Background The SUNBURST trojan and backdoor, as dubbed by FireEye researchers, that has compromised multiple U.S. Government systems recently, highlights the complexity and connectedness of the modern enterprise IT environment as a security weakness. Recent reporting makes clear that the adversary took advantage of software complexity to deliver a highly refined attack … [Read more...] about Cisco Secure Workload Immediate Actions in Response to “SUNBURST” Trojan and Backdoor
Cisco
Pinpoint Your SolarWinds Exposure with Cisco Endpoint Security Analytics
As various private organizations and high-value government bodies figure out the blast radius of the recent state-sponsored SolarWinds attack, with Cisco Endpoint Security Analytics (CESA) in your toolkit you could quickly assess your own exposure…like the CESA customer noted below. CESA brings together the unparalleled endpoint behavioral visibility of Cisco’s AnyConnect … [Read more...] about Pinpoint Your SolarWinds Exposure with Cisco Endpoint Security Analytics
Election Security: A conversation with Matt Olney from Cisco Talos
Next week we will publish our third annual “Defending Against Critical Threats” report; a roundup of some the most impactful cyber attacks from the past 12 months. Included in the publication are articles about how cyber criminals sought to take advantage of the COVID-19 pandemic. We also cover Big Game Hunting attacks, whereby cyber criminals seek to … [Read more...] about Election Security: A conversation with Matt Olney from Cisco Talos
Cisco Secure Endpoint Named an Endpoint Security Top Player
The Radicati Group has named Cisco a Top Player in the Endpoint Security – Market Quadrant 2020. Radicati recognizes endpoint security top players as “current market leaders with products that offer, both breadth and depth of functionality, as well as possess a solid vision for the future. Top Players shape the market with their technology and strategic vision.” We believe our … [Read more...] about Cisco Secure Endpoint Named an Endpoint Security Top Player
Introducing the Cisco Secure Network Analytics Data Store!
Security professionals are currently facing a big data conundrum If you work in IT networking or security, you’re all too familiar with how difficult it can be to effectively manage and analyze large volumes of network data. If so, you aren’t alone – many organizations face significant challenges when it comes to effectively managing the collection and storage of their network … [Read more...] about Introducing the Cisco Secure Network Analytics Data Store!
What a year for Cisco Secure Network Analytics!
Over the past year, Network Detection and Response (NDR) has emerged as a critical component of a business’ security posture. Your network is growing both on-prem and in the cloud, mobile workers are more abundant than ever, and attackers are continuing to evolve and find new ways to threaten your business with attacks that can lead to critical data loss, misuse of resources … [Read more...] about What a year for Cisco Secure Network Analytics!
FireEye Breach Detection Guidance – Cisco Blogs
Cisco Blogs / Security / Threat Research / FireEye Breach Detection Guidance Cyber security firm FireEye recently disclosed an incident that was reported to have resulted in the inadvertent disclosure of various internally developed offensive security tools (OSTs) that were used across FireEye red-team engagements. Some of these tools appear to be based on … [Read more...] about FireEye Breach Detection Guidance – Cisco Blogs
Introducing the New “Cisco Security Outcomes Study”
Uncovering today’s most impactful security practices Security teams today are facing extraordinary challenges – securing and supporting the rapidly accelerated “work from anywhere” model, protecting a workforce under stressors unlike anything we’ve seen before, and battling a threat landscape that’s constantly adapting to exploit cracks in the system. As the Chief Information … [Read more...] about Introducing the New “Cisco Security Outcomes Study”
Nibiru ransomware variant decryptor – Cisco Blogs
Cisco Blogs / Security / Threat Research / Nibiru ransomware variant decryptor Nikhil Hegde developed this tool. Weak encryption The Nibiru ransomware is a .NET-based malware family. It traverses directories in the local disks, encrypts files with Rijndael-256 and gives them a .Nibiru extension. Rijndael-256 is a secure encryption algorithm. However, Nibiru uses a … [Read more...] about Nibiru ransomware variant decryptor – Cisco Blogs
Under Analytics – Cisco Blogs
Back when network management was booming in the early 90’s, the whole idea seemed straightforward. System administrators would speak of endpoints on the network as being “under management” or conversely “unmanaged.” There seemed to be a place for everything and looking back now at those times, enterprises seemed so simple compared to today. Maybe simple is not the right term, … [Read more...] about Under Analytics – Cisco Blogs