Cyber Security Labs

NSS Labs

Once More Unto The Breach (Detection Test)
It is difficult to go a week without reading about a major enterprise being breached. And it is because of this that the Breach Detection Systems (BDS) market is growing at an incredible pace that is expected to continue well into the future (32% CAG…
- 4 Aug 15, 12:00am -
New tools for faster security incident responses
How quickly could you solve a crime if you had at your fingertips a comprehensive index of all activities occurring at a crime scene before, during, and after the crime? Security professionals have spent considerable amounts of time determining the s…
- 20 May 15, 12:00am -
NGIPS – HP TippingPoint Update
In our recently completed Next Generation Intrusion Prevention Systems (NGIPS) test, NSS Labs and HP TippingPoint discovered an anomaly during testing. Fundamentally, the nature of the anomaly was related to a recent CVE, which was being heavily util…
- 24 Apr 15, 12:00am -

Security Orchestration – Integration, Process, and Wise Investments Driven by a Security Conductor
When I am asked by friends to discuss the security breaches that feature ever more frequently in the news, I use a music analogy. Why music? For one thing, I am a fan of traditional classical music; for another, this allows me to describe the roles o…
- 14 Apr 15, 12:00am -
The Best Place for Yesware is Nowhere
A talented security colleague came across a tweet from a company called Yesware and remarked to me that it could be construed as spear phishing with specific language for legal protection. I can see his point, but in pedantically technical language,…
- 5 Mar 15, 12:00am -
Detecting the Invisible Part 3: "Retreat from the Breach"
Our approach to securing the enterprise has changed, and breach detection technology has been largely instrumental in this process. This report from NSS Labs is the final in a three-part series on the impact of the breach detection system (BDS).As t…
- 5 Mar 15, 12:00am -
Detecting the Invisible Part 2: "Once More Unto the Breach, Dear Friends"
Our approach to securing the enterprise has changed, and breach detection technology has been largely instrumental in this process. This report from NSS Labs is the second in a three-part series on the impact of the breach detection system (BDS).
- 4 Mar 15, 12:00am -
Breached? Continuous Forensic Analytics Speeds Incident Response
Over the course of the last few years, the number of publicized breaches has risen dramatically, ultimately costing some CXOs their jobs. The irony is that in many cases, the breach itself is not the cause of their dismissal, but rather it is the han…
- 3 Mar 15, 12:00am -
Detecting the Invisible
Our approach to securing the enterprise has changed, and breach detection technology has been largely instrumental in this process. This report from NSS Labs is the first in a three-part series on the impact of the breach detection system (BDS).
- 2 Mar 15, 12:00am -
How Does The Average Enterprise Stay On Top of The Latest Technology?
You’ve probably heard the phrase “drinking from a fire hose,” and in the security world, it has never been more applicable than it is today.
- 4 Feb 15, 12:00am -

ICSA Labs

Microsoft's Azure Firewall maintains ICSA Labs Firewall Certification
After recent testing, Microsoft's Azure Firewall met all of ICSA Labs' firewall security testing requirements. As a result, it retained ICSA Labs Firewall Certification j.mp/2021_azurefw_icsa.(...)
- 5 days ago 21 Jul 21, 3:11pm -
Quarterly Advanced Threat Defense (ATD) Test Results Are Posted Following Q2 2021 Testing
The constant stream of newsworthy, security breaches needs to be your wakeup call! We suggest that you use only anti-malware solutions that have passed - and that continue to pass - our independent, quarterly, malicious advanced threat defense test…
- 12 days ago 14 Jul 21, 7:59pm -
Juniper Networks vSRX Virtual Firewall maintains ICSA Labs Firewall Certification
After recent testing, the vSRX Virtual Firewall from Juniper Networks met all of ICSA Labs' firewall security testing requirements. As a result, it retained ICSA Labs Firewall Certification j.mp/2021_vsrx_icsa.(...)
- 28 days ago 29 Jun 21, 1:44am -

