Blog

  • Leaving TLS 1.2 and moving to TLS 1.3

    New version of TLS was launched in 2018 – the TLS 1.3 protocol. TLS 1.3 aims to solve all of the problems facing its older version – TLS 1.2. What is

    Read More
  • 8 Hardening Actions That Will Break Your IIS Server

    Security versus functionality is always the concern when approaching server hardening. Hardening your IIS server is one of the most crucial missions when trying to achieve a secured infrastructure. There are

    Read More
  • Hardening TLS/SSL protocols- What Might Break

    Is your organization still using old SSL/TLS protocols? June 2018 was the deadline for hardening SSL/TLS protocols and implementing a more secure encryption protocol. The PCI Security Standards Council requires all

    Read More
  • Hardening Configurations using CIS Benchmarks

    The center for internet security (CIS) instructs to perform 20 different actions in order to achieve a cyber-attack resilient IT infrastructure. Among those 20 Controls, the first five found to be

    Read More
  • Why the hell WannaCry is still here?!

    According to December 2018 Top 10 Malware report, WannaCry malware holds the dubious lead of malware breakdowns with 28%. WannaCry total damage is estimated by 4 billion $ But as WannaCry might be

    Read More
  • CIS controls and how to approach them

    CIS (Center of Internet Security) controls and how to approach them A study of the previous of the CIS Controls found that 85% of cyber incidents could be prevented by implementing

    Read More
  • 4 tips for a successful baseline hardening project

    The emerging cyber security threat and a large number of successful cyber attacks  occurred in the past years are encouraging CISO’s and IT teams to review their security posture and get

    Read More
  • Server hardening-Regulatory overview

      Baseline security hardening is a fundamental task in ensuring the organization’s servers are secure and compliant. OS and applications are provided from the manufacture with default configuration. The default configuration

    Read More
  • Hardening the IT infrastructure from servers to applications

    Hardening the IT infrastructure is an obligatory task for achieving a resilient to attacks infrastructure and complying with regulatory requirements. Hackers’ attack information systems and websites in an ongoing basis using

    Read More
  • Another reason to disable SMBv1- EternalRocks

    A new worm named EternalRocks is in the news this week . EternalRocks leverages some of the same vulnerabilities and exploit tools as WannaCry but is potentially more dangerous because it exploits seven

    Read More
  • Mitigate “Wannacry” through SMBv1 disabling and hardening

    On May 12th a Ransomware campaign named “Wannacry” has been promoted around the world, successfully attacking organizations such as hospitals, critical government offices, manufacturers and banks. While the ransomware itself and the

    Read More
  • Misconfigured Servers and Applications Stated as One of 10 OWASP Critical Security Risks

    OWASP (Open Web Application Security Project) recently released its 2017 version of its Top 10 List – the Ten Most Critical Web Application Security Risks. As you may know, OWASP is

    Read More