Problem solve

IPv6 security and network protocols security

• How can DNS privacy issues be addressed?

  Learn two techniques for improving end-user DNS privacy protection that prevent DNS from exposing information about websites users visit and the people users communicate with. Continue Reading

• How to detect and defend against a TCP port 445 exploit and attacks

  The WannaCry TCP port 445 exploit returned the spotlight to Microsoft's long-abused networking port. Network security expert Kevin Beaver explains how to detect and defend against such attacks. Continue Reading

• LDAP injection: How was it exploited in a Joomla attack?

  After eight years, Joomla discovered an LDAP vulnerability that could be exploited by threat actors. Learn how the attack works from expert Matt Pascucci. Continue Reading

• How to use an interface identifier to check for IPv6 network updates

  To find out if your IPv6 network has been updated to RFC 7217, you can perform a test using the interface identifier. Expert Fernando Gont explains how to do this. Continue Reading

• How does IP hijacking work and how can it be prevented?

  IP hijacking incidents are on the rise because IP addresses can be easily targeted. Expert Judith Myerson explains how these attacks work and how they can be prevented. Continue Reading

• Using IPv6 atomic fragments for a denial-of-service attack

  IPv6 atomic fragments can be dangerous for enterprises. Expert Fernando Gont explains their relation to a new denial-of-service attack vector and how to mitigate the threat.Continue Reading

• DNS reverse address mapping: Exploiting the scanning technique

  Scanning IPv6 addresses can be made easy with DNS reverse mapping. In part two of this series, expert Fernando Gont explains how this technique can be exploited and mitigated.Continue Reading

• How does DNSChanger take advantage of WebRTC protocols?

  WebRTC protocols are being targeted by a new version of the DNSChanger exploit kit. Judith Myerson explains how these attacks work and what enterprises should know.Continue Reading

• How can enterprises fix the NTP daemon vulnerability to DoS attacks?

  A recently patched NTP daemon vulnerability has put enterprises at risk. Expert Matthew Pascucci explains the vulnerability and how organizations can defend against it.Continue Reading

• Risk & Repeat: Corero on DDoS defense in the IoT era

  In this episode of SearchSecurity's Risk & Repeat podcast, Dave Larson of Corero Network Security discusses how DDoS defense has shifted to deal with IoT threats.Continue Reading

• Risk & Repeat: Rapid7 tackles IoT threats, vulnerabilities

  In this episode of SearchSecurity's Risk & Repeat podcast, Tod Beardsley and Rebekah Brown of Rapid7 talk about the IoT threat landscape and improving IoT device security.Continue Reading

• How to handle out-of-band management for network infrastructure

  Out-of-band management can be used for handling network infrastructure. Expert Judith Myerson explains the benefits of out-of-band management and how it can be implemented.Continue Reading

• The security risks of network sensors in the enterprise

  The proliferation of network sensors for embedded systems and IoT devices can create problems for enterprises. Expert Kevin Beaver explains the risks these sensors pose.Continue Reading

• Will TLS 1.3 solve the problems of certificate authorities?

  Transport Layer Security (TLS) and Secure Sockets Layer (SSL) cryptographic protocols have long been the cornerstone of Web application security, and the whole process finds its root (quite literally) in a system of signed certificates. The trouble ...Continue Reading

• Can eavesdropping over the SS7 protocol be prevented?

  Recently revealed insecurities in SS7 have left many unsure about the well-used protocol needed for phone connections. However, the answer to achieving security is not easily obtained.Continue Reading

• The Third Network: What are the security risks for Ethernet as a service?

  Ethernet as a service, or the Third Network, aims to deliver faster services to users across carriers and providers, but what are the risks? Network security expert Kevin Beaver explains.Continue Reading

• Are enterprise devices vulnerable to NAT-PMP security threats?

  Network Address Translation - Port Mapping Protocol implementations may cause vulnerabilities on networking devices. Expert Kevin Beaver offers pointers for testing and mitigating such risks.Continue Reading

• How does Pretty Easy Privacy secure online communications?

