Cyber Security Labs

NSS Labs

Once More Unto The Breach (Detection Test)
It is difficult to go a week without reading about a major enterprise being breached. And it is because of this that the Breach Detection Systems (BDS) market is growing at an incredible pace that is expected to continue well into the future (32% CAG…
- 4 Aug 15, 12:00am -
New tools for faster security incident responses
How quickly could you solve a crime if you had at your fingertips a comprehensive index of all activities occurring at a crime scene before, during, and after the crime? Security professionals have spent considerable amounts of time determining the s…
- 20 May 15, 12:00am -
NGIPS – HP TippingPoint Update
In our recently completed Next Generation Intrusion Prevention Systems (NGIPS) test, NSS Labs and HP TippingPoint discovered an anomaly during testing. Fundamentally, the nature of the anomaly was related to a recent CVE, which was being heavily util…
- 24 Apr 15, 12:00am -

Security Orchestration – Integration, Process, and Wise Investments Driven by a Security Conductor
When I am asked by friends to discuss the security breaches that feature ever more frequently in the news, I use a music analogy. Why music? For one thing, I am a fan of traditional classical music; for another, this allows me to describe the roles o…
- 14 Apr 15, 12:00am -
The Best Place for Yesware is Nowhere
A talented security colleague came across a tweet from a company called Yesware and remarked to me that it could be construed as spear phishing with specific language for legal protection. I can see his point, but in pedantically technical language,…
- 5 Mar 15, 12:00am -
Detecting the Invisible Part 3: "Retreat from the Breach"
Our approach to securing the enterprise has changed, and breach detection technology has been largely instrumental in this process. This report from NSS Labs is the final in a three-part series on the impact of the breach detection system (BDS).As t…
- 5 Mar 15, 12:00am -
Detecting the Invisible Part 2: "Once More Unto the Breach, Dear Friends"
Our approach to securing the enterprise has changed, and breach detection technology has been largely instrumental in this process. This report from NSS Labs is the second in a three-part series on the impact of the breach detection system (BDS).
- 4 Mar 15, 12:00am -
Breached? Continuous Forensic Analytics Speeds Incident Response
Over the course of the last few years, the number of publicized breaches has risen dramatically, ultimately costing some CXOs their jobs. The irony is that in many cases, the breach itself is not the cause of their dismissal, but rather it is the han…
- 3 Mar 15, 12:00am -
Detecting the Invisible
Our approach to securing the enterprise has changed, and breach detection technology has been largely instrumental in this process. This report from NSS Labs is the first in a three-part series on the impact of the breach detection system (BDS).
- 2 Mar 15, 12:00am -
How Does The Average Enterprise Stay On Top of The Latest Technology?
You’ve probably heard the phrase “drinking from a fire hose,” and in the security world, it has never been more applicable than it is today.
- 4 Feb 15, 12:00am -

ICSA Labs

NSFOCUS WAF family attains ICSA Labs Web Application Firewall Certification
Congratulations NSFOCUS! The NSFOCUS WAF family of appliances met all of ICSA Labs' requirements during cyber-security testing to attain ICSA Labs Web Application Firewall Certification j.mp/2021_nsfocuswaf_icsa(...)
- 55 days ago 19 Feb 21, 3:21pm -
Check Point Security Gateway maintains ICSA Labs Firewall Certification
After recent testing, the Check Point R81 security platform met all of ICSA Labs' firewall security testing requirements. As a result, it retained ICSA Labs Firewall Certification j.mp/2021_CheckPoint_ICSA.(...)
- 59 days ago 15 Feb 21, 11:29am -
Array Networks WAF (ASF) on AVX 7800 attains ICSA Labs Web Application Firewall Certification
Congratulations Array Networks! The Array Networks WAF (ASF) on AVX 7800 met all of ICSA Labs' requirements during security testing to attain ICSA Labs Web Application Firewall Certification j.mp/2021_asf_icsa(...)
- 69 days ago 5 Feb 21, 3:56pm -

