Threat detection and response

Just as malicious actors' threats and attack techniques evolve, so too must enterprise threat detection and response tools and procedures. From real-time monitoring and network forensics to IDS/IPS, NDR and XDR, SIEM and SOAR, read up on detection and response tools, systems and services.

Top Stories

Feature 11 Mar 2025
Incident response for web application attacks

Web app security is like learning to ride a bike -- expect to struggle before getting it right. But don't be disheartened; learn from prior incidents to improve controls. Continue Reading
By
- Kyle Johnson, Technology Editor
- Manning Publications Co.
Feature 06 Mar 2025
Treasury Department hacked: Explaining how it happened

Another major cyberattack hit the U.S. Treasury, allegedly by Chinese state-sponsored hackers. Exploiting BeyondTrust software, they accessed sensitive unclassified documents. Continue Reading
By
- Sean Michael Kerner

News 06 Jan 2022
New Zloader attacks thwarting Microsoft signature checks

Check Point Software Technologies found a long-known trick of injecting code into valid file signatures remains effective for spreading malware such as Zloader. Continue Reading
By
- Shaun Nichols
News 05 Jan 2022
MicroStrategy enhances security, embedded analytics features

The vendor recently upgraded its products to the latest version of Log4j's software while also adding a new viewing experience and embedded BI capabilities to its platform. Continue Reading
By
- Eric Avidon, Senior News Writer
Feature 04 Jan 2022
Is quantum computing ready to disrupt cybersecurity?

Quantum computing isn't here yet, but now is the time for companies to start considering how it may affect their business -- both negatively and positively -- in the next decade. Continue Reading
By
- Kyle Johnson, Technology Editor
News 30 Dec 2021
Threat actors target HPE iLO hardware with rootkit attack

Integrated Lights Out, HPE's remote server management platform, has been compromised by intruders who are using it to install a hard-to-detect rootkit in the wild. Continue Reading
By
- Shaun Nichols
News 20 Dec 2021
5 Russians charged in hacking, illegal trading scheme

A group of hackers based in Russia and tied to the GRU stand accused of breaking into companies and using confidential data to profit from illegal stock trades. Continue Reading
By
- Shaun Nichols
Podcast 17 Dec 2021
Risk & Repeat: Log4Shell shakes infosec industry

This Risk & Repeat podcast episode looks at the latest developments with Log4Shell and the efforts to mitigate the critical remote code executive vulnerability. Continue Reading
By
- Rob Wright, Senior News Director
Definition 16 Dec 2021
stealth virus

A stealth virus is a computer virus that uses various mechanisms to avoid detection by antivirus software. Continue Reading
By
- Rahul Awati
Tip 15 Dec 2021
Where do PSIM systems fit into disaster recovery?

Organizations that use multiple security platforms can look to PSIM systems to be better prepared for an incident. Read on for more about how they work. Continue Reading
By
- John Edwards
News 15 Dec 2021
Log4j gets a second update as security woes pile up

Administrators who were already scrambling to patch up the Log4Shell flaw are now being advised to update to Log4j version 2.16.0 following the discovery of issues in 2.15.0. Continue Reading
By
- Shaun Nichols
News 15 Dec 2021
'Insane' spread of Log4j exploits won't abate anytime soon

Experts say that the explosion in exploits for CVE-2021-44228 is only the early phase of what will be a long and tedious road to remediation for the critical vulnerability. Continue Reading
By
- Shaun Nichols
Definition 15 Dec 2021
spam filter

A spam filter is a program used to detect unsolicited, unwanted and virus-infected emails and prevent those messages from getting to a user's inbox. Continue Reading
By
- Andrew Zola
Definition 14 Dec 2021
What is a micro VM (micro virtual machine)?

A micro VM (micro virtual machine) is a virtual machine program that serves to isolate an untrusted computing operation from a computer's host operating system. Continue Reading
By
- Stephen J. Bigelow, Senior Technology Editor
- Sharon Shea, Executive Editor
News 13 Dec 2021
Fixes for Log4j flaw arise as attacks soar

Exploits against the Log4j security vulnerability are already commonplace just days after its disclosure, but some vendors are already offering mitigations and detection tools. Continue Reading
By
- Shaun Nichols
News 10 Dec 2021
Dark web posts shed light on Panasonic breach

A network breach at Japanese electronics giant Panasonic was possibly set up as far back as January, according to researchers who were monitoring dark web forums. Continue Reading
By
- Shaun Nichols
News 09 Dec 2021
Rubrik's ransomware tools put detection in line with protection