  The open source Pretty Easy Privacy project is a user interface that helps users secure communication channels. Expert Michael Cobb outlines how it works.Continue Reading

• IPv6 extension headers and security: Analyzing the risk

  IPv6 security expert Fernando Gont explains why IPv6 extension headers can inadvertently subvert security controls or foster denial-of-service conditions.Continue Reading

• Third-party vendor management security best practices

  Third-party vendor management is important for avoiding incidents like the Target breach. Joseph Granneman offers four must-have security controls.Continue Reading

• Four steps to taking the fear out of large file transfers

  Large file transfers don't have to be scary. Learn four key steps to keeping your network secure when big files exit your enterprise.Continue Reading

• Using reputation-based security to mitigate IPv6 security risks

  Get help creating a network security strategy for IPv6 and learn if reputation-based security to filter IP traffic will work in a larger environment.Continue Reading

• Cisco TelePresence vulnerability: Mitigate default credentials issues

  Network security expert Brad Casey discusses how to mitigate the vulnerability found in Cisco's TelePresence system triggered by default credentials.Continue Reading

• Addressing the security vulnerabilities of IPMI-enabled systems

  The Intelligent Platform Management Interface (IPMI) protocol presents a number of security vulnerabilities. Uncover how to mitigate the risks.Continue Reading

• Automated IPv6 attacks: Mitigating the risks of emerging IPv6 threats

  Learn how automated IPv6 attacks work and whether they represent a dangerous emerging breed of IPv6 threats.Continue Reading

• SHA-1 to SHA-2: The future of SSL and enterprise application security

  The future of SSL is SHA-2. Security expert Michael Cobb explains why SHA-1 poses an increasing danger and what the transition entails.Continue Reading

• SSH security risks: Assessment and remediation planning

  Application security expert Michael Cobb details how to use a new free SSH security risk assessment tool to mitigate enterprise SSH risks.Continue Reading

• Preparing your system for telephony denial-of-service attacks

  Can your organization's telephony system survive a telephony denial-of-service attack? Expert Brad Casey provides pointers for TDoS survival success.Continue Reading

• Is FTP malware threatening network port security?

  A diligent enterprise must watch for FTP attacks over non-standard ports, says network security expert Brad Casey.Continue Reading

• Lessons learned from Juniper vulnerability in Junos OS

  Expert Brad Casey says the recent Junos OS flaws demonstrates why enterprises must diligently update networking router software to stay secure.Continue Reading

• OpenFlow security: Does OpenFlow secure software-defined networks?

  Expert Brad Casey answers a question on OpenFlow security implications: Can the OpenFlow protocol foster software-defined networking (SDN) security?Continue Reading

• How key MDM features affect mobile security policy management

  As MDM features become more robust, enterprises must not only look for mature products, but also evolve mobile security policies accordingly.Continue Reading

• Using network flow analysis to improve network security visibility

  To overcome network security issues from advanced attackers and BYOD, security professionals are turning to network flow analysis to gain improved network security visibility.Continue Reading

• Gauging UPnP security risks: Is UPnP secure enough for enterprise use?

  Is UPnP secure enough for enterprise use? Network security expert Brad Casey assesses UPnP security risks and offers advice for mitigating the threat.Continue Reading

• Address IPv6 security before your time runs out

  Most networks have partial deployment of IPv6 often without IT realizing it. It’s time to take stock of the security implications before attackers do.Continue Reading

• Targeted attack protection: Step-by-step preparation and mitigation

  Targeted attacks can be stopped with a defense-in-depth strategy. Michael Cobb explains how to implement a targeted attack prevention plan.Continue Reading

• What will the HSTS protocol mean for Web security?

  Matthew Pascucci discusses what effect the new HSTS protocol could have on Web security and on preventing man-in-the-middle attacks.Continue Reading

• Low-cost methods for secure, large file transfer

  Transferring large files safely can be a costly process. Matt Pascucci offers low-cost options for secure, large file transfers in the enterprise.Continue Reading

• How to implement firewall policy management with a 5-tuple firewall

  Matt Pascucci explains how to implement firewall policy management for 5-tuple firewalls when ports must be kept open for business reasons.Continue Reading