GajShield Next Generation Firewall Appliance Family retains ICSA Labs Firewall Certification
Following successful security testing, the GS 240dc met all of ICSA Labs' corporate firewall requirements. As a result, both it and the other models comprising the GajShield Next Generation Firewall Appliance Family retained ICSA Labs Firewall Certif…
- 72 days ago 2 Feb 21, 10:29am -
The Pitney Bowes Connect+/SendPro P-Series retains ICSA Labs Network Attached Peripheral Security (NAPS) Certification
Following security testing, the Pitney Bowes Connect+/SendPro P-Series retained ICSA Labs NAPS Certification j.mp/2021_connect_icsa (...)
- 80 days ago 25 Jan 21, 1:23pm -
Sophos XG Firewalls retain ICSA Labs Firewall Certification
Following successful security testing, the Sophos XG 115 met all of ICSA Labs' corporate firewall requirements. As a result, both it and the other models comprising the Sophos XG Firewalls family retained ICSA Labs Firewall Certification j.mp/2021_xg…
- 83 days ago 22 Jan 21, 9:54pm -
Q4 2020 Advanced Threat Defense (ATD) Testing Results Posted
Protect your enterprise against unknown malicious threats. Consider security products from these 6 that passed ICSA Labs Q4 2020 advanced threat defense (ATD) testing: Trend Micro (who also passed Q4 2020 ATD-Email testing), SonicWall, Sequretek, Jun…
- 90 days ago 15 Jan 21, 8:36am -
Trend Micro Cloud Edge maintains ICSA Labs Firewall Certification
Following successful security testing, the Cloud Edge 100 G2 met all of ICSA Labs' corporate firewall requirements. As a result, both it and the other models comprising the Trend Micro Cloud Edge family retained ICSA Labs Firewall Certification j.mp/…
- 93 days ago 12 Jan 21, 11:16pm -
A10 Networks Thunder Series retains ICSA Labs IPSec Certification
After recent testing, the TH-5330S from A10 Networks met all of ICSA Labs' IPSec security and interoperability testing requirements. As a result, both this model and the other models comprising the A10 Networks Thunder Series retained ICSA Labs IPSec…
- 97 days ago 8 Jan 21, 8:29pm -
Allied Telesis's AR4050S maintains ICSA Labs Firewall Certification
After recent testing, the AR4050S from Allied Telesis met all of ICSA Labs' firewall security testing requirements. As a result, it retained ICSA Labs Firewall Certification j.mp/2020_ar4050s_icsa.(...)
- 24 Dec 20, 3:56pm -
GFI Software's Kerio Control NG500 attains ICSA Labs Firewall Certification
Congratulations GFI Software! The Kerio Control NG500 met all of ICSA Labs' requirements during security testing to attain ICSA Labs Firewall Certification j.mp/2020_kerio_icsa(...)
- 7 Dec 20, 7:15pm -
VarioSecure Network Platform retains ICSA Labs Firewall Certification
After recent testing, the VSR402j from VarioSecure met all of ICSA Labs' firewall security testing requirements. As a result, it and the VarioSecure Network Platform retained ICSA Labs Firewall Certification j.mp/2020_icsa_vsr402j(...)
- 2 Dec 20, 3:37pm -
Fortinet's FortiWeb 1000E retains ICSA Labs WAF Certification
In the most recent test cycle, the FortiWeb 1000E met all of ICSA Labs' web application firewall (WAF) requirements. As a result, the FortiWeb 1000E retained ICSA Labs WAF Certification j.mp/2020_1000E(...)
- 24 Nov 20, 2:56pm -
A10 Networks Thunder Series retains ICSA Labs Firewall Certification
After recent testing, the Thunder 5330 from A10 Networks met all of ICSA Labs' firewall security testing requirements. As a result, it and the A10 Networks Thunder Series retained ICSA Labs Firewall Certification j.mp/2020_fw_5330(...)
- 7 Nov 20, 7:59am -
ESTsecurity's ALYac 4 maintains ICSA Labs Endpoint Anti-Malware Certification
Following successful security testing, ALYac 4 remains ICSA Labs Endpoint Anti-Malware Certified j.mp/icsa_alyac_2020.(...)
- 2 Nov 20, 11:56pm -
Array AG Series SSL VPN Appliances retain ICSA Labs SSL-TLS VPN Certification
The vxAG running on the Array Networks AVX7800 met all of ICSA Labs' SSL-TLS VPN criteria requirements. As a result, both it and the Array AG Series SSL VPN Appliances retained ICSA Labs SSL-TLS VPN Certification j.mp/2020_vxAG(...)
