MSI Strategies & Tactics Talk Episode 5: Is Compliance-centric Security The Way To Go?

Posted on June 23, 2011 by Mary Rose Maguire

“Compliance-centric security is bleeding us dry.” – Brent Huston, CEO and Security Evangelist for MSI

Listen in as our tech team discusses compliance-centric security, including:

What is compliance-centric security?
Why is it a problem?
How it creates a “do-the-minimum mentality”
What is the alternative to compliance-centric security?

Panelists:

Brent Huston, CEO and Security Evangelist, MicroSolved, Inc.
Adam Hostetler, Network Engineer and Security Analyst
Phil Grimes, Security Analyst
John Davis, Risk Management Engineer
Mary Rose Maguire, Moderator, Marketing Communication Specialist, MicroSolved, Inc.

Click the embedded player to listen. Or click this link to access downloads. Stay safe!

Audio Blog Post: What Apple’s iCloud Means For The Enterprise

Posted on June 20, 2011 by Brent Huston

Brent Huston shares his thoughts on the upcoming iOS5 and Apple’s iCloud.
Click here to listen

Meet Our New Information Security Account Exec: Chris Lay

Posted on June 17, 2011 by Mary Rose Maguire

Chris talks about MicroSolved, Inc. and shares his excitement about our ability to help companies create a threat-centric information security strategy.

Welcome, Chris!

Friday Fun: Audio Blog Surprise Interviews

Posted on June 10, 2011 by Mary Rose Maguire

Brent interviews two unsuspecting MSI staff who share a few surprising facts. One is associated with a diminutive musical instrument and the other with a state-champion sports team. Take a listen!
Surprise Interview

MRMaguire
GetInfoSecHere

MicroSolved’s Strategies & Tactics Talk: #3 APT: Less Advanced Than You May Think

Posted on June 9, 2011 by Mary Rose Maguire

So how “advanced” is APT?

Listen in as our tech team discusses various aspects of APT such as:

How it has been portrayed.
Why it often isn’t an advanced threat
Where do they originate?
What can companies do about APT?

Panelists:

Brent Huston, CEO and Security Evangelist, MicroSolved, Inc.
Adam Hostetler, Network Engineer and Security Analyst
Phil Grimes, Security Analyst
Mary Rose Maguire, Moderator, Marketing Communication Specialist, MicroSolved, Inc.

Click the embedded player to listen. Or click this link to access downloads. Stay safe!

Audio Blog: Brent Huston – HoneyPoint Security Server Manifesto Part Two

Posted on June 8, 2011 by Mary Rose Maguire

We continue our interview with Brent Huston as he answers a few questions about HoneyPoint Security Server, and HoneyPoint Agents.

In this installment, you’ll learn:

What HoneyPoint Agent is and its role in the suite
How information techs are using HoneyPoint
How can people use Agent with DNS and blacklisting, and why it’s significant
What HoneyPoint Decoy is and how it is utilized in an environment
The three different “flavors” of HoneyPoint Decoy

Click the link to listen or right-click to download it.

Security Alert: RSA Breach and 7 Ways to Secure Your Tokens

Posted on June 7, 2011 by Brent Huston

Since the compromise of the RSA environment several months ago, much attention has been paid to the potential impact of the attack on RSA customers.

Given the popularity of the RSA products and the sensitivity of the processes that they protect, the situation should be taken very seriously by RSA token users.

Last night, RSA made a public announcement that their breach and information stolen in that breach has now been used in attacks against RSA customers. The primary focus, as far as is known, has been the defense sector, but it is very likely that additional threat-focus has been placed on other critically sensitive verticals such as financial and critical infrastructure.

There are a number of things that RSA customers should do, in the advice of MicroSolved, Inc. Below is a short list of identified strategies and tactics:

Identify all surfaces exposed that include RSA components. Ensure your security team has a complete map of where and how the RSA authentication systems are in use in your organization.
Establish a plan for how you will replace your tokens and how you will evaluate and handle the risks of exposure while you perform replacement.
Increase your vigilance and monitoring of RSA exposed surfaces. This should include additional log, event and intrusion monitoring around the exposed surfaces. You might also consider the deployment of honeypots or other drop-in measures to detect illicit activity against or via compromised systems available with the RSA exposed surfaces.
Develop an incident response plan to handle any incidents that arise around this issue.
Increase the PIN length of your deployments as suggested by RSA, where appropriate, based on identified risk and threat metrics.
Teach your IT team and users about the threats and the issue. Prepare your team to handle questions from users, customers and other folks as this issue gains media attention and grows in visibility. Prepare your technical management team to answer questions from executives and Board-level staff around this issue.
Get in contact with RSA, either via your account executive or via the following phone number for EMC (RSA’s parent company): 1-800-782-4362

In the meantime, if MSI can assist you with any of these steps or work with you to review your plan, please let us know. Our engineers are aware of the issues and the processes customers are using to manage this problem in a variety of verticals. We can help you with planning or additional detection and monitoring techniques should you desire.

We wish our clients the highest amount of safety and security as we, as an industry, work through this challenge. We wish RSA the best of luck and the highest success in their remediation and mitigation efforts. As always, we hope for the best outcome for everyone involved.

Thanks for your time and attention to this issue. It is much appreciated, as is your relationship with MicroSolved, Inc.

MSI HoneyPoint Featured on Virtualization Security Podcast

Posted on June 2, 2011 by Mary Rose Maguire

Brent Huston, CEO and Security Evangelist of MicroSolved, Inc., was recently a guest for the popular podcast, “Virtualization Security Podcast.”

Brent talked about HoneyPoint Wasp and discussed with other panelists how honeypot technology can help an organization detect real attacks and also the legal ramifications of stealth monitoring.

The Virtualization Practice also featured HoneyPoint in their recent post, “New Virtualization Security Products Available.”

The podcast panelists include;

Edward L. Haletky, Author of VMware vSphere and Virtual Infrastructure Security: Securing the Virtual Environment and virtualization security analyst, as Moderator.
Michael Berman, CTO of Catbird Security
Iben Rodriguez, Independent Virtualization and Security Consultant and Maintainer of the ESX Hardening Guidance from CISecurity

Click on the player below to listen. To listen on iTunes or download the MP3, go here. Enjoy!

Introducing: MicroSolved’s Strategies & Tactics Talks!

Posted on June 1, 2011 by Mary Rose Maguire

We’re adding a new feature to our blog: MicroSolved’s Strategies & Tactics Talks!

Every other week, we’ll focus on some of the hottest security issues that are trending, with insights and advice regarding the good, the bad, and the ugly. Make sure to tune in or save the mp3 to your folder so you can download it to your favorite player.

Our first episode: Sony’s Security Woes

Brent Huston sat down with MicroSolved, Inc.’s security team to discuss what Sony did right with their batch of security breaches. Click the embedded player to listen. Or click this link to access downloads. Stay safe!

Audio Blog: Brent Huston – HoneyPoint Security Server Manifesto

Posted on May 24, 2011 by Mary Rose Maguire

Brent Huston answers a few questions about HoneyPoint Security Server, how it began, what is happening with it today, and the creative ways other techs are using it. Click the link to listen or right-click to download it.

Brent Huston: HoneyPoint Security Server Manifesto

MSI :: State of Security

Insight from the Information Security Experts