• How to utilize NDPMon for better IPv6 monitoring, network visibility

  Video: Keith Barker of CBT Nuggets demonstrates NDPMon, a free, open source security tool that can improve IPv6 monitoring and network visibility.Continue Reading

• How to avoid security issues with VPN leaks on dual-stack networks

  The ongoing transition to IPv6 has revealed security issues with VPN leaks on dual-stack networks. Fernando Gont explains and offers mitigations.Continue Reading

• How enterprises should address the latest Skype security concerns

  A Web-based tool has exposed some serious Skype security concerns. Expert Michael Cobb discusses the options for organizations that rely on Skype.Continue Reading

• Software-defined networking: Exploring SDN security pros and cons

  Matthew Pascucci offers an intro to software-defined networking and explains why SDN security relies on securing the SDN controller at all costs.Continue Reading

• Remote Desktop Protocol security: How to secure RDP network endpoints

  What is RDP and why does it pose a security threat? Expert Matt Pascucci explains why it’s needed and how best to secure RDP it in the enterprise.Continue Reading

• Free or paid antivirus: Effective enterprise antivirus at no cost?

  When looking for effective enterprise antivirus software, does it matter whether it is free or paid antivirus? Yes it does, says expert Michael Cobb.Continue Reading

• Analysis: Vast IPv6 address space actually enables IPv6 attacks

  For World IPv6 Launch Day 2012, Fernando Gont covers why common ways of generating IPv6 addresses actually make an attacker’s job easier.Continue Reading

• Threat of SSL malware highlights SSL security issues

  Expert Nick Lewis highlights SSL security issues and the threat of SSL malware being transmitted via HTTPS. Is this a serious blow to SSL security?Continue Reading

• The switch to HTTPS: Understanding the benefits and limitations

  Expert Mike Cobb explains the value and limitations of HTTPS, and why making the switch to HTTPS may be easier than it seems.Continue Reading

• Use Telnet alternative SSH to thwart Telnet security risks

  The inherently insecure Telnet protocol shouldn’t be used on modern networks. Learn why and what to use in its place.Continue Reading

• BIOS management best practices: BIOS patches and BIOS updates

  Amid growing concern over BIOS threats, expert Mike Cobb discusses how organizations should manage BIOS patches and BIOS updates.Continue Reading

• Does Morto worm prove inherent flaws in Windows RDP security?

  The recent Morto worm had unusual success spreading via Windows Remote Desktop Protocol. Does that mean RDP is security too weak? Nick Lewis explains.Continue Reading

• Modern security management strategy requires security separation of duties

  Contributor Matthew Pascucci argues that enterprises need security separation of duties to ensure an effective, modern security management strategy.Continue Reading

• How to secure websites using the HSTS protocol

  Learn how to use HTTP Strict Transport Security (HSTS) to secure websites and how HSTS prevents man-in-the-middle attacks.Continue Reading

• How DHCP works and the security implications of high DHCP churn

  Learn about the potential problems with high DHCP churn and whether it should be a concern to your organization.Continue Reading

• How to avoid VoIP security risks: Forrester’s six-step process

  If left unprotected, VoIP security risks pose a threat to corporate data. Learn how to secure VoIP systems with Forrester’s six-step process.Continue Reading

• How MAC and HMAC use hash function encryption for authentication

  Hash function encryption is the key for MAC and HMAC message authentication. See how this differs from other message authentication tools from expert Michael Cobb.Continue Reading

• VoIP security best practices: Securing communication in the workplace

  VoIP communications can be a great money-saver, but without solid VoIP security best practices, it can introduce new risks.Continue Reading

• How to set up SFTP automation for FTP/DMZ transfer

  Transferring files from a DMZ to an internal FTP server can be risky. In this expert response, Anand Sastry explains how to use SFTP automation to lock it down.Continue Reading

• SSL alternatives? Crafting Web-security programs for emerging threats

  Expert Nick Lewis reacts to breaches at SSL certificate issuers and tackles whether enterprises should turn to SSL alternatives.Continue Reading

• Locate IP address location: How to confirm the origin of a cyberattack

  What's the best way to determine the origin of a cyberattack? Expert Nick Lewis weighs in.Continue Reading

• IPv6 malware: With the transition, will IPv6 spam increase?