To better protect against ransomware, Rubrik has expanded the capabilities of its core platform and added new features including cyber threat hunting and Rubrik Cloud Vault. Continue Reading
By
- Adam Armstrong, News Writer
News 07 Dec 2021
USB-over-Ethernet bugs put cloud services at risk

SentinelOne says vulnerabilities in the Eltima SDK, which connects USB devices on virtual workstations, can put enterprises at risk of privilege escalation attacks. Continue Reading
By
- Shaun Nichols
Guest Post 07 Dec 2021
Why image-based phishing emails are difficult to detect

Image-based phishing emails are becoming increasingly popular with attackers. Learn how these hard-to-detect scams bypass email filters to infiltrate victims' systems. Continue Reading
By
- Sébastien Goutal
News 06 Dec 2021
One year later, SolarWinds hackers targeting cloud providers

The hacking crew accused of breaking into SolarWinds a year ago is back at it and is trying to get to their targets through attacks on the networks of cloud computing providers. Continue Reading
By
- Shaun Nichols
Tip 06 Dec 2021
How to get started with attack surface reduction

Attack surface reduction and management are vital to any security team's toolbox. Learn what ASR is and how it complements existing vulnerability management products. Continue Reading
By
- Diana Kelley, SecurityCurve
News 03 Dec 2021
Hundreds of new vulnerabilities found in SOHO routers

Researchers credited vendors for their swift response to reports of widespread security vulnerabilities but warned users to make sure firmware is updated to avoid attacks. Continue Reading
By
- Shaun Nichols
News 02 Dec 2021
Former Ubiquiti engineer arrested for inside threat attack

Nickolas Sharp is accused of attacking his former employer, stealing confidential data and attempting to extort the company into paying him approximately $2 million. Continue Reading
By
- Arielle Waldman, News Writer
News 01 Dec 2021
CISA taps CrowdStrike for endpoint security

The U.S. government's cybersecurity authority will be watched over by security vendor CrowdStrike as part of the larger government IT security overhaul. Continue Reading
By
- Shaun Nichols
News 29 Nov 2021
Hack 'Sabbath': Elusive new ransomware detected

A newly uncovered ransomware operation, dubbed UNC2190 or "Sabbath," has roots in a previous ransomware group but has so far been able to operate mostly undetected. Continue Reading
By
- Shaun Nichols
Feature 29 Nov 2021
Elastic Stack Security tutorial: How to create detection rules

This excerpt from 'Threat Hunting with Elastic Stack' provides step-by-step instructions to create detection rules and monitor network security events data. Continue Reading
By
- Kyle Johnson, Technology Editor
- Packt Publishing
Feature 29 Nov 2021
Elastic Security app enables affordable threat hunting

New to threat hunting in cybersecurity? Consider using the open code Elastic Stack suite to gather security event data and create visualizations for decision-makers. Continue Reading
By
- Kyle Johnson, Technology Editor
News 23 Nov 2021
Apple files lawsuit against spyware vendor NSO Group

Apple sued the Israeli technology vendor, whose Pegasus spyware has been implicated in several malicious attacks on journalists, activists and government officials. Continue Reading
By
- Arielle Waldman, News Writer
News 22 Nov 2021
GoDaddy discloses breach of 1.2M customer account details

Web hosting provider GoDaddy said an attacker broke into its Managed WordPress service and accessed the account details and SSL keys of 1.2 million customers. Continue Reading
By
- Shaun Nichols
News 19 Nov 2021
How enterprises need to prepare for 'cyberwar' conflicts

Infosec expert Tarah Wheeler said increasing international conflicts are posing new compliance and regulatory standards, but adapting the changes may be difficult for enterprises. Continue Reading
By
- Arielle Waldman, News Writer
News 18 Nov 2021
CISA, Microsoft warn of rise in cyber attacks from Iran

CISA and Microsoft this week issued alerts about increased threat activity Iranian nation-state hacking groups, including ransomware attacks on enterprises. Continue Reading
By
- Shaun Nichols
News 18 Nov 2021
New side channel attack resurrects DNS poisoning threat

A new side channel attack would potentially allow attackers to poison DNS servers and reroute traffic to malicious sites. Continue Reading
By
- Shaun Nichols
Podcast 17 Nov 2021
Risk & Repeat: Are ransomware busts having an effect?