- 29 Oct 20, 7:56pm -
Q3 2020 Email Advanced Threat Defense (ATD-Email) Testing Results Posted
Wondering if your email security solution can protect your organization from unknown malicious threats in email? ICSA Labs performs quarterly security tests to see how well these solutions protect against email-borne malware. These 3 email security s…
- 15 Oct 20, 2:36pm -
Q3 2020 Advanced Threat Defense (ATD) Testing Results Posted
Is your organization protected against unknown malicious threats? Security solutions from these 7 passed ICSA Labs Q3 2020 quarterly advanced threat defense (ATD) testing: Trend Micro, SonicWall, Sequretek, Juniper Networks, GoSecure, Fortinet, & Ahn…
- 15 Oct 20, 1:16pm -
Fortinet's FortiGate Consolidated Security Platforms retain ICSA Labs Firewall Certification
- 12 Oct 20, 3:56pm -
TG Soft's VirIT eXplorer PRO retains ICSA Labs Endpoint Anti-Malware Certification
Congratulations TG Soft! Following rigorous security testing, the VirIT eXplorer PRO met all of ICSA Labs' endpoint anti-malware requirements. As a result, VirIT eXplorer PRO retained ICSA Labs Endpoint Anti-Malware Certification j.mp/icsa_tgsoft_2…
- 1 Oct 20, 11:56pm -
Zyxel's ZyWALL Series retains ICSA Labs Corporate Firewall Certification
Congratulations Zyxel! Following rigorous security testing, the USG FLEX 100 met all of ICSA Labs' corporate firewall requirements. As a result, both the USG FLEX 100 and the rest of the ZyWALL Series retained ICSA Labs Firewall Certification j.mp/20…
- 30 Sep 20, 7:03pm -
Radware's AppWall OnDemand Switch VL retains ICSA Labs Web Application Firewall Certification
Congratulations Radware! Following rigorous security testing, the AppWall OnDemand Switch VL met all of ICSA Labs' web application firewall requirements. As a result, the AppWall OnDemand Switch VL retained ICSA Labs Web Application Firewall Certif…
- 16 Sep 20, 1:16pm -
Fortinet's FortiGate Consolidated Security Platforms remain ICSA Labs SSL-TLS VPN Certified following latest test cycle
Congratulations Fortinet! Following successful testing of the FortiGate 501E, the FortiGate Consolidated Security Platforms maintained ICSA Labs SSL-TLS VPN Certification j.mp/icsa_sslvpn_501e.(...)
- 24 Aug 20, 1:19pm -
A10 Networks Thunder Series retains ICSA Labs Web Application Firewall Certification
Congratulations A10 Networks! Following rigorous security testing, the Thunder 5430S met all of ICSA Labs' web application firewall requirements. As a result, both the 5430S and the A10 Networks Thunder Series retained ICSA Labs Web Application Fir…
- 4 Aug 20, 1:12pm -
Acronis's endpoint anti-malware product Acronis Cyber Protect Cloud attains ICSA Labs Anti-Malware Certification
Congratulations Acronis! Acronis Cyber Protect Cloud earned ICSA Labs Endpoint Anti-Malware Security Certification following the latest security testing j.mp/icsa_acronis_2020.(...)
- 24 Jul 20, 7:16pm -
Q2 2020 Email Advanced Threat Defense (ATD-Email) Testing Results Posted!
Is your email security solution doing its job? Request...er...insist(!) that your email security provider get theirs tested! ICSA Labs quarterly tests how well email security solutions provide protection against unknown malicious threats in email. So…
- 8 Jul 20, 9:31pm -
Q2 2020 Advanced Threat Defense (ATD) Testing Results Posted!
Looking for protection against unknown malicious threats? Security solutions from these 7 passed ICSA Labs Q2 2020 quarterly advanced threat defense (ATD) testing: Trend Micro, SonicWall, Sequretek, Juniper Networks, GoSecure, Fortinet, & AhnLab. R…
- 8 Jul 20, 3:11pm -
Barracuda CloudGen Firewall F-Series retains ICSA Labs Enterprise Firewall Certification
Congratulations Barracuda Networks! Following rigorous security testing, the Barracuda CloudGen Firewall F18 met all of ICSA Labs' enterprise firewall requirements which includes the testing of VoIP, IPv6 and High Availability among other things. A…
- 12 Jun 20, 3:51pm -
VMware NSX-T Data Center attains ICSA Labs Firewall Certification