  The transition from IPv4 to IPv6 could have some unintended negative consequences for security.Continue Reading

• Requirements for secure IPv6 deployments include better IPv6 tester tools

  More staff training, industry research and improved IPv6 tester tools are essential for secure IPv6 deployments in the enterprise. Expert Fernando Gont explains why.Continue Reading

• IPv6 myths: Debunking misconceptions regarding IPv6 security features

  Aggressive marketing has helped perpetuate a number of security-related IPv6 myths. Expert Fernando Gont helps separate myth from fact to ensure a secure IPv6 deployment.Continue Reading

• Thwarting a hacktivist: How to avoid sociopolitical IT security attacks

  Is your enterprise a significant hacktivist target? Learn how to determine whether your enterprise is more likely to be attacked.Continue Reading

• IPv6 security issues: IPv6 transition mechanisms

  Several IPv6 transition mechanisms have been created to ease the transition from IPv4, but Fernando Gont explains why they present IPv6 security concerns for enterprises.Continue Reading

• Log Parser examples: Using the free log analysis tool

  Log analysis is an essential security function for almost all enterprises, and, with Log Parser, much of it can be done for free. Learn how to use Microsoft's free Log Parser in this expert tip.Continue Reading

• Enterprise antivirus protection: Is signature AV worth the money?

  There's little doubt that signature-based enterprise antivirus protection is dying, but what technologies should enterprises consider to replace it? Expert Nick Lewis weighs in.Continue Reading

• Creating a Java security framework that thwarts a Java exploit

  The number of attacks on Java is steadily increasing, and many enterprises are unprepared for the threat. Get advice on how to lock down Java from expert Nick Lewis.Continue Reading

• Email, website and IP spoofing: How to prevent a spoofing attack

  Find out how to prevent spoofing attacks, including IP spoofing, email and website spoofing.Continue Reading

• FTP security best practices for the enterprise

  FTP is easy and commonly used in the enterprise, but is it secure? Anand Sastry discusses its security shortcomings, best practices for securing FTP in the enterprise and FTP alternatives that may be even more secure.Continue Reading

• How to use Wget commands and PHP cURL options for URL retrieval

  When TCP or HTTP connections aren't behaving as expected, free tools like Wget and cURL can help with URL retrieval. Learn more in this expert response from Anand Sastry.Continue Reading

• Does Internet protocol version 6 (IPv6) make applications more secure?

  Will an enterprise transitioning to IPv6 automatically make applications more secure? In this expert response, learn what an IPv6 implementation can and cannot do for application security.Continue Reading

• HTTP vs. HTTPS: Is digital SSL certificate cost hurting Web security?

  Learn why a digital SSL certificate could be the reason preventing many users from utilizing HTTPS.Continue Reading

• Free port scan: How to use Angry IP scanner

  Scanning IP ports is a critical part of maintaining enterprise information security. In this screencast, Peter Giannoulis explains how to use the free tool Angry IP scanner for these port scans.Continue Reading

• Is an SMTP TLS certificate the same as an FTP SSL certificate?

  Are all security transportation-level certificates (TLSes) the same, or are there different certificates for different protocols? In this expert response, Randall Gamby discusses SMTP and FTP certificates.Continue Reading

• Can secure FTP services protect sensitive data from hackers?

  Does secure FTP services protect against hackers and attacks? In this expert response, Michael Cobb explains why using a secure FTP service is vital for handling sensitive data transfers.Continue Reading

• How do passwordless SSH keys represent an enterprise attack vector?

  Passwordless SSH keys represent an attack vector because their safety is determined by the security of the host. Learn how to protect communication between two networked devices.Continue Reading

• How to keep networks secure when deploying an 802.11n upgrade

  Before you upgrade to 802.11n, Lisa Phifer has seven questions that every network security pro should consider.Continue Reading

• How to prevent phishing attacks with social engineering tests

  Is your enterprise capable of withstanding today's phishing attacks? Sherri Davidoff reviews how you can test your employees.Continue Reading

• How SSL-encrypted Web connections are intercepted

  Enterprises and attackers alike have found ways to sniff private Web traffic, even when it's encrypted. Sherri Davidoff reviews how encrypted Web connections can be sniffed, and ways that users can reduce their risk.Continue Reading

