In a previous article, we wrote about how simple OSCAR makes identifying anomalous activity in logs. However, what you don’t know is that in developing OSCAR, we use our findings to add new features to the product.
Looking back to the original anomaly alert email, we can see that the count is much higher than all comparisons:
We received an alert informing of anomalous activity from OSCAR. In this article you will see how we identified what caused the alert. Thankfully OSCAR makes identifying anomalous activity extremely simple.
By looking at the alert email, we knew that the occurrence was between 9:00 and 10:00 am on a Monday morning. We also knew which firewall logged the event, and the total number of events that ...
Continue Reading →
Odd the connections that our minds make.
As I was reading an email from Verne Harnish the author of “Mastering the Rockefeller Habits”, a quote by a very successful business owner who uses the system really struck me on multiple levels (including running an Information Security Management System), “Routine sets you free …”
For some reason I tend to view the definition of many, many words as their connotation (subjective cultural or ...
Continue Reading →These Technology IT Security links are part of a weekly series, Ethical Hacker Roundup, featuring the information security and cyber security related articles that we’ve read over and thought worth sharing from the past week.
These articles have were emailed to us, shared on Twitter @pivotpointsec, Google Plus and read in RSS subscriptions this week.
Most organizations are reliant upon hundreds or thousands of third-parties for products or services that are integral to their operation. Unfortunately most organizations do not do a good enough job of differentiating reliant versus RELIANT. Let’s put it in perspective:
If the cafeteria doesn’t get its shipment of ketchup in time for lunch – we may have some angry tater tot loving employees (until someone can run to ShopRite). While the lack of ketchup is ...
Continue Reading →
Join the other subscribers and receive Information Security article updates by email.
ISO 27001 is manageable and not out of reach for anyone! It’s a process made up of things you already know – and things you may already be doing.
Database Security is one step in a comprehensive approach to building a robust Information Security Management System.
Penetration Tests are often used in a manner that is inconsistent with achieving the assurance that the organization seeks.
Best Practices for SIEM learned from working closely with numerous vendors and customers on a wide variety of SIEM projects.
Risky Business Blog
Simplified Blog
Techno Blog
In The News
RSS Feed