International law enforcement agencies this year have stepped up efforts to address the ransomware threat with arrests, indictments and multimillion-dollar rewards. Continue Reading
By
- Rob Wright, Senior News Director
News 15 Nov 2021
FBI email system compromised to issue fake alerts

An unknown threat actor sent emails warning of a supply chain attack through an FBI portal used by law enforcement agencies to communicate with one another. Continue Reading
By
- Arielle Waldman, News Writer
News 11 Nov 2021
Citrix DDOS bug leaves networks vulnerable

Citrix patched a critical bug in its Application Delivery Controller and Gateway software that left networks open to DDOS attacks. It also fixed a less-severe SD-WAN WANOP bug. Continue Reading
By
- Madelaine Millar, TechTarget
News 11 Nov 2021
'King of Fraud' sentenced for Methbot botnet operation

Aleksandr Zhukov was sentenced to 10 years in prison for the theft of $7 million in a massive digital advertising fraud operation using his 'Methbot' botnet. Continue Reading
By
- Alexander Culafi, Senior News Writer
Guest Post 10 Nov 2021
4 concepts that help balance business and security goals

The goal of enterprise security is to maintain connectivity, while remaining protected. Use these four concepts to balance business and security goals. Continue Reading
By
- Mark Pierpoint
News 09 Nov 2021
Medical devices at risk from Siemens Nucleus vulnerabilities

Thirteen bugs, including a critical security flaw, have been patched in the Siemens Nucleus TCP/IP stack, a vital component for millions of connected medical devices. Continue Reading
By
- Shaun Nichols
Guest Post 21 Sep 2021
3 components to consider when selecting an MDR service

In the market for an MDR service? Read up on three considerations to keep in mind and questions to ask potential providers before making a decision. Continue Reading
By
- Daniel Clayton
News 08 Sep 2021
Microsoft zero-day flaw exploited in the wild

Microsoft and the Cybersecurity and Infrastructure Security Agency have issued advisories warning users to mitigate against a zero-day flaw, as no patch has been released. Continue Reading
By
- Arielle Waldman, News Writer
Guest Post 02 Aug 2021
Network security in the return-to-work era

IT teams are dealing with the challenge of reconnecting devices to office networks as employees return to work. Here's how your organization can overcome that challenge. Continue Reading
By
- Jonathan Meyers
Report 01 Apr 2021
Ultimate guide to cybersecurity incident response

Learn actionable incident response strategies that your IT and enterprise security teams can use to meet today's security threats and vulnerabilities more effectively. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC
News 11 Mar 2021
Cisco found cryptomining activity within 69% of customers

Cisco found cryptomining malware affected a vast majority of customers in 2020, generating massive amounts of malicious DNS traffic while sucking up precious computing resources. Continue Reading
By
- Arielle Waldman, News Writer
Feature 04 Mar 2021
How to become a threat hunter

Top threat hunters are creative and slightly contrarian, enabling them to think outside the box -- much like the best cybercriminals, according to one expert. Continue Reading
By
- Alissa Irei, Senior Site Editor
Tip 23 Feb 2021
How to achieve security observability in complex environments

Security observability is a novel approach to incident detection that goes beyond traditional monitoring. Read on to learn if this emerging strategy is right for your enterprise. Continue Reading
By
- Michael Cobb
Tip 08 Dec 2020
Pros and cons of an outsourced SOC vs. in-house SOC

Security operations centers have become an essential element of threat detection. Here's how to decide whether to build one in-house or outsource SOC capabilities. Continue Reading
By
- Peter Sullivan
Tip 03 Dec 2020
8 challenges every security operations center faces

Staffing shortages, budget allocation issues, and inadequate analytics and filtering are among the challenges organizations will face as they implement a security operations center. Continue Reading
By
- John Burke, Nemertes Research
Feature 27 Oct 2020
Zero-trust network policies should reflect varied threats

Role-based access systems create enormous pools of responsibility for administrators. Explore how to eliminate these insecure pools of trust with zero-trust network policies. Continue Reading
By
- Katie Donegan, Social Media Manager
- O'Reilly Media
Tip 29 Jul 2020
As network security analysis proves invaluable, NDR market shifts

IT infrastructure threat detection and response have emerged as critical elements of enterprise cybersecurity as network security analysis proves invaluable to protecting data. Continue Reading
By
- Andrew Froehlich, West Gate Networks
Quiz 28 Jul 2020
IDS/IPS quiz: Intrusion detection and prevention systems

