fbpx

Knowledge Center

Popular Blog Posts

Management Consulting

Blog Feed

RSS Blog Feed

Details
Category: Cybersecurity PRISM
What is a Zero Trust Architecture?
 
Zero Trust is a strategy itself. As an initiative it helps you prevent major data breaches by eliminating the concept of trust from an organization’s network architecture. It is rooted in the principle of “never trust, always verify.”

Read more: What is a Zero Trust Architecture and How can you build this?

Details
Category: Cybersecurity PRISM
What is Session Hijacking?
 
A session is the period of time when you as a user are actively accessing an application, website, or other online service. Each user session begins when you log into a website or app and ends when you log out of it. For example, when you type your username and password into a banking application, that begins your session on that online application.

Read more: What is Session Hijacking and What CounterMeasures can you deploy?

Details
Category: Cybersecurity PRISM
Because security weaknesses come in different forms to your organisation, it’s necessary to have a focused and dedicated cyber/Information security team that comprehensively searches for vulnerabilities that go beyond simple risk assessments. Your dedicated security team can include also a Red Team.

Read more: What is Red Teaming and what are the major benefits?

Details
Category: Cybersecurity PRISM
Let's first understand the prioritization of vulnerabilities.
 
Traditionally, organizations have used the industry standard CVSS for measuring how easy it is to exploit a vulnerability and how damaging the exploit can be. Scores range from 0 to 10, with 10 being the most severe. CVSS is a great starting point for evaluating the potential impact of a vulnerability.

Read more: Predictive Prioritization of Vulnerabilities and How does it work?

Details
Category: Cybersecurity PRISM
Who is a Security Architect?
 
A security architect takes on a vital role in an IT department. You'll design systems, manage employees and help evolve the security needs of the organization. You can rise to this senior-level position once you have garnered extensive experience and credentials in the computer security field.

Read more: Who is a Security Architect and How it is different from Security Auditor

Details
Category: Cybersecurity PRISM
IBM Security Guardium is designed to help safeguard critical data.
 
It automatically discovers and classifies 'sensitive data' from across the enterprise, providing real-time data activity monitoring and advanced user behavior analytics to help discover unusual activity around sensitive data.

Read more: What is IBM Security Guardium? What does it Guard?

Details
Category: Cybersecurity PRISM
IDS are mostly used for detecting anomalies with the aim of catching the hackers before they do any real damage to the network. They can be either host-based or network-based. Host-based IDS are installed on the client computer while the Network based IDS protection are residing in the network.

Read more: How Does Intrusion Detection System Actually work? What are the Major Types of IDS?

Details
Category: Cybersecurity PRISM
Elasticsearch is the central component of the Elastic Stack, a set of open-source tools for data ingestion, enrichment, storage, analysis, and visualization. It is commonly referred to as the “ELK” stack after its components Elasticsearch, Logstash, and Kibana and now also includes Beats.

Read more: What is Elasticsearch Stack? How does Elasticsearch work?

Details
Category: Cybersecurity PRISM
Many organizations are quickly discovering that threat hunting is the next step in the evolution of the modern SOC, but they remain unsure of how to start threat-hunting or how far along they are in developing their own hunt capabilities. So, the question is --How can you quantify where your organization stands on the road to effective hunting?
 
Here, we will discuss a general model that can map threat-hunting maturity across any organization.

Read more: What is (Threat) Hunting Maturity Model?

Details
Category: Cybersecurity PRISM
The basis for this attack often targets applications like Web Servers (i.e., Windows IIS, Apache, etc…); however, application layer attacks have been evolving to application platforms like WordPress, Joomla, Drupal, Magento, and others.

Read more: What are Application Layer DDoS Attacks?

Details
Category: Cybersecurity PRISM
White Box Penetration Testing:
 
White box penetration testing involves sharing full network and system information with the tester, including network maps and credentials. This helps to save time and reduce the overall cost of an engagement.

Read more: 3-Types of Penetration Testing

  1. What Is IPSec? How does IPSec work?
  2. OWASP Top 10 . Watch Out for these Security Risks in Your Web Applications !
  3. What is Security Virtualization? How does Virtualized Security work?
  4. Revisiting Security Fundamentals - The CIA Triad
  5. What is a Brute Force Attack? How Much TIme it may take to Break Your Password?
  6. What is PCAP? What are the Different Versions of PCAP?
  7. Let Us Compare SSL and TLS
  8. What is Security Onion? How Powerful Security Onion Actually is?
  9. What is Volume-based DDoS Attack? Know about Top-3 Largest Known DDoS Attacks
  10. What is VPN ? How Can You Choose a Good VPN ?

Page 14 of 28