Congratulations VMware! The VMware NSX-T Data Center met all of ICSA Labs' requirements during rigorous security testing to attain ICSA Labs Firewall Certification j.mp/2020_nsxt_icsa (...)
- 5 Jun 20, 6:25pm -
The Hillstone Networks SG-6000 Series NGFW family retained ICSA Labs Corporate Firewall Certification
Congratulations Hillstone Networks! After rigorous security testing, the Hillstone Networks SG-6000 Series NGFW family of products met all of ICSA Labs' security testing requirements to retain ICSA Labs Firewall Certification j.mp/2020_icsa_hillsto…
- 28 May 20, 5:31pm -
Juniper Networks vSRX Virtual Firewall attains ICSA Labs Firewall Certification
Congratulations Juniper Networks! The vSRX Virtual Firewall met all of ICSA Labs' requirements during rigorous security testing to attain ICSA Labs Firewall Certification j.mp/2020_vsrx_icsa(...)
- 12 May 20, 8:01pm -
Fortinet FortiGate Consolidated Security Platforms retains ICSA Labs IPSEC Certification
Congratulations Fortinet! The FortiGate Consolidated Security Platforms met all of ICSA Labs' requirements during rigorous interoperability and security testing of the FortiGate VM64 virtual appliance to retain ICSA Labs IPSEC Certification j.mp/2020…
- 8 May 20, 6:31pm -
The Pitney Bowes SendPro C200, C300, C400 retains ICSA Labs Network Attached Peripheral Security (NAPS) Certification
Congratulations Pitney Bowes! Following security testing, the SendPro C200, C300, C400 retained ICSA Labs NAPS Certification j.mp/2020_c200_icsa (...)
- 5 May 20, 3:52pm -
F5 Networks BIG-IP Family retains ICSA Labs IPSEC Certification
Congratulations F5 Networks! The BIG-IP Family met all of ICSA Labs' requirements during rigorous interoperability and security testing of the BIG-IP i10800 to retain ICSA Labs IPSEC Certification j.mp/2020_f5ipsec_icsa(...)
- 24 Apr 20, 5:33pm -
Barracuda Web Application Firewall Family retains ICSA Labs Web Application Firewall Certification
Congratulations Barracuda Networks! The Barracuda Web Application Firewall Family met all of ICSA Labs' requirements during rigorous security testing of the model 660 to retain ICSA Labs Web Application Firewall Certification j.mp/2020_barracudawaf_i…
- 17 Apr 20, 8:31pm -
SonicWall joins AhnLab, Fortinet, GoSecure, Juniper and Trend Micro After Successful Q1 2020 Advanced Threat Defense (ATD) Certification Testing
ICSA Labs certified advanced threat defense (ATD) security product vendors that passed and received a certification testing report following the recently completed Q1 2020 ATD test cycle include: AhnLab (report), Fortinet (report), GoSecure (report),…
- 13 Apr 20, 5:31pm -
Mimecast joins Fortinet and Trend Micro After Successful Q1 2020 Email Advanced Threat Defense (ATD-Email) Certification Testing
ICSA Labs certified email advanced threat defense (ATD-Email) security product vendors that passed and received a certification testing report following the recently completed Q1 2020 ATD-Email test cycle include: Fortinet (report), Mimecast (report)…
- 13 Apr 20, 4:31pm -
Quick Heal's endpoint anti-malware product Seqrite Endpoint Security maintains ICSA Labs Anti-Malware Certification
Congratulations Quick Heal! Seqrite Endpoint Security remains ICSA Labs Endpoint Anti-Malware Certified following latest testing j.mp/icsa_quickheal_2020. (...)
- 27 Mar 20, 9:31pm -
The Pitney Bowes SendPro Mailstation attains ICSA Labs Network Attached Peripheral Security (NAPS) Certification
Congratulations Pitney Bowes! Following security testing, the SendPro Mailstation attained ICSA Labs NAPS Certification j.mp/2020_icsa_csd1 (...)
- 18 Mar 20, 5:41pm -
AhnLab's endpoint anti-malware product AhnLab V3 Internet Security 9.0 maintains ICSA Labs Anti-Malware Certification
Congratulations AhnLab! AhnLab V3 Internet Security 9.0 remains ICSA Labs Endpoint Anti-Malware Certified following latest testing j.mp/icsa_ahnlab_2020.(...)
- 17 Mar 20, 2:23pm -
Check Point Security Gateway retains ICSA Labs Corporate Firewall Certification following latest test cycle