Taqnia Cyber's RAD NGFW attains ICSA Labs Firewall Certification
Congratulations Taqnia Cyber! The RAD NGFW met all of ICSA Labs' requirements during security-based certification testing to attain ICSA Labs Corporate Firewall Certification j.mp/2021_radngfw_icsa(...)
- 34 days ago 22 Jun 21, 3:56pm -
Citrix ADC WAF 14020 maintains ICSA Labs Web Application Firewall Certification
After recent security testing, the Citrix ADC WAF 14020 met all of ICSA Labs' web app firewall security testing requirements thereby retaining ICSA Labs WAF Certification j.mp/2021_citrix_waf_icsa. Congratulations Citrix!(...)
- 63 days ago 24 May 21, 3:33pm -
Citrix System's Citrix SD-WAN 1100 Standard Edition attains ICSA Labs Firewall Certification
Congratulations Citrix! The Citrix SD-WAN 1100 Standard Edition met all of ICSA Labs' requirements during security testing to attain ICSA Labs Firewall Certification j.mp/icsa_fw_citrix(...)
- 77 days ago 10 May 21, 11:16pm -
Penta Security Systems WAPPLES Product Family attains ICSA Labs Web Application Firewall Certification
Congratulations Penta Security Systems! The WAPPLES Product Family met all of ICSA Labs' requirements during security testing to attain ICSA Labs Web Application Firewall Certification j.mp/2021_wapples_icsa(...)
- 81 days ago 7 May 21, 7:08am -
SonicWall TZ, NSa, NSsp, NSv Firewalls retain ICSA Labs Enterprise Firewall Certification
Following successful security testing, the SonicWall SuperMassive 9400 met all of ICSA Labs' enterprise firewall requirements. As a result, both it and the other models comprising the SonicWall TZ, NSa, NSsp, NSv Firewalls retained ICSA Labs Firewall…
- 83 days ago 4 May 21, 5:11pm -
Q1 2021 Advanced Threat Defense (ATD) Testing Results Posted
High-profile security breaches are in the news. Is your organization protected against unknown and little-known malicious threats? Security solutions from these 7 makers of security products passed ICSA Labs Q1 2021 advanced threat defense (ATD) test…
- 15 Apr 21, 6:58pm -
RevBits Endpoint Security Attains Advanced Threat Defense (ATD) Certification
Congratulations RevBits on achieving ICSA Labs ATD Certification after successful Q1 2021 testing! j.mp/icsa_revbits_2021(...)
- 15 Apr 21, 4:12pm -
Palo Alto Networks Next-Generation Firewalls Family attains ICSA Labs Firewall Certification
Congratulations Palo Alto Networks! The Palo Alto Networks Next-Generation Firewalls Family met all of ICSA Labs' requirements during security testing to attain ICSA Labs Corporate Firewall Certification j.mp/2021_pan_icsa(...)
- 12 Apr 21, 6:36pm -
NSFOCUS WAF family attains ICSA Labs Web Application Firewall Certification
Congratulations NSFOCUS! The NSFOCUS WAF family of appliances met all of ICSA Labs' requirements during cyber-security testing to attain ICSA Labs Web Application Firewall Certification j.mp/2021_nsfocuswaf_icsa(...)
- 19 Feb 21, 3:21pm -
Check Point Security Gateway maintains ICSA Labs Firewall Certification
After recent testing, the Check Point R81 security platform met all of ICSA Labs' firewall security testing requirements. As a result, it retained ICSA Labs Firewall Certification j.mp/2021_CheckPoint_ICSA.(...)
- 15 Feb 21, 11:29am -
Array Networks WAF (ASF) on AVX 7800 attains ICSA Labs Web Application Firewall Certification
Congratulations Array Networks! The Array Networks WAF (ASF) on AVX 7800 met all of ICSA Labs' requirements during security testing to attain ICSA Labs Web Application Firewall Certification j.mp/2021_asf_icsa(...)
- 5 Feb 21, 3:56pm -
GajShield Next Generation Firewall Appliance Family retains ICSA Labs Firewall Certification
Following successful security testing, the GS 240dc met all of ICSA Labs' corporate firewall requirements. As a result, both it and the other models comprising the GajShield Next Generation Firewall Appliance Family retained ICSA Labs Firewall Certif…
- 2 Feb 21, 10:29am -
The Pitney Bowes Connect+/SendPro P-Series retains ICSA Labs Network Attached Peripheral Security (NAPS) Certification
