Ask the Experts

Ask the Experts

• Do rogue mobile apps threaten Android device security?

  Michael Cobb discusses how an Android device security flaw may open the door for rouge mobile apps.  Continue Reading

• Windows Error Reporting: Is crash data a security vulnerability?

  Crash data from Windows Error Reporting can potentially help attackers conduct targeted attacks. Is the data a security vulnerability?  Continue Reading

• Security validation for cloud-based applications

  Adopting cloud-based applications can be a security headache. Michael Cobb explains how to perform tests that validate cloud app security.  Continue Reading

• Boost iPhone app security, avoid HTTP request hijacking

  Research has revealed that many iPhones are susceptible to HTTP request hijacking. Learn how to mitigate these attacks and ensure iPhone app security.  Continue Reading

• Fokirtor Trojan: How to avoid infection, boost Linux security

  The Fokirtor Trojan creates a dangerous backdoor in Linux systems. Learn how to keep enterprise Linux systems from being infiltrated and compromised.  Continue Reading

• Socially engineered malware attacks: Enterprise defense best practices

  Enterprise threats expert Nick Lewis explains how socially engineered malware attacks work and how enterprises can defend against them.  Continue Reading

• Is there such a thing as a secure smartphone?

  President Obama isn't allowed to use an iPhone, highlighting today's widespread mobile platform security issues. Is there such a thing as a secure smartphone?  Continue Reading

• How sandboxes benefit network protection and malware defense

  Nick Lewis discusses the concept of sandboxing and how vendors are using network appliance sandboxes to boost network protection and malware defense.  Continue Reading

• VBS worms: Still dangerous?

  VBS worms were a top security concern in the early 2000s. Should enterprises still be worried? Nick Lewis explains.  Continue Reading

• How to protect employees from fake patches

  Attackers are using fake patches to trick users into installing malicious software. Security expert Nick Lewis explains how to avoid the threat.  Continue Reading

• Mitigating madware to ensure enterprise mobile application security

  Learn about the growing risk of madware in mobile applications, as well as what enterprises should do to prevent security issues.  Continue Reading

• The truth about USB malware and safety best practices

  A strain of malware can steal data from a USB device itself rather than infect a network or system. Nick Lewis explains how to mitigate the threat.  Continue Reading

• The anti-sandbox malware that threatens sandbox security

  An anti-sandboxing malware variant is defeating on-premises sandbox protection. Is sandbox security a thing of the past? Expert Nick Lewis discusses.  Continue Reading

• Defense is the best offense for preventing DoS attacks

  Expert Michael Cobb discusses how developing a response plan in conjunction with service providers can help enterprises better thwart DoS attacks.  Continue Reading

• The value of open source intelligence tools to enterprises

  Expert Joseph Granneman offers advice to enterprise security teams on using open source intelligence tools to learn about potential threats.  Continue Reading

• HCISPP certification: What are the benefits?

  (ISC)2's HCISPP certification has many potential benefits for health information privacy and security. Expert Joseph Granneman examines them.  Continue Reading

• Important business skill sets for information security professionals

  Expert Joseph Granneman explains important business skills information security pros need -- and how to acquire them -- as the discipline matures.  Continue Reading

• How to explain information security concepts to business executives

  Conveying complex information security models to business executives isn't easy. Here's how IT pros can improve their communication skills.  Continue Reading

• How to prevent SQL injection attacks (without a costly code review)

  Enterprise threats expert Nick Lewis reveals two key ways to prevent SQL injection attacks without breaking the bank on an expensive code review.  Continue Reading

• Protect your enterprise from hackers for hire

  Hackers for hire pose significant enterprise risks. Does your organization know if it's a target? Get the low-down on these organized crime groups.  Continue Reading

• Mitigating the enterprise risks posed by PHP SuperGlobal variables

  Learn the risks PHP SuperGlobal variables present to PHP applications and how to mitigate them in an enterprise environment.  Continue Reading

• Mobile security: Is antimalware protection necessary?

  Developing an enterprise mobile security strategy is a challenge. Nick Lewis offers his insight on the viability of mobile antimalware protection.  Continue Reading

• Should enterprises expect heightened risk on important dates?

  Does the date on the calendar have anything to do with the likelihood of an attack? Enterprise threats expert Nick Lewis provides his insight.  Continue Reading

• Understanding Aorato's Directory Services Application Firewall

  How Aorato's Directory Services Application Firewall protects Active Directory, and why it's useful for enterprises.  Continue Reading

• A broader definition of identity governance

  The definition of identity governance has evolved to include a tool that could prove challenging for enterprises to implement.  Continue Reading

• When single sign-on fails, is a second SSO implementation worthwhile?

  After a failed SSO implementation, is there any benefit to an enterprise trying again? Expert Michele Chubirka discusses.  Continue Reading

• SlickLogin acquisition: A game changer for Google and 2FA industry?