Congratulations Check Point! Following testing of the Check Point Security Gateway, the tested product maintained ICSA Labs Corporate Firewall Security Certification j.mp/icsa_checkpoint_2020.(...)
- 13 Mar 20, 7:31pm -
Microsoft's Azure Firewall first cloud-based firewall to attain ICSA Labs Corporate Firewall Certification
Congratulations Microsoft! After rigorous security testing, Microsoft's cloud-based Azure Firewall became the first cloud-based service to meet all of ICSA Labs' firewall requirements and attain ICSA Labs Firewall Certification j.mp/2020_azure_icsa(.…
- 18 Feb 20, 12:45pm -
The Pitney Bowes DM Series Family and SmartLink Products Maintain ICSA Labs Network Attached Peripheral Security (NAPS) Certification
Congratulations Pitney Bowes! Following security testing, both the DM Series Family and SmartLink PB-4000 products maintained ICSA Labs NAPS Certification j.mp/2020_pb_icsa(...)
- 13 Feb 20, 7:31pm -
F5 Networks BIG-IP Advanced Web Application Firewall (i10800) attains ICSA Labs Web Application Firewall Certification
Congratulations F5 Networks! The BIG-IP Advanced Web Application Firewall (i10800) met all of ICSA Labs' requirements during rigorous security testing to attain ICSA Labs Web Application Firewall Certification j.mp/2020_f5waf_icsa(...)
- 12 Feb 20, 3:23pm -
The Sophos XG Firewalls attain ICSA Labs Corporate Firewall Certification
Congratulations Sophos! After rigorous security testing the Sophos XG Firewalls met all of ICSA Labs' firewall requirements to attain ICSA Labs Firewall Certification j.mp/2020_icsa_xg(...)
- 11 Feb 20, 8:31pm -
F5's BIG IP Family Remains ICSA Labs SSL-TLS VPN Certified Following Latest Test Cycle
Congratulations F5! Following successful testing of the BIG-IP i10800, the BIG-IP Family maintained ICSA Labs SSL-TLS VPN Certification j.mp/2020_F5_TLS.(...)
- 21 Jan 20, 2:23pm -
Sangfor Technologies' Next Generation Application Firewall (NGAF) family of products attains ICSA Labs Corporate Firewall Certification
Congratulations Sangfor! After rigorous security testing the NGAF firewall products met all of ICSA Labs' firewall requirements to attain ICSA Labs Firewall Certification j.mp/2020_sangfor_ngaf (...)
- 10 Jan 20, 9:11pm -
Six Security Solutions Maintain ICSA Labs Advanced Threat Defense (ATD) Certification After Q4 2019 Test Cycle
ICSA Labs certified advanced threat defense (ATD) security product vendors that passed and received a certification testing report following the recently completed Q4 2019 ATD & ATD-Email test cycle include: AhnLab (report), Fortinet (report), GoSecu…
- 8 Jan 20, 4:31pm -
Trend Micro Cloud Edge family of products attains ICSA Labs Corporate Firewall Certification
Congratulations Trend Micro! The Trend Micro Cloud Edge products met all requirements following rigorous security testing to attain ICSA Labs Firewall Certification j.mp/2019-trend-ce(...)
- 10 Dec 19, 2:23pm -
Trend Micro Cloud Edge 50 attains ICSA Labs Corporate Firewall Certification
Congratulations Trend Micro! The Trend Micro Cloud Edge 50 met all requirements following rigorous security testing to attain ICSA Labs Firewall Certification j.mp/2019-ce50(...)
- 18 Nov 19, 11:35pm -
Pitney Bowes SendPro C200, C300, C400 Maintain ICSA Labs Network Attached Peripheral Security (NAPS) Certification
Congratulations Pitney Bowes! Following security testing, the SendPro C200, C300, C400 maintained ICSA Labs NAPS Certification j.mp/2019-pb-c200 (...)
- 18 Nov 19, 3:53pm -
Pitney Bowes Connect+ / SendPro P-Series Maintains ICSA Labs Network Attached Peripheral Security (NAPS) Certification
Congratulations Pitney Bowes! Following security testing, the Connect+ / SendPro P-Series Maintained ICSA Labs NAPS Certification j.mp/2019-pb-sendpro-p (...)
- 15 Nov 19, 2:53pm -
H3C SecPath Firewall Family attains ICSA Labs Corporate Firewall Certification
Congratulations H3C! The H3C SecPath Firewall Family met all requirements following rigorous security testing to attain ICSA Labs Firewall Certification j.mp/2019-h3c-secpath(...)
- 11 Nov 19, 6:54pm -

