Blog

  • Securing Configurations According to CIS 3rd Control & CIS Benchmarks

    The center for internet security (CIS) instructs to perform 20 different actions in order to achieve a cyber-attack resilient IT infrastructure. Among those 20 Controls, the first five found to be

    Read More
  • Why the hell WannaCry is still here?!

    According to December 2018 Top 10 Malware report, WannaCry malware holds the dubious lead of malware breakdowns with 28%. But as WannaCry might be “old news” in malware breakdown reports, another

    Read More
  • CIS (Center of Internet Security) controls and how to approach them

    CIS (Center of Internet Security) controls and how to approach them A study of the previous of the CIS Controls found that 85% of cyber incidents could be prevented by implementing

    Read More
  • 4 tips for a successful baseline hardening project

    The emerging cyber security threat and a large number of successful cyber attacks  occurred in the past years are encouraging CISO’s and IT teams to review their security posture and get

    Read More
  • Server hardening-Regulatory overview

      Baseline security hardening is a fundamental task in ensuring the organization’s servers are secure and compliant. OS and applications are provided from the manufacture with default configuration. The default configuration

    Read More
  • Hardening the IT infrastructure from servers to applications

    Hardening the IT infrastructure is an obligatory task for achieving a resilient to attacks infrastructure and complying with regulatory requirements. Hackers’ attack information systems and websites in an ongoing basis using

    Read More
  • Another reason to disable SMBv1- EternalRocks

    A new worm named EternalRocks is in the news this week . EternalRocks leverages some of the same vulnerabilities and exploit tools as WannaCry but is potentially more dangerous because it exploits seven

    Read More
  • Mitigate “Wannacry” through SMBv1 disabling and hardening

    On May 12th a Ransomware campaign named “Wannacry” has been promoted around the world, successfully attacking organizations such as hospitals, critical government offices, manufacturers and banks. While the ransomware itself and the

    Read More
  • Misconfigured Servers and Applications Stated as One of 10 OWASP Critical Security Risks

    OWASP (Open Web Application Security Project) recently released its 2017 version of its Top 10 List – the Ten Most Critical Web Application Security Risks. As you may know, OWASP is

    Read More
  • Critical hardening requirement from Microsoft- Disable SMB1

    On February 2017 Microsoft released MS17-010, a security update that prevents denial of service and remote code execution. If you need this security patch, you already have a much bigger problem: you

    Read More
  • Server hardening is crucial for warding targeted attacks

    Today’s internal security threat landscape is rapidly changing. Overcoming the threats related to the basic assumption that the attacker has already penetrated our premises is extremely challenging. Both CIS/SANS 20 security controls and

    Read More
  • 20 steps to prevent ransomware attacks

    This article shares some tips and actions that you can take to make your organization (both environment and employees) better capable of dealing with the risk of ransomware attacks. Computer Ransomware is

    Read More