Following security testing, the Pitney Bowes Connect+/SendPro P-Series retained ICSA Labs NAPS Certification j.mp/2021_connect_icsa (...)
- 25 Jan 21, 1:23pm -
Sophos XG Firewalls retain ICSA Labs Firewall Certification
Following successful security testing, the Sophos XG 115 met all of ICSA Labs' corporate firewall requirements. As a result, both it and the other models comprising the Sophos XG Firewalls family retained ICSA Labs Firewall Certification j.mp/2021_xg…
- 22 Jan 21, 9:54pm -
Q4 2020 Advanced Threat Defense (ATD) Testing Results Posted
Protect your enterprise against unknown malicious threats. Consider security products from these 6 that passed ICSA Labs Q4 2020 advanced threat defense (ATD) testing: Trend Micro (who also passed Q4 2020 ATD-Email testing), SonicWall, Sequretek, Jun…
- 15 Jan 21, 8:36am -
Trend Micro Cloud Edge maintains ICSA Labs Firewall Certification
Following successful security testing, the Cloud Edge 100 G2 met all of ICSA Labs' corporate firewall requirements. As a result, both it and the other models comprising the Trend Micro Cloud Edge family retained ICSA Labs Firewall Certification j.mp/…
- 12 Jan 21, 11:16pm -
A10 Networks Thunder Series retains ICSA Labs IPSec Certification
After recent testing, the TH-5330S from A10 Networks met all of ICSA Labs' IPSec security and interoperability testing requirements. As a result, both this model and the other models comprising the A10 Networks Thunder Series retained ICSA Labs IPSec…
- 8 Jan 21, 8:29pm -
Allied Telesis's AR4050S maintains ICSA Labs Firewall Certification
After recent testing, the AR4050S from Allied Telesis met all of ICSA Labs' firewall security testing requirements. As a result, it retained ICSA Labs Firewall Certification j.mp/2020_ar4050s_icsa.(...)
- 24 Dec 20, 3:56pm -
GFI Software's Kerio Control NG500 attains ICSA Labs Firewall Certification
Congratulations GFI Software! The Kerio Control NG500 met all of ICSA Labs' requirements during security testing to attain ICSA Labs Firewall Certification j.mp/2020_kerio_icsa(...)
- 7 Dec 20, 7:15pm -
VarioSecure Network Platform retains ICSA Labs Firewall Certification
After recent testing, the VSR402j from VarioSecure met all of ICSA Labs' firewall security testing requirements. As a result, it and the VarioSecure Network Platform retained ICSA Labs Firewall Certification j.mp/2020_icsa_vsr402j(...)
- 2 Dec 20, 3:37pm -
Fortinet's FortiWeb 1000E retains ICSA Labs WAF Certification
In the most recent test cycle, the FortiWeb 1000E met all of ICSA Labs' web application firewall (WAF) requirements. As a result, the FortiWeb 1000E retained ICSA Labs WAF Certification j.mp/2020_1000E(...)
- 24 Nov 20, 2:56pm -
A10 Networks Thunder Series retains ICSA Labs Firewall Certification
After recent testing, the Thunder 5330 from A10 Networks met all of ICSA Labs' firewall security testing requirements. As a result, it and the A10 Networks Thunder Series retained ICSA Labs Firewall Certification j.mp/2020_fw_5330(...)
- 7 Nov 20, 7:59am -
ESTsecurity's ALYac 4 maintains ICSA Labs Endpoint Anti-Malware Certification
Following successful security testing, ALYac 4 remains ICSA Labs Endpoint Anti-Malware Certified j.mp/icsa_alyac_2020.(...)
- 2 Nov 20, 11:56pm -
Array AG Series SSL VPN Appliances retain ICSA Labs SSL-TLS VPN Certification
The vxAG running on the Array Networks AVX7800 met all of ICSA Labs' SSL-TLS VPN criteria requirements. As a result, both it and the Array AG Series SSL VPN Appliances retained ICSA Labs SSL-TLS VPN Certification j.mp/2020_vxAG(...)
- 29 Oct 20, 7:56pm -
Q3 2020 Email Advanced Threat Defense (ATD-Email) Testing Results Posted
Wondering if your email security solution can protect your organization from unknown malicious threats in email? ICSA Labs performs quarterly security tests to see how well these solutions protect against email-borne malware. These 3 email security s…
- 15 Oct 20, 2:36pm -
Q3 2020 Advanced Threat Defense (ATD) Testing Results Posted