Want a baseline of your intrusion detection and prevention system knowledge? Test your insights with this IDS/IPS quiz. Continue Reading
By
- Sharon Shea, Executive Editor
News 24 Mar 2020
Cisco security GM discusses plan for infosec domination

At RSA Conference 2020, Gee Rittenhouse, senior vice president and general manager of Cisco's security group, talks about the company's strategy to reshape the infosec industry. Continue Reading
By
- Rob Wright, Senior News Director
News 06 Feb 2020
Forescout acquired by private equity firm for $1.9 billion

Network security vendor Forescout Technologies was acquired for $1.9 billion by Advent International, a private equity firm looking to increase its cybersecurity investments. Continue Reading
By
- Arielle Waldman, News Writer
Answer 10 Dec 2019
How to prevent port scan attacks

The popular port scan is a hacking tool that enables attackers to gather information about how corporate networks operate. Learn how to detect and prevent port scanning attacks. Continue Reading
By
- Michael Cobb
Tip 18 Nov 2019
Use network traffic analysis to detect next-gen threats

Network traffic analysis, network detection and response -- whichever term you prefer, the technology is critical to detecting new breeds of low-and-slow threats. Continue Reading
By
- Kevin Tolly, The Tolly Group
News 01 Oct 2019
Sophos launches Managed Threat Response service

The new offering is built on Sophos' endpoint security platform Intercept X Advanced, with capabilities supported by the company's recent acquisition of Rook Security and DarkBytes. Continue Reading
By
- Ha Ta
News 05 Sep 2019
Awake Security adds adversarial model to security platform

The new feature is meant to enable companies to identify attackers faster. Other updates to the security system include extending cloud capabilities to Amazon Web Services. Continue Reading
By
- Tanner Harding
News 26 Aug 2019
Puppet launches its first vulnerability remediation product

Puppet Remediate is a vulnerability remediation product that shares data between security and IT ops, provides risk-based prioritization and offers agentless remediation. Continue Reading
By
- Tanner Harding
News 06 Aug 2019
LogicHub introduces automation updates to its SOAR platform

Security vendor LogicHub introduced new features to its SOAR platform that intend to automate tedious threat detection and response processes and save security teams time. Continue Reading
By
- Sabrina Polin, Managing Editor
Tip 23 Jul 2019
Which is better: anomaly-based IDS or signature-based IDS?

Even as vendors improve IDS by incorporating both anomaly-based IDS and signature-based IDS, understanding the difference will aid intrusion protection decisions. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
Answer 31 May 2019
How can SIEM and SOAR software work together?

Many security pros initially thought SOAR software could replace SIEM. Our security expert advocates learning how SIEM and SOAR can work together. Continue Reading
By
- Andrew Froehlich, West Gate Networks
Tip 29 Apr 2019
2019's top 5 free enterprise network intrusion detection tools

Snort is one of the industry's top network intrusion detection tools, but plenty of other open source alternatives are available. Discover new and old favorites for packet sniffing and more. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
News 15 Apr 2019
Blue Hexagon bets on deep learning AI in cybersecurity

Cybersecurity startup Blue Hexagon uses deep learning to detect network threats. Security experts weigh in on the limitations of AI technologies in cybersecurity. Continue Reading
By
- Mekhala Roy
Answer 14 Feb 2019
Why did a Cisco patch for Webex have to be reissued?

Cisco's Webex Meetings platform had to be re-patched after researchers found the first one was failing. Discover what went wrong with the first patch with Judith Myerson. Continue Reading
By
- Judith Myerson
Tip 10 Dec 2018
5 actionable deception-tech steps to take to fight hackers

Consider taking these five 'deceptive' steps to make your detection and response capabilities speedier, more effective and to improve your company's security posture. Continue Reading
By
- Dave Shackleford, Voodoo Security
Opinion 03 Dec 2018
Ron Green: Keeping the payment ecosystem safe for Mastercard

"We have invested a billion dollars over the last couple of years just in security," says Ron Green, Mastercard's chief of security, who joined the company in 2014. Continue Reading
By
- Alan R. Earls
03 Dec 2018

Q&A with Mastercard CSO Ron Green

Continue Reading
Feature 03 Dec 2018
Threat hunting techniques move beyond the SOC

Tired of waiting for signs of an attack, companies are increasingly adding threat hunting capabilities to their playbooks to find likely ways their systems could be infiltrated. Continue Reading
By
- Robert Lemos
03 Dec 2018

Threat hunting techniques move beyond the SOC

Continue Reading
Opinion 03 Dec 2018
The threat hunting process is missing the human element

Threat hunting hinges on an analyst's ability to create hypotheses and to look for indicators of compromise in your network. Do you have the resources to hunt? Continue Reading
By
- Kathleen Richards
03 Dec 2018

The threat hunting process is missing the human element

Continue Reading
E-Zine 03 Dec 2018

Allure of the threat hunter draws companies large and small

Continue Reading
Tip 29 Nov 2018
Is network traffic monitoring still relevant today?

