Back to the Blog

5 Tips to Keep Your Customers Safe this Holiday Season

Posted by Caroline Givnish on Tuesday, December 12, 2017 - 11:19 Best Practices, Data Security Security, holidays, Operational Intelligence, data security, cybersecurity

After a record-breaking Cyber Monday (with online sales soaring to $6.59 billion - a 16.8% increase over last year), Adobe is predicting that this will be the first-ever holiday season to surpass $100 billion in online sales. This is clearly fantastic news if you're in e-...

read more

It's HTTPS Time

Posted by Jon Reid on Wednesday, June 7, 2017 - 10:00 Best Practices, Drupal secure, Web Experience Management, Security, data security, cybersecurity, HTTPS
I've been seeing an increase in requests for recommendations on adding the protection of HTTPS to client sites. Questions of cost and overall need are the most common.

Do you need HTTPS?

The standard response to this for years has been yes, if your users are sending sensitive data to your website. Data like credit card numbers, personally identifiable information such as Social Security, or confidential content like financial statements or payroll all qualify as sensitive. 
 
But, I would argue that...
read more

Brute Force Attacks: Splunk Detection and Analytics

Posted by Naveed Krabbe on Tuesday, May 9, 2017 - 11:22 Best Practices, Data Security, Operational Intelligence Brute force, Splunk, Security, Detection and Analytics, Web Application Security

Intro

One of the longest-standing and most common challenges to both information security and web development teams is the brute force attack. Although this form of attack has been around for many years, it is still one of the most popular and widely used password-cracking methods. In terms of impact, brute force attacks are a very serious threat capable of affecting millions of accounts. If these attacks are not detected and addressed in a timely manner they can lead to theft of intellectual property and personally identifiable information, significant financial losses,...

read more

Fighting Financial Fraud with Splunk

Posted by Naveed Krabbe on Thursday, March 2, 2017 - 13:23 Best Practices, Function1, Operational Intelligence Splunk, Fraud, Security, Operational Intelligence, banking, finance

Introduction

It comes as no surprise that as the banking industry is increasing its online presence, financial organizations are making fraud detection and prevention a top priority. Fraud can have a significant impact to organizations both financially and operationally. Of course, in addition to large monetary losses, damage to reputation and customer relations can also occur that further highlight the impact of fraud.

The ability for organizations to perform advanced analytics on their data is necessary to recognize and respond to patterns of fraud. Simply stated, quicker...

read more

Cutting Risk in Half with Multi-Factor Authentication

Posted by Rishi Das on Thursday, January 26, 2017 - 09:53 Data Security Security, risk management, whitepaper

We rely on usernames and passwords to access various systems throughout the technology world - from laptops to bank accounts, from cloud storage to blogs - our accounts are protected by these authentication mechanisms. It is easy to forget the importance of these account credentials, until it is too late - if a username and password are breached, an unauthorized user can erase, view, and copy highly sensitive data.

 

Our Whitepaper, Cutting Risk in Half, explores the different methods and real life examples of how much risk...

read more

Splunking the Linux Audit System

Posted by Naveed Krabbe on Tuesday, August 4, 2015 - 09:48 Best Practices, Data Security, Operational Intelligence Splunk, Security, linux, Unix, Audit

For my last blog we discussed a Splunk topic geared towards the Windows side of the shop (Splunking Microsoft Windows Firewalls). So now it’s time to show some love to the Linux admins out there. More specifically, in today’s blog we will explore some tips for gaining insight into Linux audit logs using Splunk.

A little background on the Linux Audit System

The Linux Audit system provides a way to track security-relevant information on your...

read more

Security Vulnerabilities - Who is to blame?

Posted by Rishi Das on Tuesday, April 21, 2015 - 12:49 Uncategorized Security

What used to be an occasional attack on celebrity computer systems, an occasional breach of security for major retailers, and even a rare glimpse into a government institution’s database, has become a common category of news. News and media outlets on regular hacks, breaches, and cyber attacks to celebrity cloud storage, major retail chains, and even recently, the U.S. Senate are constantly updating us. But, who is to blame for all of these attacks?

IT security, and therefore IT security data breaches rely not just on one resource for protection, but the combination of three: people...

read more

Splunking Microsoft Windows Firewalls

Posted by Naveed Krabbe on Tuesday, April 14, 2015 - 11:38 Operational Intelligence Splunk, Security, Microsoft, windows, Firewall, Enterprise Security

Intro

Without exception, if you are an experienced security analyst, then you know the importance of firewall logs and the invaluable network traffic related data that they provide. Many of the key strategies of information security revolve around the network traffic of an organization and the rules that govern it. No matter the type of firewall, whether it is a hardware appliance or a software/OS level...

read more

Troubleshooting the Splunk App for Enterprise Security

Posted by Anshu Rastogi on Tuesday, May 7, 2013 - 16:29 Data Security, Operational Intelligence Security, Splunk

Intro

Welcome Splunkers! In this post, I'd like to talk about an issue I encountered recently when working on a Splunk App for Enterprise Security v2.2.1 (ES app) deployment and the approach I took in troubleshooting it. But before getting started, I'd like to congratulate Splunk and their Security Products team for winning the SC Magazine Award for "Best Security Information/Event Management (SIEM) Solution." Cheers to a job well done!

Initial Installation

As per...

read more

Passwords: Sharks Can Smell a Breach a Mile Away

Posted by Jon Reid on Tuesday, February 5, 2013 - 14:22 Best Practices, Cool Tools, Data Security Best Practices, Cool Tools, Security

2013 is not shaping up to be a banner year for Internet security. 2012 saw data breaches like 6.5 million LinkedIn password hashes leaked, 420,000 member accounts from social network Formspring, Yahoo! Voices more than 400,000 usernames and passwords, 1.5 million passwords from the online dating site eHarmony. Twitter is the latest system to suffer an embarrassing security breach with accompanying data loss. Approximately 250,000 accounts holders have had their usernames, email addresses, session tokens and encrypted/salted versions of passwords stolen. Twitter has been as proactive as...

read more
Stay In Touch