Is your organization protected against unknown malicious threats? Security solutions from these 7 passed ICSA Labs Q3 2020 quarterly advanced threat defense (ATD) testing: Trend Micro, SonicWall, Sequretek, Juniper Networks, GoSecure, Fortinet, & Ahn…
- 15 Oct 20, 1:16pm -
Fortinet's FortiGate Consolidated Security Platforms retain ICSA Labs Firewall Certification
- 12 Oct 20, 3:56pm -
TG Soft's VirIT eXplorer PRO retains ICSA Labs Endpoint Anti-Malware Certification
Congratulations TG Soft! Following rigorous security testing, the VirIT eXplorer PRO met all of ICSA Labs' endpoint anti-malware requirements. As a result, VirIT eXplorer PRO retained ICSA Labs Endpoint Anti-Malware Certification j.mp/icsa_tgsoft_2…
- 1 Oct 20, 11:56pm -
Zyxel's ZyWALL Series retains ICSA Labs Corporate Firewall Certification
Congratulations Zyxel! Following rigorous security testing, the USG FLEX 100 met all of ICSA Labs' corporate firewall requirements. As a result, both the USG FLEX 100 and the rest of the ZyWALL Series retained ICSA Labs Firewall Certification j.mp/20…
- 30 Sep 20, 7:03pm -
Radware's AppWall OnDemand Switch VL retains ICSA Labs Web Application Firewall Certification
Congratulations Radware! Following rigorous security testing, the AppWall OnDemand Switch VL met all of ICSA Labs' web application firewall requirements. As a result, the AppWall OnDemand Switch VL retained ICSA Labs Web Application Firewall Certif…
- 16 Sep 20, 1:16pm -
Fortinet's FortiGate Consolidated Security Platforms remain ICSA Labs SSL-TLS VPN Certified following latest test cycle
Congratulations Fortinet! Following successful testing of the FortiGate 501E, the FortiGate Consolidated Security Platforms maintained ICSA Labs SSL-TLS VPN Certification j.mp/icsa_sslvpn_501e.(...)
- 24 Aug 20, 1:19pm -
A10 Networks Thunder Series retains ICSA Labs Web Application Firewall Certification
Congratulations A10 Networks! Following rigorous security testing, the Thunder 5430S met all of ICSA Labs' web application firewall requirements. As a result, both the 5430S and the A10 Networks Thunder Series retained ICSA Labs Web Application Fir…
- 4 Aug 20, 1:12pm -
Acronis's endpoint anti-malware product Acronis Cyber Protect Cloud attains ICSA Labs Anti-Malware Certification
Congratulations Acronis! Acronis Cyber Protect Cloud earned ICSA Labs Endpoint Anti-Malware Security Certification following the latest security testing j.mp/icsa_acronis_2020.(...)
- 24 Jul 20, 7:16pm -
Q2 2020 Email Advanced Threat Defense (ATD-Email) Testing Results Posted!
Is your email security solution doing its job? Request...er...insist(!) that your email security provider get theirs tested! ICSA Labs quarterly tests how well email security solutions provide protection against unknown malicious threats in email. So…
- 8 Jul 20, 9:31pm -
Q2 2020 Advanced Threat Defense (ATD) Testing Results Posted!
Looking for protection against unknown malicious threats? Security solutions from these 7 passed ICSA Labs Q2 2020 quarterly advanced threat defense (ATD) testing: Trend Micro, SonicWall, Sequretek, Juniper Networks, GoSecure, Fortinet, & AhnLab. R…
- 8 Jul 20, 3:11pm -
Barracuda CloudGen Firewall F-Series retains ICSA Labs Enterprise Firewall Certification
Congratulations Barracuda Networks! Following rigorous security testing, the Barracuda CloudGen Firewall F18 met all of ICSA Labs' enterprise firewall requirements which includes the testing of VoIP, IPv6 and High Availability among other things. A…
- 12 Jun 20, 3:51pm -
VMware NSX-T Data Center attains ICSA Labs Firewall Certification
Congratulations VMware! The VMware NSX-T Data Center met all of ICSA Labs' requirements during rigorous security testing to attain ICSA Labs Firewall Certification j.mp/2020_nsxt_icsa (...)
- 5 Jun 20, 6:25pm -
The Hillstone Networks SG-6000 Series NGFW family retained ICSA Labs Corporate Firewall Certification
Congratulations Hillstone Networks! After rigorous security testing, the Hillstone Networks SG-6000 Series NGFW family of products met all of ICSA Labs' security testing requirements to retain ICSA Labs Firewall Certification j.mp/2020_icsa_hillsto…
