Reviews – Help Net Security

Although endpoint anti-malware and other security controls are now standard at the operating system level, keeping all endpoint software up-to-date and secure remains an open issue for many organizations. Patch management is not yet a commodity, and substantial improvements can be made with the right solution. Effective patching involves automating the entire process without slowing down endpoints or interfering with business operations. This is true whether you are a one-man-show IT administrator or a managed … More → The post Review: Action1 – Simple and powerful patch management appeared first on Help Net Security.

Andrew Ginter is a widely-read author on industrial security and a trusted advisor for industrial enterprises. He holds a BSc. in Applied Mathematics and an MSc. in Computer Science from the University of Calgary. He developed control system software products for Hewlett Packard, Agilent Technologies, and others and IT/OT middleware products for Agilent Technologies and Verano. He currently works as a VP of industrial security at Waterfall Security Solutions. He has previously written “SCADA Security: … More → The post Review: Engineering-grade OT security: A manager’s guide appeared first on Help Net Security.

Written and directed by Kilian Lieb and Max Rainer, Cyberbunker is a Netflix documentary about a group of hackers that enabled the proliferation of dark web forums where illegal materials were bought and sold. Cyberbunker: The Criminal Underworld The documentary begins with a special police unit performing a raid in what looks like a military bunker. We are then shown a thin individual with glasses and long, gray hair: Herman Johan Xennt. The (now) 64-year-old … More → The post Review: Cyberbunker: The Criminal Underworld appeared first on Help Net Security.

Data breaches now happen so often that we don’t even pause when reading yet another headline notifying us of the latest one. We react only if the breach happened to a service we use – and maybe not even then. But we should all be aware that once one of our passwords has been compromised and exposed, it should be considered compromised forever. By gathering and analyzing passwords leaked after many breaches, attackers may work … More → The post Review: Enzoic for Active Directory appeared first on Help Net Security.

Hornetsecurity 365 Total Protection Enterprise Backup is a cloud-based data protection and security solution that provides protection against spam, malware, and other advanced threats, combined with backup and recovery features. The solution is specifically designed for and fully integrated with Microsoft 365, offering email and data protection to customers. Its main objective is to create a simple, secure, and hassle-free environment. Installation It all starts with the onboarding wizard, where you, as the IT admin, … More → The post Review: Hornetsecurity 365 Total Protection Enterprise Backup appeared first on Help Net Security.

Organizations and enterprises that care about business continuity should have an established security program that needs to be reviewed on a regular basis. One of the hardest parts of creating a security strategy is deciding how to allocate resources – personnel and investments in security controls – in an efficient way. To do that we must know what security risks our organization is exposed to. Estimating risk and needs in a future scenario is hard. … More → The post Review: Group-IB Threat Intelligence & Attribution (TI&A) appeared first on Help Net Security.

The COVID-19 pandemic has transformed our private and working lives. It has also forced companies to extend the network perimeter due to employees working from their homes and to accelerate digital transformation efforts across the board. The latter push resulted in the hurried adoption of new systems and services outside of the enterprise, requiring serious efforts and in-depth technological knowledge to protect these new attack surfaces. Digital transformation also changes the game of online presence. … More → The post Review: Group-IB Digital Risk Protection appeared first on Help Net Security.

Brough to you by cybersecurity researcher Kim Crawley and pentester and author Phillip L. Wylie, The Pentester Blueprint gives insights into the most common hurdles encountered by aspiring penetration testers, as well as tips on how to overcome them. The Pentester Blueprint: Starting a Career as an Ethical Hacker The book starts by explaining what a pentester is, why they are beneficial to a company, and describes common pentesting methodologies. A pentester needs to have … More → The post Review: The Pentester Blueprint: Starting a Career as an Ethical Hacker appeared first on Help Net Security.

The IT infrastructure of larger organizations is very heterogeneous. They have endpoints, servers and mobile devices running various operating systems and accessing internal systems. On those systems, there is a great number of disparate tools – from open-source databases and web servers to commercial tools used by the organization’s financial department. Furthermore, these applications can now also be deployed on different clouds to achieve further resilience, adding even more complexity to an already intricate infrastructure. … More → The post Review: Group-IB Threat Hunting Framework appeared first on Help Net Security.

Incydr is Code42’s new SaaS data risk detection and response solution, which enables security teams to mitigate file exposure and exfiltration risk without disrupting legitimate collaboration. Code42 focuses on the problems related to the massive “work from home” shift, i.e., the fact that many different collaboration tools are being used within global enterprises. While those tools allow people to collaborate more efficiently, they also allow them to share sensitive company data. Unfortunately, traditional security tools … More → The post Review: Code42 Incydr – SaaS data risk detection and response appeared first on Help Net Security.