Miercomm Research

Konica Minolta CS Remote Care Security Review – Miercom Certified Secure
Konica Minolta Multifunction Products (MFP) are devices that allow businesses to extend their knowledge, marketing and daily operations through printing, copying, scanning, faxing and more. MFP management assists businesses with diverse services -suc…
- 34 days ago 12 Mar 21, 8:14pm -
Miercom Report Cisco Catalyst 9100 Wi-Fi 6 Access Points & Cisco DNA Center Competitive Assessment – Miercom Performance Verified
Cisco Catalyst 9100 Wi-Fi 6 Access Points & Cisco DNA Center Competitive Assessment explores using the market leading Enterprise wireless Access Points products in the industry, we aimed to determine the value of Wi-Fi 6 and what it means to modern n…
- 37 days ago 9 Mar 21, 6:45pm -
Arista Cloud Vision WiFi Competitive Performance Review – Miercom Performance Verified
Arista CloudVision WiFi (CV WiFi) is a software-driven cloud platform built on a programmable, resilient and self-healing structure. It allows for a stateful network view and class-based automation across cloud networks to reduce the need for custom…
- 38 days ago 8 Mar 21, 9:23pm -

Cisco Umbrella Cloud Security Service Review – Miercom Performance Verified
Cisco Umbrella’s performance and innovative use of Anycast to improve performance and reliability are examined in this report. Anycast allows Umbrella infrastructure to execute functionality (e.g. updates, additions, removals) without sacrificing d…
- 55 days ago 19 Feb 21, 9:24pm -
Konica Minolta World Wide Remote Service Platform (WWRSPF) Review – Miercom Certified Secure
Multi-function Printers (MFPs) allow businesses to print, copy, scan, fax and more. Before, these devices required on-site maintenance, but now customers benefit from, remote services that eliminate travel, cost and downtime. Konica Minolta uses an a…
- 64 days ago 10 Feb 21, 6:07am -
Cisco SD-WAN and SASE Cloud Architecture Review 2020 – Miercom Performance Verified
Miercom independently assess the functionality and performance of the Cisco SD-WAN solution with SASE architecture – a new approach to integrating cloud applications with branch site infrastructure. Our engineers found this solution offered optimiz…
- 1 Dec 20, 5:12pm -
Blue Hexagon Next-Gen Detection and Response (NDR) Review 2020 – Miercom Certified Secure
Miercom tested the Blue Hexagon Next-Gen Detection and Response (NDR) for its real-time deep learning approach to analyzing encrypted attacks based on contextual, behavioral-based activity. Compared to similar products in its market, Blue Hexagon pro…
- 2 Nov 20, 6:29pm -
Cisco Embedded Wireless Controller Review 2020 – Miercom Performance Verified
Miercom tested the Cisco Embedded Wireless Controller (EWC), combining the most advanced controller (Cisco Catalyst 9800 Series) with the latest Wi-Fi 6 access points (Cisco Catalyst 9100) for a best-in-class wireless experience. The Cisco EWC is a s…
- 29 Jun 20, 9:50pm -
Cisco Data Center Network Management Review 2020 – Miercom Performance Verified
The modern-day data center has evolved from managing a few switches to the complex task of overseeing data center fabrics, compounded by multi-site, multi-cloud implementations. An administrator who once managed a handful of physical switches, now mu…
- 23 Jun 20, 6:39pm -
Aruba SD-Branch Review 2020- Miercom Performance Verified
Software Defined Wide Area Networks (SD-WAN) help simplify, optimize and control multiple local branch office deployments of a corporate network or data center. Typically, this is done with VPN over MPLS, T1/T3, Broadband or 4G/LTE across WAN to bran…
- 28 Feb 20, 7:24pm -

Open DNS Security Lab

Most common cybersecurity threats of 2021 broken down by industry
In today’s modern threat landscape, it’s hard to properly allocate resources where they’re needed most. Is it cryptomining, ransomware, phishing or some new threat that no one has faced before? It can be a little (or let’s be honest here), a…
- 2 days ago 13 Apr 21, 8:00am -
Trojans, information stealer feature complex risks
Welcome to the first monthly edition of the Cisco Umbrella Threat Spotlight, which is produced by our cybersecurity threat analysis team. This team supports the collection, analysis and distribution of threat intelligence from the Cisco global cloud…
- 7 days ago 8 Apr 21, 12:31pm -
Protective DNS: What it is, why it matters, and what you need
Earlier this month, the National Security Agency (NSA) and Cybersecurity Infrastructure Security Agency (CISA) issued an advisory on the growing need to introduce a protective DNS (PDNS) solution to your organization’s security footprint. Because D…
- 9 days ago 6 Apr 21, 7:10am -

Cisco Umbrella unlocks the power of SASE with new security capabilities
Secure access anytime, anywhere After the massive shift to remote work, more organizations are moving to a model where networking and security converge together in the cloud. Gartner coined the term secure access service edge (SASE) to describe this…
- 16 days ago 30 Mar 21, 7:10am -
Cisco launches new Secure Access Service Edge (SASE) data centers in Northern Europe for security customers
Cisco Umbrella recently added new data centers to serve customers in Denmark and Sweden and we could not be more excited! When selecting data center locations, we look at several criteria, including the number of users in that region and the transit…
- 23 days ago 23 Mar 21, 7:01am -
Cryptomining, phishing & trojan threat trends and how to block
For the majority of 2020, in the face of a global pandemic, the entire world grappled with massive change — in how we lived, how we worked, how we connected. But one area that’s always been dynamic and rapidly evolving is the cyberthreat landscap…
- 30 days ago 16 Mar 21, 8:00am -
CISA Reports: Increased ransomware attacks targeting K-12 school districts
There has been heightened attention (and in some cases, scrutiny) on the reopening plans for K-12 school districts across the nation. If the decision of whether or not to send your kid back to school isn’t already highly charged (and stressful!) en…
- 44 days ago 2 Mar 21, 4:00pm -
Which cyber attacks most commonly target small businesses?
So, you think you already know the good, the bad, and the ugly about cybersecurity threats, such as malware and phishing, that small and medium-sized businesses (SMBs) are facing? You may be surprised. People often make a number of assumptions that c…
- 51 days ago 23 Feb 21, 3:00pm -
Cyber attackers use SEO to spread malware through torrent files
Have you ever thought about what role search engine optimization (SEO) might play in a cyber attack? Generally, it is used to tune the search results of websites on any search engine. The more the optimization, the better the chances of getting the w…
- 58 days ago 16 Feb 21, 4:00pm -
How SASE can help you seamlessly secure the cloud
Can we all agree the shift has happened – the workforce isn’t just working from a coffee shop on occasion? The events of 2020 accelerated a growing trend of work from anywhere, any device, any time, while expecting a seamless experience. That’s…
- 65 days ago 9 Feb 21, 4:00pm -