- 28 May 20, 5:31pm -
Juniper Networks vSRX Virtual Firewall attains ICSA Labs Firewall Certification
Congratulations Juniper Networks! The vSRX Virtual Firewall met all of ICSA Labs' requirements during rigorous security testing to attain ICSA Labs Firewall Certification j.mp/2020_vsrx_icsa(...)
- 12 May 20, 8:01pm -
Fortinet FortiGate Consolidated Security Platforms retains ICSA Labs IPSEC Certification
Congratulations Fortinet! The FortiGate Consolidated Security Platforms met all of ICSA Labs' requirements during rigorous interoperability and security testing of the FortiGate VM64 virtual appliance to retain ICSA Labs IPSEC Certification j.mp/2020…
- 8 May 20, 6:31pm -
The Pitney Bowes SendPro C200, C300, C400 retains ICSA Labs Network Attached Peripheral Security (NAPS) Certification
Congratulations Pitney Bowes! Following security testing, the SendPro C200, C300, C400 retained ICSA Labs NAPS Certification j.mp/2020_c200_icsa (...)
- 5 May 20, 3:52pm -
F5 Networks BIG-IP Family retains ICSA Labs IPSEC Certification
Congratulations F5 Networks! The BIG-IP Family met all of ICSA Labs' requirements during rigorous interoperability and security testing of the BIG-IP i10800 to retain ICSA Labs IPSEC Certification j.mp/2020_f5ipsec_icsa(...)
- 24 Apr 20, 5:33pm -
Barracuda Web Application Firewall Family retains ICSA Labs Web Application Firewall Certification
Congratulations Barracuda Networks! The Barracuda Web Application Firewall Family met all of ICSA Labs' requirements during rigorous security testing of the model 660 to retain ICSA Labs Web Application Firewall Certification j.mp/2020_barracudawaf_i…
- 17 Apr 20, 8:31pm -
SonicWall joins AhnLab, Fortinet, GoSecure, Juniper and Trend Micro After Successful Q1 2020 Advanced Threat Defense (ATD) Certification Testing
ICSA Labs certified advanced threat defense (ATD) security product vendors that passed and received a certification testing report following the recently completed Q1 2020 ATD test cycle include: AhnLab (report), Fortinet (report), GoSecure (report),…
- 13 Apr 20, 5:31pm -
Mimecast joins Fortinet and Trend Micro After Successful Q1 2020 Email Advanced Threat Defense (ATD-Email) Certification Testing
ICSA Labs certified email advanced threat defense (ATD-Email) security product vendors that passed and received a certification testing report following the recently completed Q1 2020 ATD-Email test cycle include: Fortinet (report), Mimecast (report)…
- 13 Apr 20, 4:31pm -
Quick Heal's endpoint anti-malware product Seqrite Endpoint Security maintains ICSA Labs Anti-Malware Certification
Congratulations Quick Heal! Seqrite Endpoint Security remains ICSA Labs Endpoint Anti-Malware Certified following latest testing j.mp/icsa_quickheal_2020. (...)
- 27 Mar 20, 9:31pm -
The Pitney Bowes SendPro Mailstation attains ICSA Labs Network Attached Peripheral Security (NAPS) Certification
Congratulations Pitney Bowes! Following security testing, the SendPro Mailstation attained ICSA Labs NAPS Certification j.mp/2020_icsa_csd1 (...)
- 18 Mar 20, 5:41pm -
AhnLab's endpoint anti-malware product AhnLab V3 Internet Security 9.0 maintains ICSA Labs Anti-Malware Certification
Congratulations AhnLab! AhnLab V3 Internet Security 9.0 remains ICSA Labs Endpoint Anti-Malware Certified following latest testing j.mp/icsa_ahnlab_2020.(...)
- 17 Mar 20, 2:23pm -
Check Point Security Gateway retains ICSA Labs Corporate Firewall Certification following latest test cycle
Congratulations Check Point! Following testing of the Check Point Security Gateway, the tested product maintained ICSA Labs Corporate Firewall Security Certification j.mp/icsa_checkpoint_2020.(...)
- 13 Mar 20, 7:31pm -
Microsoft's Azure Firewall first cloud-based firewall to attain ICSA Labs Corporate Firewall Certification
Congratulations Microsoft! After rigorous security testing, Microsoft's cloud-based Azure Firewall became the first cloud-based service to meet all of ICSA Labs' firewall requirements and attain ICSA Labs Firewall Certification j.mp/2020_azure_icsa(.…
- 18 Feb 20, 12:45pm -