• How to test IPv6 infrastructures

  In this expert response, Michael Cobb explains why you should definitely test your IPv6 infrastructure sometime this year.Continue Reading

• How to create secure Windows FTP automation

  Securing Windows FTP automation can be easier than you think, according to network security expert Mike Chapple. Consider using Microsoft's free FTP utility.Continue Reading

• Creating an SSL connection between servers

  Learn the most secure way to create and SSL connection between servers with this advice from network security expert Mike Chapple.Continue Reading

• How to implement PCI network segmentation

  When trying to comply with PCI DSS, network segmentation can be a tricky subject. In this expert response, Mike Chapple explains how to separate payment system's credit card processing functionality from the rest of an enterprise network.Continue Reading

• How should service providers address VoIP security issues and threats?

  Many VoIP providers do not offer encryption services due to the difficulty inherent in encrypting voice traffic. Network security expert Mike Chapple explains what you can do to secure voice over IP networks.Continue Reading

• How to create a secure network through a shared Internet connection

  When setting up a corporate network through a shared Internet connection, security is of paramount importance. Learn best practices for creating this kind of network from expert Mike Chapple.Continue Reading

• The case against UTM: Is there a better alternative?

  Unified threat management (UTM) promises tighter security with less required oversight, but are there security risks inherent in deploying UTM appliances? Enterprise network security expert Mike Chapple weighs in.Continue Reading

• What is the best operating system for an FTP server implementation?

  When it comes to recommending an operating system for a task such as hosting an FTP server, expert Michael Cobb says it depends on what in-house expertise you have.Continue Reading

• What are the best network security books?

  Security expert Mike Chapple reveals his favorite network security books.Continue Reading

• Book chapter: IPv6 implementation security issues

  IPv6 is becoming a reality, but the network-layer protcol is far from perfect. In Chapter 1 of his new book, "IPv6 Security," author Eric Vyncke reviews some vulnerabilities.Continue Reading

• How can mobile device data be lost on a peer-to-peer (P2P) network?

  Peer-to-peer telephone services, such as Skype, Free World Dialup (FWD) and Ooma, offer users a way to save significant money on telephone services. But how well do they protect your data?Continue Reading

• Comparing FTP vs. TFTP

  There are some differences between FTP and TFTP, but here's the catch: both are inherently insecure protocols.Continue Reading

• What OSI Layer 4 protocol does FTP use to guarantee data delivery?

  What OSI Layer 4 protocol does FTP use to guarantee data delivery?Continue Reading

• Can DNS be used to support encryption?

  Expert Michael Cobb says it's more likely that encryption will be used to support DNS than the other way around.Continue Reading

• Weaponizing Kaminsky's DNS discovery

  The dust has settled since Dan Kaminsky revealed an intriguing -- and now, perhaps, notorious -- DNS exploit at this year's Black Hat briefings. But many organizations are still not patching their internal servers. John Strand explains why this ...Continue Reading

• Are open recursive DNS servers inherently insecure?

  Recursion was meant to make the Internet run better, but expert Michael Cobb explains why the willingness of malicious users to abuse open recursive DNS servers has made it part of numerous ongoing threats.Continue Reading

• How to protect DNS servers

  The DNS database is the world's largest distributed database, but unfortunately, DNS was not designed with security in mind. Application security expert Michael Cobb explains how to keep a DNS server from being hijacked.Continue Reading

• Has FFIEC made any VoIP-specific mandates?

  Mike Rothman discusses the FFIEC risk management program and explains what FFIEC considerations should be made when using VoIP.Continue Reading

• What to consider before opening a port

  Recently, a reader asked network expert Mike Chapple, "What would be the security implications of opening six ports through a firewall?" Chapple reviews what questions need to be addressed before an organization exposes any network ports.Continue Reading

• Enterprise security in 2008: Addressing emerging threats like VoIP and virtualization

  As 2008 kicks off, SearchSecurity.com's panel of experts have begun making their annual predictions about the upcoming year's key security issues, including emerging security threats. In this tip, network security expert Mike Chapple takes the first...Continue Reading