Forrestor Labs Reseach

newMicrosoft Doubles Down On Healthcare And Conversational AI With $19.7B Purchase of Nuance
Earlier this week Microsoft announced its intent to acquire Nuance for $19.7B in its second largest acquisition after LinkedIn. For the past 15 years Nuance has been the largest independent speech recognition vendor servicing healthcare and enterpris…
- 4 hours ago 15 Apr 21, 7:50am -
newThree Seismic Shifts In Buying Behavior From Forrester’s 2021 B2B Buying Survey
Forrester’s 2021 B2B Buying Survey, with more than 950 respondents from around the world, reveals significant changes in buying behavior.
- 19 hours ago 14 Apr 21, 4:17pm -
newThe Rising Bar For Retailer Mobile App Experiences — Are You Ready?
Use best-in-class examples to prioritize your retail mobile app development.
- 19 hours ago 14 Apr 21, 4:01pm -

newForecasting In Uncertainty: Despite The Pandemic, US Tech Jobs Grew In 2020, Led By Data And Security Positions
The US Bureau of Labor Statistics (BLS) released its 2020 occupational employment survey (OES) on March 31. We use this data for our estimates and forecast of US business and government spending on tech staff, utilizing both the data on tech jobs by…
- 21 hours ago 14 Apr 21, 2:37pm -
newTackle Five Challenges Of Tech Experience Improvement
With vaccine rollouts continuing en masse in many countries, companies are starting to get greater clarity on their return-to-work strategy. Forrester’s research has been clear on the return to work: 30% of companies will return to the office…
- 21 hours ago 14 Apr 21, 2:04pm -
newMicrosoft’s Acquisition Of Nuance Signals A Trend Of Industry-Specific Acquisition
Interest rates are low. The Fed is dovish. Strong balance sheets exist across the titans of tech. What does it all mean? Well, you are seeing the open salvos in an arms race in industry-focused tech as this combination of financial fac…
- 23 hours ago 14 Apr 21, 12:44pm -
Future Fit Technology Strategy — Learning From Amazon
The Future Fit Challenge Applies Today, Not Just Tomorrow CIOs and technology leaders have a core objective to develop and improve the technology foundations and innovation their firms need to win, serve, and retain customers. They must also enable t…
- 1 day ago 14 Apr 21, 11:20am -
Is Your IT Operating Model A Speed Bump In Waiting?
Learn the key design principles to making your IT operating models more adaptive.
- 2 days ago 13 Apr 21, 7:32pm -
GRC Platforms: What You Need To Know Before You Buy
Businesses always need to adapt their operations to changing circumstances, and the pandemic has only exacerbated the need to rethink risk management strategies. COVID-19 has simultaneously highlighted the necessity of risk management and exposed the…
- 2 days ago 13 Apr 21, 6:01pm -
Core Web Vitals: What It Is, Why Google Is Doing It, And What It Means
SEO Hasn’t Put User Experience (UX) First SEO has gone through lots of changes over the years — from link farms to keyword stuffing. The customer has not always been at the heart of the SEO process. I’ve told you before about how my high school…
- 2 days ago 13 Apr 21, 5:00pm -

SANS Security Laboratory

ISE/M 6100 - Security Project Practicum

- -
Physical Security
Physical access control is just as important to your information security architecture as password policies and firewalls. Protecting your critical infrastructure with physical security can be a daunting task.
- -
Android Security Workaround
This is a stopgap to change the default behavior of Android in light of the stagefright vulnerability.
- -