Miercomm Research

Cisco SD-WAN with Secure Access Service Edge (SASE) Competitive Independent Solution Assessment
Cisco SASE connects cloud applications with users and devices anywhere in the network. Miercom independently assessed the functionality, performance and Total Cost of Ownership (TCO) of Cisco’s SD-WAN with Secure Access Service Edge (SASE) solution…
- 63 days ago 24 May 21, 5:57pm -
Cisco Software Defined WAN Solution Validation and Performance Assessment for Small Branches
Cisco SD-WAN is a platform solution for resolving performance, scalability and management of networks facing the transition into a cloud-based, mobile world. By subjecting the Cisco solution to a real-world deployment, Miercom engineers validated thr…
- 66 days ago 21 May 21, 6:29pm -
Yealink MVC Series Room Systems for Microsoft Teams Certified Secure Assessment
Yealink offers video conferencing, voice communications, and collaboration solutions while providing consumers with high-end security and data protection.By following the specifications provided by Microsoft, Yealink delivers secure video conferencin…
- 67 days ago 20 May 21, 8:39pm -

Cisco Catalyst 8000V Edge Router Performance Assessment – Miercom Performance Verified
Cisco Catalyst 8000V is a virtual router that delivers SD-WAN, WAN gateway, and network services functions into virtual and cloud-based environments. Its industry-leading Cisco IOS XE software enables WAN extension into provider-hosted clouds. Three…
- 77 days ago 10 May 21, 8:28pm -
McAfee Network Security Platform Next Generation Intrusion Prevention System (NGIPS) Security Assessment
The McAfee Network Security Platform (NSP) system stands ahead of competitive IPS products proving seamless detection and blocking of both known and unknown threats across the network perimeter, data center and cloud environments. Using multiple sign…
- 97 days ago 20 Apr 21, 5:13pm -
Konica Minolta CS Remote Care Security Review – Miercom Certified Secure
Konica Minolta Multifunction Products (MFP) are devices that allow businesses to extend their knowledge, marketing and daily operations through printing, copying, scanning, faxing and more. MFP management assists businesses with diverse services -suc…
- 12 Mar 21, 8:14pm -
Arista Cloud Vision WiFi Competitive Performance Review – Miercom Performance Verified
Arista CloudVision WiFi (CV WiFi) is a software-driven cloud platform built on a programmable, resilient and self-healing structure. It allows for a stateful network view and class-based automation across cloud networks to reduce the need for custom…
- 8 Mar 21, 9:23pm -
Cisco Umbrella Cloud Security Service Review – Miercom Performance Verified
Cisco Umbrella’s performance and innovative use of Anycast to improve performance and reliability are examined in this report. Anycast allows Umbrella infrastructure to execute functionality (e.g. updates, additions, removals) without sacrificing d…
- 19 Feb 21, 9:24pm -
Konica Minolta World Wide Remote Service Platform (WWRSPF) Review – Miercom Certified Secure
Multi-function Printers (MFPs) allow businesses to print, copy, scan, fax and more. Before, these devices required on-site maintenance, but now customers benefit from, remote services that eliminate travel, cost and downtime. Konica Minolta uses an a…
- 10 Feb 21, 6:07am -
Cisco SD-WAN and SASE Cloud Architecture Review 2020 – Miercom Performance Verified
Miercom independently assess the functionality and performance of the Cisco SD-WAN solution with SASE architecture – a new approach to integrating cloud applications with branch site infrastructure. Our engineers found this solution offered optimiz…
- 1 Dec 20, 5:12pm -

Open DNS Security Lab

The 8 most important factors to consider when evaluating a SASE security solution
Secure access service edge (SASE) — cloud-delivered security combining networking and security functions — is on the rise, fueled in part by the need to secure work from home in countless locations. The hybrid work model is here to stay –– an…
- 7 days ago 20 Jul 21, 8:00am -
Cybersecurity for small business, how does it work, and why is it important?
You might think that cybercriminals only target big businesses, but any company can be a target. Attacks on big business get the most media attention, but cybersecurity is crucial to companies of all sizes. The reality is that small businesses can be…
- 14 days ago 13 Jul 21, 8:00am -
The main benefits of a SASE solution that set it apart from other services
SASE security solutions provide some unique advantages in helping you protect your organization. See how SASE drives simplicity and security — and see why Cisco Umbrella is an ideal SASE starting point.The post The main benefits of a SASE solution…
- 21 days ago 6 Jul 21, 8:00am -

Cloud Application Security – Risks, Questions, Insights, and Solutions
Cloud-based applications have helped make a new world of work possible. But they have also opened up the doors to new risks and threats, such as ransomware by remote desktop takeover and data loss through unprotected cloud storage use.The post Cloud…
- 26 days ago 1 Jul 21, 8:00am -
Cisco Umbrella recognized as simple, effective cloud security for small and midsize companies
Like most events, RSA was held remotely this year. And while we’re all very accustomed to virtual events by now, I dearly missed seeing my colleagues, friends in the industry and especially our wonderful customers. And we didn’t get the chance to…
- 33 days ago 24 Jun 21, 8:00am -
Announcing new Cisco Umbrella package maximizing IT security for remote workers
As we collectively work through the pandemic, it’s clear that more and more organizations are embracing “hybrid work” as their future – where some employees work in the office, others work from home, and some work fully remote. While remote…
- 35 days ago 22 Jun 21, 8:00am -
Cloud security benefits: staying protected as digital boundaries expand
Roaming users, remote offices with direct internet access, cloud and SaaS applications — today’s workplace needs have evolved beyond the capabilities of traditional perimeter-based security. As the digital perimeter expands outwards it’s import…
- 49 days ago 8 Jun 21, 8:00am -
Backdoors, RATs, Loaders evasion techniques
In this second edition of the Cybersecurity Threat Spotlight, we’re examining the most important current threats including a backdoor threat, a remote access trojan (RAT), and a loader. Obfuscation, encryption, weaponization of normally benign fi…
- 56 days ago 1 Jun 21, 8:00am -
Expanding SASE threat protection and cybersecurity package options
The world is shifting towards a more distributed workforce — and, with recent global events, the trend is only accelerating. From big global enterprises to smaller local businesses, and everything in between, people now work anywhere and everywhere…
- 71 days ago 17 May 21, 8:00am -
Cisco Umbrella launches new data center in Madrid, Spain
Cisco Umbrella is proud to announce the addition of our most recent global cloud data center, Spain! Our DC is located in Silicon Alley, not to be confused with Silicon Valley. We chose this location because it resides in the heart of connectivity an…
- 75 days ago 13 May 21, 7:02am -