  Google's recent acquisition of two-factor authentication vendor StickLogin could push it ahead in the secure identity management industry.  Continue Reading

• How to decide if a cloud firewall is better than a traditional firewall

  Before replacing a traditional firewall with a cloud firewall, keep these considerations in mind. Kevin Beaver shares his list of concerns.  Continue Reading

• Router port scanning: Mitigate the security risks of home users

  Does a surge in router port scanning mean that the number of infosec risks to home users has risen? Kevin Beaver explains.  Continue Reading

• How to secure a wireless router to ensure remote admin service safety

  Network security expert describes how to secure a wireless router and prevent the router's remote administration feature from being hacked.  Continue Reading

• Requirements for a PCI-compliant Web hosting company

  Expert Mike Chapple offers insight on how to maintain PCI DSS compliance when outsourcing Web hosting to a PCI-compliant provider.  Continue Reading

• Is PCI DSS compliance required?

  PCI DSS compliance has little bearing on customer retention, so is it worth the effort? Mike Chapple explains why companies must comply with PCI DSS.  Continue Reading

• Regulatory compliance requirements for security awareness programs

  Employees play an important role in achieving and maintaining regulatory compliance, explains compliance expert Mike Chapple.  Continue Reading

• Google AdID spurs talk of replacing third-party cookies in enterprises

  Google's AdID technology will supposedly replace third-party cookies. What affect will this have on security in enterprises? Michael Cobb discusses.  Continue Reading

• How to use the Metasploit Framework to test for new vulnerabilities

  The open source Metasploit Framework is an essential tool to help enterprises detect new vulnerabilities. Michael Cobb explains why.  Continue Reading

• Mobile email security: Mitigating JavaScript risks, data loss

  Mitigating JavaScript risks is essential to ensuring mobile email security. Discover how to keep your enterprise safe.  Continue Reading

• Defense best practices for a man-in-the-middle attack

  Man-in-the-middle attack defense requires careful, layered security. Michael Cobb reviews the tactics enterprises should employ to stay secure.  Continue Reading

• Best practices for employer monitoring of social media

  Expert Joseph Granneman explains the best way for employers to approach social media monitoring as part of a social media policy for employees.  Continue Reading

• How to block Dropbox and implement a winning cloud data storage policy

  Cloud-based storage introduces a number of risks, but banning these services outright is unlikely to generate the desired results.  Continue Reading

• Strategic security staffing: Generalist or specialist?

  Expert Joseph Granneman explains whether a midsize company should hire security specialists or generalists and why.  Continue Reading

• Which skills will boost the information security officer salary?

  Salaries for CISOs can vary widely. Expert Joseph Granneman explains how to earn a higher salary but warns against making it your top career goal.  Continue Reading

• What Project Sonar means for enterprise network security

  Can Project Sonar, an Internet-scanning project, benefit enterprise network security? Expert Brad Casey discusses.  Continue Reading

• Change management best practices: Tracking eliminated firewall rules

  Does your enterprise track eliminated firewall rules? It's one of the change management best practices suggested by expert Brad Casey.  Continue Reading

• The benefits of converged network security architecture

  The Department of Defense is using a converged network security architecture to simplify security management. Learn about the security benefits.  Continue Reading

• Tips for keeping Wi-Fi network passwords secure

  If Wi-Fi network passwords are accessed off Android mobile devices by third parties, it could mean disaster without the right precautions.  Continue Reading

• Preparing for a firewall failure: Firewall best practices

  Is your enterprise ready for a firewall failure? Uncover firewall best practices to help you prepare.  Continue Reading

• Using reputation-based security to mitigate IPv6 security risks

  Get help creating a network security strategy for IPv6 and learn if reputation-based security to filter IP traffic will work in a larger environment.  Continue Reading

• Sandboxing security: A cure-all strategy for virtual environments?

  Sandboxing is a limited technology. Expert Brad Casey explores the margins and supplemental products organizations can use in virtual environments.  Continue Reading

• Cisco TelePresence vulnerability: Mitigate default credentials issues

  Network security expert Brad Casey discusses how to mitigate the vulnerability found in Cisco's TelePresence system triggered by default credentials.  Continue Reading

• Domain security services: Exploring the enterprise security benefits

  Uncover how domain security services can help enterprises monitor, lock and secure their domains to prevent cyberattacks.  Continue Reading

• Banned PCs: Finding the right network security controls to ease fears

  Several governments reportedly banned PCs with alleged ties to the Chinese government. Uncover the network security controls to ease enterprise fears.  Continue Reading

• Audit concerns when migrating from traditional firewall to NGFW

  Learn about a potential audit concern when transitioning from a traditional firewall to a next-generation firewall.  Continue Reading

• Buying cloud-based UTM by the hour: Pros and cons

  Should enterprises deploy cloud-based UTM when it's billed by the hour? Brad Casey discusses the pros and cons of the offering.  Continue Reading

• Does TCP/IP reassembly pose a TCP/IP packet format risk?