An increase in DNS protocol variants has led to a higher demand for network traffic monitoring. The SANS Institute's Johannes Ullrich explains what this means for enterprises. Continue Reading
By
- Johannes Ullrich, SANS Technology Institute
Answer 22 Nov 2018
How was a black box attack used to exploit ATM vulnerabilities?

Researchers from Positive Technologies found flaws affecting NCR ATMs. Discover how these ATM vulnerabilities work and how a patch can mitigate this attack. Continue Reading
By
- Judith Myerson
Tip 05 Nov 2018
How deception technologies improve threat hunting, response

Deception tech tools enable more effective threat hunting and incident response. Learn how these tools can give security pros an edge in defending their company systems and data. Continue Reading
By
- Dave Shackleford, Voodoo Security
Answer 07 Aug 2018
What does the expansion of MANRS mean for BGP security?

The Internet Society expanded MANRS to crack down on BGP security. Expert Michael Cobb explains what MANRS is and its implications for BGP server security. Continue Reading
By
- Michael Cobb
Tip 07 Jun 2018
Where machine learning for cybersecurity works best now

Need to up your endpoint protection endgame? Learn how applying machine learning for cybersecurity aids in the fight against botnets, evasive malware and more. Continue Reading
By
- Nick Cavalancia, Techvangelism
Tip 07 Jun 2018
AI and machine learning in network security advance detection

Applying AI, and specifically machine learning, in network security helps protect enterprises against advanced persistent threats and sophisticated cybercriminals. Continue Reading
By
- Nick Cavalancia, Techvangelism
Tip 05 Jun 2018
How entropy sources help secure applications with SDLC

Some applications need cryptographic algorithms to test and work properly. Expert Judith Myerson discusses this division in terms of the software development lifecycle. Continue Reading
By
- Judith Myerson
News 16 Feb 2018
SonicWall spots Meltdown exploits with machine learning tech

SonicWall says its new deep memory inspection technology, which powers the vendor's Capture Cloud sandbox service, can block Meltdown threats and other zero-day attacks. Continue Reading
By
- Rob Wright, Senior News Director
Answer 29 Jan 2018
Devil's Ivy vulnerability: How does it put IoT devices at risk?

A gSOAP flaw was found in an Axis Communications security camera and branded the Devil's Ivy vulnerability. Learn how it threatens IoT devices with expert Nick Lewis. Continue Reading
By
- Nick Lewis
Answer 06 Sep 2017
How can enterprises secure encrypted traffic from cloud applications?

As enterprises use more cloud applications, they generate more encrypted traffic. Expert Matthew Pascucci discusses the challenges that presents for network security teams. Continue Reading
By
- Matthew Pascucci
Feature 23 May 2017
Learn what breach detection system is best for your network

Breach detection systems are essential in these days of machine learning and artificial intellingence. Learn how to identify the features and functions your network needs. Continue Reading
By
- David Geer, Geer Communications
Answer 28 Apr 2017
How does an active defense system benefit enterprise security?

Active defense systems work as deception techniques on private networks, but are they good for enterprise use? Expert Judith Myerson discusses some options. Continue Reading
By
- Judith Myerson
Answer 17 Apr 2017
How does the PoisonTap exploit bypass password locks on computers?

The PoisonTap exploit can bypass password locks on computers, enabling an attacker to remotely control systems. Expert Nick Lewis explains how the attack works. Continue Reading
By
- Nick Lewis
Answer 06 Apr 2017
How serious is a malicious DLL file vulnerability for enterprises?

A flaw that allows attackers to load malicious DLL files in Symantec products was labeled as severe. Expert Michael Cobb explains the vulnerability and its classification. Continue Reading
By
- Michael Cobb
Answer 10 Mar 2017
Attack by TIFF images: What are the vulnerabilities in LibTIFF?

