Security FUD, Black Energy, and Tor Terror Happy Halloween! The Internet “threatscape” has changed drastically over the past few years, with many more cyber security incidents each year and tons of information security (infosec) news in the headlines. Can you keep up? If not, maybe my weekly infosec video will help.
Next on SolarWinds Lab: Why You Should Monitor Active Directory (AD) Events from Domain Controllers
Tune in to http://lab.solarwinds.com on November 12th, 2014 at 1pm Central for this highly-requested session. Patrick Hubbard, Lawrence Garvin and Rob Johnson showcase SolarWinds Log & Event…
Protect Your Server Farm with SolarWinds
Learn more about SolarWinds Security Tools here: http://bit.ly/security_with_solarwinds Stop horsin’ around and vote SolarWinds for Mayor of Computer Security. SolarWinds Security Tools help…
Cryptowall Malvertising – WSWiR Episode 126
Windows 0day, iCloud MitM, and Cryptowall Rises You’re a busy IT guy that barely has time to brush your teeth before running off to work, so who has time to follow security news too? Does this sound like you? If so, let our short weekly video inform you of the most important security news in the time it takes you to enjoy your first cup of coffee
Middle Eastern & African IT Professionals Often Pass On Secure Password Management
The GITEX Technology Week in Dubai gave ManageEngine the opportunity to interact with a cross-section of IT professionals from the Middle East and Africa, and we found that password security is still largely neglected. IT organizations in the Middle East and Africa are quite interested in tightening security controls.
Active Directory Delegation: It Does Not Need to Be Hard!
One of the most important and powerful reasons that organizations consider Active Directory is the fact that delegation is built into the product. W indows NT did not have delegation, unless you want to call membership in the Account Operators group delegation! Windows Active Directory provides a simple method , using the Delegate Control Wizard, to grant a group of users granular control over all or even just a subset of your Active Directory objects. For example, if you have a help desk that should have the ability to reset passwords for all users except for those in IT, you can delegate this permission to the OU that contains the non-IT employees
Safely Delegating Password Reset Capability in Active Directory
I have been preaching for years about how powerful Active Directory is in the ability to delegate control over certain tasks and certain objects in Active Directory. One of the most obvious delegations is giving a one group of users the ability to reset passwords for a different group of users. There are a few issues using the Microsoft solution, and those issues can cause insecure settings, hard-to-report delegations, and access to AD that is hard to find and remove
We Take Your Privacy and Security. Seriously.
“Please note that [COMPANY NAME] takes the security of your personal data very seriously.” If you’ve been on the Internet for any length of time, chances are very good that you’ve received at least one breach notification email or letter that includes some version of this obligatory line. But as far as lines go, this one is about as convincing as the classic break-up line, “It’s not you, it’s me.” I was reminded of the sheer emptiness of this corporate breach-speak approximately two weeks ago, after receiving a snail mail letter from my Internet service provider — Cox Communications .
Loadbalancer.org product roadmap (as always a work in progress)
Understandably we get quite a few requests for a product road map. We’ve had a chat about this internally and thought that it would be nice to have a permanent post on the blog that we change on the fly as customer requirements change
‘Shellshock’ Bug Spells Trouble for Web Security
As if consumers weren’t already suffering from breach fatigue: Experts warn that attackers are exploiting a critical, newly-disclosed security vulnerability present in countless networks and Web sites that rely on Unix and Linux operating systems. Experts say the flaw, dubbed “Shellshock,” is so intertwined with the modern Internet that it could prove challenging to fix, and in the short run is likely to put millions of networks and countless consumer records at risk of compromise. The bug is being compared to the recent Heartbleed vulnerability because of its ubiquity and sheer potential for causing havoc on Internet-connected systems — particularly Web sites