feature 31 Jul 2017

Trend Micro OfficeScan endpoint protection software and its offerings

Expert contributor Ed Tittel takes a look at Trend Micro OfficeScan, an endpoint protection product with antivirus and antimalware functionality for physical and virtualized endpoints. Continue Reading
Feature 31 Jul 2017

The various offers of Microsoft System Center Endpoint Protection

Expert Ed Tittel examines System Center Endpoint Protection, Microsoft's native Windows antivirus and antimalware security product. Continue Reading
Answer 31 Jul 2017

Did DDoS attacks cause the FCC net neutrality site to go down?

The FCC net neutrality comment site crashed, and it was blamed on DDoS attacks. Expert Matthew Pascucci looks at the technical side of this incident and what was behind it. Continue Reading
Feature 28 Jul 2017

An in-depth look into McAfee Endpoint Threat Protection

McAfee Endpoint Threat Protection is an antimalware protection product that is designed to secure Windows systems against malware, data loss and other threats in standalone or networked environments. Continue Reading
Answer 28 Jul 2017

Samsung Knox platform: Can it improve Android device security?

Application security expert Michael Cobb discusses the Samsung Knox platform and its ability to improve Android device security in the enterprise. Continue Reading
Feature 27 Jul 2017

Sophos Endpoint Protection and an overview of its features

Expert Ed Tittel examines Sophos Endpoint Protection, an endpoint security platform with antivirus, antimalware and more. Continue Reading
Tip 24 Jul 2017

IPv6 addresses: Security recommendations for usage

IPv6 addresses can be used in a number of ways that can strengthen information security. Expert Fernando Gont explains the basics of IPv6 address usage for enterprises. Continue Reading
Answer 19 Jul 2017

How does an Intel AMT flaw enable attackers to gain device access?

A vulnerability in Intel AMT enables attackers to gain remote access to PCs and devices. Expert Judith Myerson explains how the attack works and what can be done to prevent it. Continue Reading
Answer 14 Jul 2017

Android sandboxing tools: How can work data separation be bypassed?

Android for Work's sandboxing tools, which split work and personal profiles, can be bypassed with a proof-of-concept attack. Expert Michael Cobb explains how the attack works. Continue Reading
Feature 13 Jul 2017

Evaluating endpoint security products for antimalware protection

Expert contributor Ed Tittel explores key criteria for evaluating endpoint security products to determine the best option for antimalware protection for your organization. Continue Reading