Vulnerability Walkthrough: – 7zip CVE-2016-2334 HFS+ Code Execution Vulnerability

By Talos Group This blog post was authored by Marcin Noga of Cisco Talos. Introduction In 2016 Talos released an advisory for CVE-2016-2334, which was a remote code execution vulnerability affecting certain versions of 7zip, a popular compression utility. In this blog post we will walk through the process of weaponizing this vulnerability and creating a fully working […]

Source:: Cisco Security Notice

Vulnerability Walkthrough: – 7zip CVE-2016-2334 HFS+ Code Execution Vulnerability

By Talos Group This blog post was authored by Marcin Noga of Cisco Talos. Introduction In 2016 Talos released an advisory for CVE-2016-2334, which was a remote code execution vulnerability affecting certain versions of 7zip, a popular compression utility. In this blog post we will walk through the process of weaponizing this vulnerability and creating a fully working […]

Source:: Cisco Security Notice

CMS Brute Force Attacks Are Still a Threat

By Anna Shirokova Brute force attacks have existed long before the Internet. As a cryptanalytic attack, it started being used as an attempt to access encrypted data when there were no other options available. With the rise of the Internet, this type of attack was quickly adopted. In a nutshell, a brute force attack consists of systematically trying different credentials until the correct combination […]

Source:: Cisco Security Notice

CMS Brute Force Attacks Are Still a Threat

By Anna Shirokova Brute force attacks have existed long before the Internet. As a cryptanalytic attack, it started being used as an attempt to access encrypted data when there were no other options available. With the rise of the Internet, this type of attack was quickly adopted. In a nutshell, a brute force attack consists of systematically trying different credentials until the correct combination […]

Source:: Cisco Security Notice

Das Immunsystem für Ihr Netzwerk

Im menschlichen Körper schützt das Immunsystem im Inneren vor Gefahren durch unerwünschte Keime und Viren.

Warum schützen Unternehmen Ihre Netzwerke also nicht von innen, sondern legen i.d.R. viel mehr Wert auf den Schutz der Außengrenzen? Das war über viele Jahre sicherlich ein guten und richtiger Ansatz, weil es nur kontrollierte Zugänge ins Netz gab. Durch die immer stärker zunehmenden Themen Cloud, Mobilität und IoT aber verschwimmen solche festen Grenzen und Übergänge.

Die Gefahr eines Eindringens in Ihr Netzwerk steigt.

Wenn man von üblichen Netzwerkstrukturen ausgeht, hat ein einmal ins LAN gelangter Schädling leichtes Spiel, sich zu verbreiten und Rechner und Server abteilungsübergreifend zu kompromittieren. Hier ist der zentrale Ansatzpunkt für das LAN-Immunsystem. Warum eigentlich muss ein Produktionsnetz mit der Personalabteilung in Verbindung stehen? Was macht der Bereich Vertrieb z.B. im gleichen Netzsegment, wie die Technik?

Eine interne Segmentierungs-Firewall schafft die nötigen Barrieren, damit sich Schadsoftware und Eindringlinge nicht ungehindert in Ihrem Netzwerk bewegen können.

Lesen Sie dazu gerne auch das Whitepaper unseres Technologiepartners Fortinet.

Neugierig, wie das Immunsystem Ihres Netzwerkes aktiviert werden kann? Sprechen wir drüber:

DSC_2022 klein

Bastian Breidenbach

breidenbach@oberberg.net

DSC_2012 klein

Dennis Goslar

goslar@oberberg.net

Dirk Zurawski
02261 9155051
zurawski@oberberg.net

Improving Cybersecurity in Healthcare Part II: Control

By Kevin Skahill The Internet of Things (IoT) is ushering in an exciting digital renaissance that is redefining the traditional models of how healthcare is delivered. With IoT devices such as smart infusion pumps or connected inhalers, healthcare providers can now remotely monitor and adjust care. IoT devices in healthcare, where mobile and wearable devices are increasingly connected […]

Source:: Cisco Security Notice

Improving Cybersecurity in Healthcare Part II: Control

By Kevin Skahill The Internet of Things (IoT) is ushering in an exciting digital renaissance that is redefining the traditional models of how healthcare is delivered. With IoT devices such as smart infusion pumps or connected inhalers, healthcare providers can now remotely monitor and adjust care. IoT devices in healthcare, where mobile and wearable devices are increasingly connected […]

Source:: Cisco Security Notice

Dissecting a Breach: The Process of Incident Response

By Matt Aubert On December 5, 2017, at 1 pm Eastern, Cisco Security Incident Response Service experts will present a webinar titled “Dissecting a Breach: An Incident Responder’s Perspective.” This webinar will describe how our team performs incident handling within the service and what you should expect during any incident engagement, regardless of who is doing the work. We […]

Source:: Cisco Security Notice

Dissecting a Breach: The Process of Incident Response

By Matt Aubert On December 5, 2017, at 1 pm Eastern, Cisco Security Incident Response Service experts will present a webinar titled “Dissecting a Breach: An Incident Responder’s Perspective.” This webinar will describe how our team performs incident handling within the service and what you should expect during any incident engagement, regardless of who is doing the work. We […]

Source:: Cisco Security Notice

Cisco Stealthwatch Cloud Announces Support for AWS PrivateLink

By Ron Sterbenz Cisco Stealthwatch Cloud recently launched as a fully procurable SaaS service available on AWS Marketplace. As a security service available on Amazon Web Services (AWS), Stealthwatch Cloud provides security monitoring, visualization, and automatic threat detection. Stealthwatch Cloud uses advanced modeling and machine learning techniques to identify behavior changes in AWS provisioned entities. Stealthwatch Cloud learns […]

Source:: Cisco Security Notice