Websense Blog, 2 May 2012: The Websense® ThreatSeeker® Network has detected that the Institute for National Security Studies (INSS) website in Israel was injected with malicious code. INSS is described in its website as an independent academic institute that studies key issues relating to Israel’s national security and Middle East affairs.
The official blog from Satisnet Ltd
May
03
2012
The Institute for National Security Studies (Israel) falls prey to Poison Ivy infection
May
03
2012
ICO report finds many people becoming a ‘soft touch’ for online fraudsters
ICO News release: 25 April 2012: The Information Commissioner’s Office (ICO) is urging consumers to take better care of their data, following an investigation into the trade in used hard drives. The ICO has published new guidance to help individuals securely delete personal information from their old devices. An investigation by the ICO found that one in ten second-hand hard drives sold online may contain residual personal information.
Apr
30
2012
New SecurityCenter report template for software inventory discovered by Nessus
Tenable Network Security, 30 April 2012: Software Inventory. Three templates have been provided to list software installed on Windows, UNIX and Linux hosts. The sample above was cut from one of three chapters produced by the “Software Inventory” template and summarizes several unsupported software issues. To see a full report use the appropriate download example link.
Apr
30
2012
New SecurityCenter report template for detailed results of active Nessus netstat audits
Tenable Network Security, 30 April 2012: Netstat Active ConnThis template uses the results from Nessus plugin 58651, Netstat Active Connections, to report all hosts that have network connections to or from the same public or private IP address. The sample below was cut from the report example provided and depicts the increase in hosts with connections to or from the private IPv4 address “192.168.1.4”. To see a full report use the download example link.
Apr
30
2012
New Patch Data Available (2.0.0.1784)
VMware vCenter Protect Essentials, April 26, 2012: XML data version = 2.0.0.1784 Last modified on 26/04/2012.
Apr
26
2012
IBM Announces New Threat Analytics to Help Organisations Better Identify Hidden Security Attacks
IBM Press Release – 25 April 2012: New behavioural threat analytics extends IBM’s Advanced Threat Protection Portfolio; can flag subtle yet suspicious outbound data traffic from infected “zombie” computers. IBM today unveiled new analytics using advanced security intelligence that can flag suspicious behaviour in network activities to help better defend against hidden threats facing organisations.
Apr
25
2012
Nessus 5.0.1 Released
25 April 2012: Tenable is pleased to announce the release of Nessus 5.0.1! This is a point release (moving from 5.0 to 5.0.1), containing enhancements and minor bug fixes. This release improves the stability on all platforms, and solves Windows-specific issues related to installation and packet forgery.
Apr
23
2012
What Do CIOs Need to Know about Network Security
Palo Alto Research Center – 19 April 2012: Many CIOs have expressed indifference to the network security discipline (in fact, to the security discipline in general), at least until there’s some sort of problem. But why?
Apr
23
2012
The Evolving Role of IT Security Pros
Gaining Support Enterprise-Wide is Critical - By Jeffrey Roman (govinfosecurity.com) – 17 April 2012: A new report from the Information Security Forum highlights what many security professionals know: the threats to IT will intensify over the next two years. With the risk growing greater every day, the role of IT security professionals must change to improve the security of their organizations.
Apr
19
2012
How resourceful are you – Turning a Next Gen firewall into a Next Gen Security Information collection tool?
We here at Satisnet deal with a lot of SIEM vendors , the likes of Splunk, Q1 labs, Honeycomb etc. These vendors specialise in collecting data from various sources in your IT infrastructure, correlate them and convert into actionable information. This information is used in different ways , some of it would be related to operational statistics that help operations identify faults and correct them. You could use this information for security monitoring and forensic analysis etc. Although these tools are extremely good at helping you visualise the vast amounts of data you have, they are only as good as the data you have. The better your data the better analysis these solutions provide.