Attackers using crafted TIFF images can exploit flaws in the LibTIFF library to carry out remote code execution. Expert Michael Cobb explains how these vulnerabilities work. Continue Reading
By
- Michael Cobb
News 17 Feb 2017
Q&A: Digging into darknet technology with Farsight's Andrew Lewman

At RSAC, former Tor Project CEO Andrew Lewman explains the latest research into darknet technology and how that tech continues to evolve as an attack vector. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
News 10 Feb 2017
Corero: Telecom carriers have fallen behind on DDoS defense

Corero Network Security's Dave Larson talks with SearchSecurity about how DDoS defense has changed and why telecom service providers have struggled to keep up with new threats. Continue Reading
By
- Rob Wright, Senior News Director
Answer 02 Feb 2017
What are the best anti-network reconnaissance tools for Linux systems?

Anti-network reconnaissance tools can prevent attackers from getting access to system information. Expert Judith Myerson goes over the best enterprise options. Continue Reading
By
- Judith Myerson
News 26 Jan 2017
Heartbleed bug still found to affect 200,000 services on the web

Researchers found the infamous Heartbleed bug is still unpatched on as many as 200,000 services connected to the internet and experts don't expect that number to change. Continue Reading
By
- Michael Heller, TechTarget
Tip 24 Jan 2017
Monitoring outbound traffic on your network: What to look for

Outbound network traffic remains a weakness for many enterprises and is a major attack vector. Expert Kevin Beaver explains how to spot irregular occurrences in your network. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC
Buyer's Guide 21 Sep 2016

Wireless intrusion prevention systems: A buyer's guide

In this SearchSecurity buyer's guide, learn why it's important to have a wireless intrusion prevention system to protect your Wi-Fi networks and how to pick the right WIPS product. Continue Reading
Feature 29 Jul 2016
Mojo AirTight WIPS overview

Expert Karen Scarfone looks at the features and functionality of Mojo Networks' AirTight WIPS, a wireless intrusion prevention system designed to detect and block WLAN attacks. Continue Reading
By
- Karen Scarfone, Scarfone Cybersecurity
Tip 18 May 2016
Why signature-based detection isn't enough for enterprises

Signature-based detection and machine learning algorithms identify malicious code and threats. Expert Michael Cobb explains how both techniques defend networks and endpoints. Continue Reading
By
- Michael Cobb
Tip 07 Mar 2016
What enterprises need to know about Internet traffic blocking

Traffic blocking by Internet carriers has stirred up some controversy in the security industry. Expert Kevin Beaver discusses the pros and cons of blocking network traffic. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC
Feature 14 Jan 2016
The business case for vulnerability management tools

Expert Ed Tittel describes business use cases for vulnerability management tools and examines how organizations of all sizes benefit from these products. Continue Reading
By
- Ed Tittel
Tip 21 Dec 2015
Why relying on network perimeter security alone is a failure

A network perimeter security strategy alone can no longer protect enterprises. Expert Paul Henry explains why organizations must adapt. Continue Reading
By
- Paul Henry, SANS Institute
Feature 12 Nov 2015
Comparing the best intrusion prevention systems

Expert contributor Karen Scarfone examines the best intrusion prevention systems to help you determine which IPS products may be best for your organization. Continue Reading
By
- Karen Scarfone, Scarfone Cybersecurity
Feature 28 Oct 2015
Three criteria for selecting the right IPS products

Expert contributor Karen Scarfone examines important criteria for evaluating intrusion prevention system (IPS) products for use by an organization. Continue Reading
By
- Karen Scarfone, Scarfone Cybersecurity
Feature 20 Oct 2015
Enterprise benefits of network intrusion prevention systems

Expert Karen Scarfone explains how most organizations can benefit from intrusion prevention systems (IPSes), specifically dedicated hardware and software IPS technologies. Continue Reading
By
- Karen Scarfone, Scarfone Cybersecurity
Feature 13 Oct 2015
The basics of network intrusion prevention systems

Expert Karen Scarfone explores intrusion prevention systems and their acquisition, deployment and management within the enterprise. Continue Reading
By
- Karen Scarfone, Scarfone Cybersecurity
Tip 23 Feb 2015
Final five considerations when evaluating intrusion detection tools

Before making an investment in an intrusion detection and prevention system, be sure to read this list of five final considerations to keep in mind during intrusion detection system evaluation. Continue Reading
By
- Bill Hayes