Can you build a Defense in Depth architecture without an architect?
We interviewed a number of GIAC AdvisoryBoard members who have been working as architects for majorenterprises as to what they look for an architecture position.
- -
Will the Ph.D. become the Cybersecurity Terminal Degree?
The percent of security job pastings asking for a Master's level degree is increasing. How much longer will it still be the terminal degree for the field.
- -
Denial of Service
As we say in cyber warfare, a denial-of-service attack is aneffort to make your opponents' information resources less valuable tothem. Of confidentiality, integrity, and availability, this isprimarily an availability attack. Stephen Northcutt disc…
- -
Stephen Northcutt's Emerging Trends in IT and Security 2013 - 2015
An emerging trends analysis and a stab at predictions for IT and security coming 2013-2015. Last updated May 2014.
- -
Two factor authentication for online banking
Eight or nine years ago, I was asking about banks that support twofactor authentication. At that time I found eTrade bank and CharlesSchwab and not much more. SANS NewsBites carried a story about HSBC and I as asked people if they knew of banks tha…
- -
Daniel B. Cid, Sucuri
Daniel Cid from Sucuri has agreed to a thought leadership interview. We hope that you will enjoy his thoughts and impressions and we certainly thank him for his time.
- -
Dominique Karg, AlienVault
Dominique Karg from AlienVault has agreed to a thought leadership interview. We hope that you will enjoy his thoughts and impressions and we certainly thank him for his time.
- -
The 6 Categories of Critical Log Information
This report is based on work done by Marcus Ranum, Tina Bird, Chris Brenton and Anton Chuvakin. Version 3 was created by Peter Czanik fromBalaBit. Version 3.01's technical review was done by members of the GIAC Advisory board: John Allison, Jake Eva…
- -
Role Based Access Control to Achieve Defense in Depth
Role-based access control (RBAC) is an access control method that organizations implement to ensure that access to data is performed by authorized users, and enterprise based RBAC is accomplished with Network Access Control (NAC).
- -
Security Convergence and The Uniform Method of Protection to Achieve Defense in Depth
Security convergence is an interesting trend that has been picking upspeed heading into 2008. We are running network information that wasformerly analog over our digital data networks, we are convergingformerly separate network devices, especi…
- -
Hybrid Threats
Though it is certainly true that malware has evolved a lot in thisdecade, the tools in use today are more similar than different fromthe attacker tools of ten years ago. The command and control is better,they are better able to evade detectio…
- -
Lance Spitzner, Securing The Human, founder
Lance Spitzner of Honeynet and Security The Human fame has agreed to a Thought Leadership interview and we certainly thank him for his time.
- -
Security Predictions 2013-2014: Emerging Trends in IT and Security
This is an effort to chronicle what a number of really smartpeople believe the state of the information security industry tobe, and where we are going. A lot of the emphasis is on securitythreats, but we also consider what is working and what g…
- -
Separation of Duties in Information Technology
Several authors join Stephen Northcutt to examine the special considerations for separation of duties in all organizations with regard to their information technology.
- -
Stephen Northcutt's Security Predictions 2012 and 2013
Stephen Northcutt identifies emerging trends in information security for the 2012, 2013 timeframe.
- -
The Certificate Signing Trust Model Under Stress As An Industrial Security Model
Acommon part of the security model for industrial IT applications is tonever accept or run a program or driver that has not been signed by theappropriate publisher. However, while it appears to be strongprotection against malicious code, in f…
- -
Bill Pfeifer, Juniper Networks
Bill Pfeifer is a Product Line Engineerat Juniper Networks supporting security software and data centerfirewalls. He has been in the IT field for 15 years, including stints atan Army tank base, atechnology reseller, and some time at a financi…
- -
Security Predictions 2012 & 2013 - The Emerging Security Threat
A look at some of the potential emerging trends and security threats for 2012 and 2013. File was started to help prepare for a panel on the same subject at SANS Security West, May 6 - 11 2011 San Diego and also for an upcoming Keynote. Love to hear y…
- -
The Attack Surface Problem
One of the most important things to understand about defense in depthis attack surface. We can define attack surface as our exposure, thereachable and exploitable vulnerabilities that we have.
- -
Security Leadership Essentials Fairway Markers
This document is known as the "fairway markers" for SANS Security Essentials. It reflects the newest version of the course which will be taught for the first time December 2010 in Washington DC ( SANS CDI ). We invite alumni of the course to review t…
- -
Eric Cole Emerging Threats Summary 2010
Here are Dr. Eric Cole's top eleven security issues for 2011 - 2012.
- -
Stephen Northcutt's Security Predictions for 2011 and 2012
In addition to the work that I have done roundingup other people's thoughts, I also work as a futurist for IT and ITSecurity, and this is my set of predictions for 2011 and 2012. I hope they are useful toyou.
- -

Research Labs

Osterman Research
Click for more info on Osterman Research
Forrester Research
Click for more info on Forrester Research

Ponemon Institute
Click for more info on Ponemon Institute
Aragon Research
Click for more info on Aragon Research

Aberdeen Group Research
Click for more info on Aberdeen Group Research
Websense Security Labs
Click for more info on Websense Security Labs