Extended Detection and Response (XDR), what does it really consist of?
You've probably read an article, watched a talk or listened to a webinar about what the term XDR, also known as extended detection and response, is. The cyber security research f...
How SIEM correlation rules work
SIEM is a powerful security tool when implemented correctly. Network security devices such as IDS devices, IPS devices and firewalls generate a large number of logs. A well-confi...
What is a cybersecurity strategy and how can a company develop one?
The number of users, devices and resources on enterprise networks is growing exponentially. With this expanding attack surface, a company's assets, intellectual property, reputat...
Reasons why we see more ransomware attacks than ever before
Cybersecurity specialists have noted several worrying trends over the past year, with ransomware being one of the most. Admittedly, this is far from a new problem, but it is now ...
What is an advanced persistent threat?
As the threat landscape evolves faster than we can keep up with, organizations need to be aware of the type of threats they may face. Certain types of threats, such as ransomware...
How can DPI be used in security?
After the last post where we learned about deep packet inspection (DPI), we will talk about how this tool can be used in security products such as redborder. 1. The DPI exam...
What is deep packet inspection (DPI)?
If you are browsing any website ... If you are sending an email ... If you are watching a movie on Netflix ... If you are making a Skype call or a Zoom meeting ... It...
How reliable is real-time security?
Today's fast-paced world means changing the approach to security. Traditional ways of protecting networks or facilities often involved responding to threats after they occurred or ...