Forrestor Labs Reseach

newBuyer Insights: Findings From The 2021 B2B Buying Survey
Forrester’s fifth B2B Summit APAC will be held in Singapore on 14 and 15 September 2021 through a live virtual experience. It will provide best practice research developed to address the unique challenges APAC B2B marketers face in these challengin…
- 7 hours ago 26 Jul 21, 7:19pm -
Announcing The Forrester Wave™: Application Modernization And Migration Services, Q3 2021
Yesterday, we released The Forrester Wave™: Application Modernization And Migration Services, Q3 2021. We looked at the 14 most significant vendors — Accenture, Atos, Capgemini, Cognizant, Deloitte, EPAM, EY, HCL Technologies, IBM, Infosys, Larse…
- 4 days ago 23 Jul 21, 2:20pm -
The Forrester Wave™: Continuous Automation And Testing Services, Q3 2021 — A Comparison Of 15 Global Players
Future fit organizations are quickly adopting hybrid and native clouds, automating wherever possible, and bringing their agile and DevOps practices to a more mature and broader level. At the same time, testing tools, testing practices, and testing so…
- 4 days ago 23 Jul 21, 10:28am -

Is Your Sales Methodology An Innie Or An Outie?
Don’t worry, this is not a discussion about navels; it is an attempt to provide some very basic categorization of sales methodologies based on whether the methodology addresses internal or external interactions.
- 4 days ago 22 Jul 21, 5:14pm -
XDR FAQ — Frequently Asked Questions On Extended Detection And Response
Learn about the origin, architecture, and applications of extended detection and response (XDR) from analyst Allie Mellen.
- 4 days ago 22 Jul 21, 3:57pm -
Putting Forrester’s B2B Revenue Waterfall Into Action: Six Tips For Laser-Focused Targeting
No amount of product demos, content, delivery channels, or even great sales reps will matter if you are going after targets that are fundamentally the wrong fit. Learn how the new Waterfall can help you target the most promising opportunities.
- 4 days ago 22 Jul 21, 3:25pm -
The Glengarry Glen Ross Effect: Why Sales Isn’t Attractive To Recent College Grads
The sales profession has changed — but old stereotypes remain. Sales leaders need to help counter the misperceptions to bring in talent.
- 4 days ago 22 Jul 21, 3:20pm -
Buy An Integrated DXP Platform, Not Just A Box Of Rocks
Ernest Dichter might have a lot to say about tech leaders attracted to portfolios over platforms. He’s the one who showed Betty Crocker that making the customer crack an egg made them feel like they were actually baking something homemade, instead…
- 5 days ago 21 Jul 21, 4:24pm -
ACI ASQ Surveys + FeedbackNow = A Quest To Improve Real-Time Customer Experience
Collecting solicited feedback at the exact time passengers live the experience is the only way to truly assess the quality of that experience as it moves through all touchpoints of their journey. ACI and FeedbackNow are committed to enabling this so…
- 6 days ago 21 Jul 21, 2:00pm -
The Countdown To B2B Summit APAC 2021: Track Presentations
If you missed my first blog where I outlined what to expect from our keynote presentations at B2B Summit APAC 2021, click here. Beyond keynote presentations, B2B Summit APAC, which will take place on 14 and 15 September, is packed with deep dives int…
- 6 days ago 21 Jul 21, 3:44am -

SANS Security Laboratory

ISE/M 6100 - Security Project Practicum

- -
Physical Security
Physical access control is just as important to your information security architecture as password policies and firewalls. Protecting your critical infrastructure with physical security can be a daunting task.
- -
Android Security Workaround
This is a stopgap to change the default behavior of Android in light of the stagefright vulnerability.
- -