  An obscure process called TCP/IP reassembly may pose an enterprise network security risk. Learn about this TCP/IP packet format security issue.  Continue Reading

• Addressing the security vulnerabilities of IPMI-enabled systems

  The Intelligent Platform Management Interface (IPMI) protocol presents a number of security vulnerabilities. Uncover how to mitigate the risks.  Continue Reading

• UTM vs. NGFW: Comparing unified threat management, next-gen firewalls

  What's the difference between unified threat management (UTM) products and next-generation firewalls (NGFW)? Brad Casey discusses.  Continue Reading

• Using whitelisting technology to defend against POS malware

  Learn how whitelisting technology can help protect point-of-sale terminals from being compromised by POS malware.  Continue Reading

• Smartphone biometrics: Risks and implementation hurdles

  Mobile biometric authentication, including that technology on smartphones, has yet to be widely deployed. Expert Michele Chubirka explains why.  Continue Reading

• Prevent authentication vulnerabilities in enterprise applications

  The recent Django authentication flaw highlights the importance of testing for authentication vulnerabilities. Michele Chubirka explains how.  Continue Reading

• Introduction to iCloud Keychain: Security for password synchronization

  ICloud Keychain can supposedly sync passwords across devices without using iCloud. But is it secure? Security expert Michele Chubirka explains.  Continue Reading

• The merits of encryption vs. hashing after the Adobe password breach

  In light of the Adobe password breach, expert Michele Chubirka explains the difference between encryption and hashing when storing passwords.  Continue Reading

• Authentication caching: How it reduces enterprise network congestion

  Michael Cobb explores the pros and cons of authentication caching and whether the practice can truly calm network strain.  Continue Reading

• Apple iMessage security: Is iMessage encryption strong enough?

  Is Apple iMessage encryption strong enough to mitigate reverse-engineering attacks? Learn more about one of the top iMessage security risks.  Continue Reading

• Symantec Protection Center Enterprise: Preparing for end of life

  Discover what your enterprise should do to replace the Symantec Protection Center Enterprise platform as it reaches end of life.  Continue Reading

• Is the Aviator browser the next new Web browser for enterprises?

  Can the Aviator browser be considered the next new Web browser in town? Michael Cobb discusses whether it's ready for enterprise adoption.  Continue Reading

• HealthCare.gov security issues: Lessons learned for enterprises

  Researchers have warned of numerous HealthCare.gov security issues. Michael Cobb reviews the website security lessons learned for enterprises.  Continue Reading

• Email address security: Can email addresses thwart phishing schemes?

  Email addresses are prime targets of phishing schemes. Uncover how to mitigate these risks and learn tips for ensuring email address security.  Continue Reading

• Detect and mitigate Java backdoors that enable botnet communication

  Nick Lewis offers advice on detecting a particular strand of malware that utilizes a Java backdoor to enable botnet communication.  Continue Reading

• Incident response planning for DNS attacks against enterprises

  Practicing incident response for a DNS attack will help enterprises recover faster. Nick Lewis offers incident response planning best practices.  Continue Reading

• Malware detection in the user profile directory

  Looking for malware on an infected machine? Start in the user profile directory. Expert Nick Lewis explains how.  Continue Reading

• Automated IPv6 attacks: Mitigating the risks of emerging IPv6 threats

  Learn how automated IPv6 attacks work and whether they represent a dangerous emerging breed of IPv6 threats.  Continue Reading

• Do PCI SSC-approved point-to-point encryption products reduce scope?

  Expert Mike Chapple details the potential benefits for organizations that choose PCI SSC-approved point-to-point encryption products.  Continue Reading

• Does outsourcing to Amazon payment processing bring PCI DSS benefits?

  Expert Mike Chapple explains how some retailers can reduce their PCI DSS compliance burden by outsourcing credit card processing to Amazon.  Continue Reading

• How to avoid PCI DSS service provider requirements using tokenization

  Expert Mike Chapple explains why an organization storing tokens for clients may no longer be subject to PCI DSS service provider requirements.  Continue Reading

• How to secure Twitter accounts against man-in-the-browser attacks

  Amid recent man-in-the-browser attacks aimed at Twitter, expert Nick Lewis explains how enterprises can best secure business Twitter accounts.  Continue Reading

• Why does the 'Bouncer' attack toolkit utilize whitelisting

  Expert Nick Lewis explains the logic behind the 'Bouncer' attack toolkit and its seemingly contradictory use of whitelisting security methods.  Continue Reading

• C&C infrastructure explained: Tilon malware lessons learned

  Expert Nick Lewis details how the Tilon malware strain utilizes a unique communication protocol with its C&C infrastructure.  Continue Reading

• To protect privileged users, consider using least privilege principle

  To defend against "laterally" moving attackers, consider granting privileged users the least privileges necessary. Expert Nick Lewis explains how.  Continue Reading

• Web browser protection for users: Adapting to new Web security threats

  Expert Nick Lewis explains how to provide a secure Web browsing experience for users when threats are no longer contained to certain parts of the Web.  Continue Reading

• Could an Adobe PDF vulnerability provide attackers vital information?

