Back to the Blog

What Non-EU Companies need to know about GDPR

Posted by Mitul Patel on Wednesday, April 25, 2018 - 08:26 Best Practices, Data Security gdpr, data protection, legislation, data privacy, net neutrality

A Disclaimer

I am no lawyer, but you probably already assumed this (I hope I hope I hope ... ). So, whatever you read here is informed by my own third party readings. However, you should definitely begin a dialogue with your legal team to determine if you are directly in this legislation's line of sight. By the end of this short post, you should be able to determine if you are in it's crosshair! Duck!

If you are first hearing about GDPR and your organization does most of its business primarily online and for the EU market then its probably a little late in the game (with...

read more

5 Tips to Keep Your Customers Safe this Holiday Season

Posted by Caroline Givnish on Tuesday, December 12, 2017 - 11:19 Best Practices, Data Security Security, holidays, Operational Intelligence, data security, cybersecurity

After a record-breaking Cyber Monday (with online sales soaring to $6.59 billion - a 16.8% increase over last year), Adobe is predicting that this will be the first-ever holiday season to surpass $100 billion in online sales. This is clearly fantastic news if you're in e-...

read more

Oracle WebCenter Sites and Siteminder

Posted by N'Dèye Gnagna Marianne on Wednesday, July 5, 2017 - 10:39 Data Security, Development, Web Experience Management WCS, WEM, WebCenter Sites, Siteminder, Vanity URL Pattern, 11g

We are far from the days when logging in was as easily implemented as a username, password, and cgi script in between your user’s anonymous and logged-in states. Today’s world is ruled by powerful web access management softwares that not only securely keep intruders from accessing your most secure pages but also allows for a user management system hooked up to your LDAP environment. Among them: HP’s IceWall SSO, IAM (Identity and Access Management), and CA Siteminder. Let’s focus on the latter.

 

Per their website, CA Siteminder promises to...

read more

Brute Force Attacks: Splunk Detection and Analytics

Posted by Naveed Krabbe on Tuesday, May 9, 2017 - 11:22 Best Practices, Data Security, Operational Intelligence Brute force, Splunk, Security, Detection and Analytics, Web Application Security

Intro

One of the longest-standing and most common challenges to both information security and web development teams is the brute force attack. Although this form of attack has been around for many years, it is still one of the most popular and widely used password-cracking methods. In terms of impact, brute force attacks are a very serious threat capable of affecting millions of accounts. If these attacks are not detected and addressed in a timely manner they can lead to theft of intellectual property and personally identifiable information, significant financial losses,...

read more

Cutting Risk in Half with Multi-Factor Authentication

Posted by Rishi Das on Thursday, January 26, 2017 - 09:53 Data Security Security, risk management, whitepaper

We rely on usernames and passwords to access various systems throughout the technology world - from laptops to bank accounts, from cloud storage to blogs - our accounts are protected by these authentication mechanisms. It is easy to forget the importance of these account credentials, until it is too late - if a username and password are breached, an unauthorized user can erase, view, and copy highly sensitive data.

 

Our Whitepaper, Cutting Risk in Half, explores the different methods and real life examples of how much risk...

read more

The Open Front Door to your Data - Announcing a White Paper by Function1

Posted by Rishi Das on Tuesday, September 20, 2016 - 09:06 Best Practices, Data Security data security, web applications, cyber security, vulnerabilities, safety, protocols, network security, data storage, data accessibility, standard, protection, secure

Generations ago, documents and prized objects were hidden from the public, secured in the safes of many homes, offices, banks, and institutions. Under close protection, as well as under lock and key, this tangible-data was protected from unauthorized parties through the implementation of time-tested procedures. 

As the world changed and technology improved, the methodology for approaching and securing this data changed as well. In our February 2015 White Paper, Protecting the CIA, we discussed the importance in protecting the...

read more

Integrating External Asset Databases with the Splunk App for Enterprise Security

Posted by Anshu Rastogi on Tuesday, January 12, 2016 - 09:22 Data Security, Operational Intelligence Splunk, Enterprise Security, Big data, Database, Integration

Overview

In this post I'd like to cover an approach for integrating an external asset database with the Splunk App for Enterprise Security (ES).  This post is relevant for people just starting out with ES or who have used it for a while and want to improve the integration of their assets information with the application. 

For those wondering what an assets list is in the context of ES, it's a list containing information (such as...

read more

Splunking the Linux Audit System

Posted by Naveed Krabbe on Tuesday, August 4, 2015 - 09:48 Best Practices, Data Security, Operational Intelligence Splunk, Security, linux, Unix, Audit

For my last blog we discussed a Splunk topic geared towards the Windows side of the shop (Splunking Microsoft Windows Firewalls). So now it’s time to show some love to the Linux admins out there. More specifically, in today’s blog we will explore some tips for gaining insight into Linux audit logs using Splunk.

A little background on the Linux Audit System

The Linux Audit system provides a way to track security-relevant information on your...

read more

Red Hat Storage Server, an Innovative Hybrid Storage Solution for Big Data

Posted by Rishi Das on Tuesday, June 9, 2015 - 09:10 Cool Tools, Data Security, Operational Intelligence Big data, data storage, red hat storage server, Splunk

Big Data surrounds us all, in some shape or form. Typically Big Data (billions or trillions of vast and complex records) is so large, that it requires new and powerful computational resources to process and store. These gigantic sets of data can be analyzed to comprehend patterns, associations, trends, and statistics that help better understand user experience, human behavior, interactions, engagement, etc.

Big Data analysis, such as the services offered by our Function1 Operational Intelligence team, can be provided for a range of industries including but not limited to: financial...

read more

Troubleshooting the Splunk App for Enterprise Security

Posted by Anshu Rastogi on Tuesday, May 7, 2013 - 16:29 Data Security, Operational Intelligence Security, Splunk

Intro

Welcome Splunkers! In this post, I'd like to talk about an issue I encountered recently when working on a Splunk App for Enterprise Security v2.2.1 (ES app) deployment and the approach I took in troubleshooting it. But before getting started, I'd like to congratulate Splunk and their Security Products team for winning the SC Magazine Award for "Best Security Information/Event Management (SIEM) Solution." Cheers to a job well done!

Initial Installation

As per...

read more
Stay In Touch