Can you build a Defense in Depth architecture without an architect?
We interviewed a number of GIAC AdvisoryBoard members who have been working as architects for majorenterprises as to what they look for an architecture position.
- -
Will the Ph.D. become the Cybersecurity Terminal Degree?
The percent of security job pastings asking for a Master's level degree is increasing. How much longer will it still be the terminal degree for the field.
- -
Denial of Service
As we say in cyber warfare, a denial-of-service attack is aneffort to make your opponents' information resources less valuable tothem. Of confidentiality, integrity, and availability, this isprimarily an availability attack. Stephen Northcutt disc…
- -
Stephen Northcutt's Emerging Trends in IT and Security 2013 - 2015
An emerging trends analysis and a stab at predictions for IT and security coming 2013-2015. Last updated May 2014.
- -
Two factor authentication for online banking
Eight or nine years ago, I was asking about banks that support twofactor authentication. At that time I found eTrade bank and CharlesSchwab and not much more. SANS NewsBites carried a story about HSBC and I as asked people if they knew of banks tha…
- -
Daniel B. Cid, Sucuri
Daniel Cid from Sucuri has agreed to a thought leadership interview. We hope that you will enjoy his thoughts and impressions and we certainly thank him for his time.
- -
Dominique Karg, AlienVault
Dominique Karg from AlienVault has agreed to a thought leadership interview. We hope that you will enjoy his thoughts and impressions and we certainly thank him for his time.
- -
The 6 Categories of Critical Log Information
This report is based on work done by Marcus Ranum, Tina Bird, Chris Brenton and Anton Chuvakin. Version 3 was created by Peter Czanik fromBalaBit. Version 3.01's technical review was done by members of the GIAC Advisory board: John Allison, Jake Eva…
- -
Role Based Access Control to Achieve Defense in Depth
Role-based access control (RBAC) is an access control method that organizations implement to ensure that access to data is performed by authorized users, and enterprise based RBAC is accomplished with Network Access Control (NAC).
- -
Security Convergence and The Uniform Method of Protection to Achieve Defense in Depth
Security convergence is an interesting trend that has been picking upspeed heading into 2008. We are running network information that wasformerly analog over our digital data networks, we are convergingformerly separate network devices, especi…
- -
Hybrid Threats
Though it is certainly true that malware has evolved a lot in thisdecade, the tools in use today are more similar than different fromthe attacker tools of ten years ago. The command and control is better,they are better able to evade detectio…
- -
Lance Spitzner, Securing The Human, founder
Lance Spitzner of Honeynet and Security The Human fame has agreed to a Thought Leadership interview and we certainly thank him for his time.
- -
Security Predictions 2013-2014: Emerging Trends in IT and Security
This is an effort to chronicle what a number of really smartpeople believe the state of the information security industry tobe, and where we are going. A lot of the emphasis is on securitythreats, but we also consider what is working and what g…
- -
Separation of Duties in Information Technology
Several authors join Stephen Northcutt to examine the special considerations for separation of duties in all organizations with regard to their information technology.
- -
Stephen Northcutt's Security Predictions 2012 and 2013
Stephen Northcutt identifies emerging trends in information security for the 2012, 2013 timeframe.
- -
The Certificate Signing Trust Model Under Stress As An Industrial Security Model
Acommon part of the security model for industrial IT applications is tonever accept or run a program or driver that has not been signed by theappropriate publisher. However, while it appears to be strongprotection against malicious code, in f…
- -
Bill Pfeifer, Juniper Networks
Bill Pfeifer is a Product Line Engineerat Juniper Networks supporting security software and data centerfirewalls. He has been in the IT field for 15 years, including stints atan Army tank base, atechnology reseller, and some time at a financi…
- -
Security Predictions 2012 & 2013 - The Emerging Security Threat
A look at some of the potential emerging trends and security threats for 2012 and 2013. File was started to help prepare for a panel on the same subject at SANS Security West, May 6 - 11 2011 San Diego and also for an upcoming Keynote. Love to hear y…
- -
The Attack Surface Problem
One of the most important things to understand about defense in depthis attack surface. We can define attack surface as our exposure, thereachable and exploitable vulnerabilities that we have.
- -
Security Leadership Essentials Fairway Markers
This document is known as the "fairway markers" for SANS Security Essentials. It reflects the newest version of the course which will be taught for the first time December 2010 in Washington DC ( SANS CDI ). We invite alumni of the course to review t…
- -
Eric Cole Emerging Threats Summary 2010
Here are Dr. Eric Cole's top eleven security issues for 2011 - 2012.
- -
Stephen Northcutt's Security Predictions for 2011 and 2012
In addition to the work that I have done roundingup other people's thoughts, I also work as a futurist for IT and ITSecurity, and this is my set of predictions for 2011 and 2012. I hope they are useful toyou.
- -

Research Labs

Osterman Research
Click for more info on Osterman Research
Forrester Research
Click for more info on Forrester Research

Ponemon Institute
Click for more info on Ponemon Institute
Aragon Research
Click for more info on Aragon Research

Aberdeen Group Research
Click for more info on Aberdeen Group Research
Websense Security Labs
Click for more info on Websense Security Labs