  Does it matter if attackers know when and where a PDF was opened? Expert Nick Lewis reviews a recent Adobe PDF flaw that caused such a scenario.  Continue Reading

• How to advocate the benefits of information security threat modeling

  Expert Nick Lewis discusses how best to advocate the benefits of a new security initiative like threat modeling to the key enterprise players.  Continue Reading

• For enterprises, does attack attribution offer any value?

  What matters more: finding the source of an attack, or simply stopping it? Expert Nick Lewis details the potential benefits of attack attribution.  Continue Reading

• Java patching: Lost cause, or an enterprise security necessity?

  After a plethora of Java and JRE security flaws, threats expert Nick Lewis weighs in on whether Java patching is now an exercise in futility.  Continue Reading

• Attack obfuscation: How attackers thwart forensics investigations

  Expert Nick Lewis explains how attackers utilize offensive forensics techniques to thwart forensics investigations.  Continue Reading

• HSTS: How HTTP Strict Transport Security enhances application security

  Many websites are using HTTP Strict Transport Security (HSTS) to enhance application security, but is it really more effective than HTTPS?  Continue Reading

• Developing a continuous security monitoring program for 24/7 security

  Developing a continuous security monitoring program to ensure 24/7 security is no easy task. Michael Cobb offers key advice for completing the task.  Continue Reading

• How Google Chrome Canary improves malware defense, prevents infection

  The forthcoming Google Chrome Canary browser boasts the ability to boost malware defense and prevent malware infection. Michael Cobb explains how.  Continue Reading

• CAMP technology: The key to thwarting socially engineered malware?

  Microsoft added CAMP technology to Windows 8.1 to defeat socially engineered malware. Is it effective? Michael Cobb explains how CAMP works.  Continue Reading

• With its new security features, is Dropbox safe for enterprise use?

  Do Dropbox's new 'enterprise-grade' security features make it safe enough to leverage in the enterprise? Expert Michael Cobb offers his analysis.  Continue Reading

• Choosing an SSL decryption appliance for enterprise SSL monitoring

  SSL monitoring is becoming critical to enterprise network security. Learn the key criteria for choosing an SSL decryption appliance.  Continue Reading

• Analyzing the risks of the D-Link router backdoor

  Even though a patch was released for a recently discovered D-Link router backdoor, the flaw highlights a product feature that poses unnecessary risk.  Continue Reading

• Making the case: Mobile IDS/IPS vs. traditional IDS/IPS

  What's the difference between mobile IDS/IPS and traditional IDS/IPS? Expert Brad Casey discusses the value proposition for enterprise deployment.  Continue Reading

• The benefits of subscription-based penetration testing services

  Should an enterprise opt for subscription-based services or conduct their pen testing in-house? Network security expert Brad Casey discusses.  Continue Reading

• Is cloud-based DDoS mitigation better than in-house DDoS protection?

  Discover the benefits of cloud-based DDoS mitigation and uncover when a cloud service is more viable than in-house DDoS protection.  Continue Reading

• How ISP services can improve enterprise cybersecurity

  Uncover which ISP services enterprises should seek from their providers to improve cybersecurity and mitigate cyberattacks.  Continue Reading

• Network tap vulnerabilities: Network traffic security over the Internet

  Is there any viable way to mitigate the risks of a potential wide-area network tap and ensure network traffic security over the Internet?  Continue Reading

• Why TCP traffic spikes with source port zero should sound an alarm

  Are spikes in TCP traffic with source port zero warning signs that future attacks are imminent? Discover why enterprises should be concerned.  Continue Reading

• Best practices for implementing an enterprise network air gap system

  Learn best practices for implementing an enterprise network air gap system as a defense against advanced attacks.  Continue Reading

• Target breach details: Was the retailer PCI DSS compliant?

  Expert Mike Chapple says a key detail in the Target breach suggests that the Fortune 500 retailer likely wasn't PCI DSS compliant.  Continue Reading

• Does ISO 27001 certification make an enterprise Safe Harbor compliant?

  Expert Mike Chapple details the ISO 27001 certification and why achieving it may not make an organization Safe Harbor compliant.  Continue Reading