Architecture, Authentication, Blog and DNS

New Duo Feature Lets Users Skip the VPN Hassle

Duo's Security Blog

DECEMBER 21, 2021

The Remote Desktop Protocol (RDP) feature for the Duo Network Gateway prompts users to authenticate only when necessary, instead of first having them try and fail, forcing them to try again after logging into the company’s virtual private network (VPN). If they need to authenticate, a browser will pop up and ask them to do so.

VPN

VPN Authentication DNS Architecture

Identity and Access Management (IAM) in Payment Card Industry (PCI) Data Security Standard (DSS) environments.

CyberSecurity Insiders

APRIL 6, 2023

This is the first of a series of consultant-written blogs around PCI DSS. GoDaddy, Network Solutions) DNS service (E.g., GoDaddy, Network Solutions) DNS service (E.g., Many organizations have multiple IAM schemes that they forget about when it comes to a robust compliance framework such as PCI DSS.

Accountability

Accountability DNS DDOS VPN

Analyzing a Danabot Paylaod that is targeting Italy

Security Affairs

DECEMBER 20, 2018

exe process according to the architecture of the compromised host. Every DNS call from victim computer to internet, matching with the list of banking sites hard-coded in the malware, will be modified; the malware adds in the original page a piece of javascript to steal sensible information such as username, password and session cookie.

Banking

Banking Malware Internet Internet

Building Scalable Security with Cisco Secure Firewall Cloud Native Version 1.1

Cisco Security

NOVEMBER 2, 2021

Secure Firewall Cloud Native brings together the benefits of Kubernetes and Cisco’s industry-leading security technologies, providing a resilient architecture for infrastructure security at scale. adds support for SAML authentication for a single and multi-region deployment. Figure 1: Geolocation-based DNS redirection.

Firewall

Firewall DNS Architecture Authentication

HYAS Product Enhancements – Part II

Security Boulevard

MARCH 13, 2024

It’s also why HYAS clients depend upon our protective DNS solution, HYAS Protect , as a trusted and necessary component of their security stack. HYAS Protect now supports “split-horizon DNS” for handling DNS requests differently depending upon whether the employee is on-network or off. Not if we can help it!

DNS

DNS Architecture Cyber threats Phishing

Remotely Accessing Secure Kali Pi

Kali Linux

NOVEMBER 27, 2022

In Secure Kali Pi (2022) , the first blog post in the Raspberry Pi series, we set up a Raspberry Pi 4 with full disk encryption. Re4son-v8+ Architecture: arm64 And then edit the /etc/hosts file as well, changing the line that has kali-raspberry-pi in it to be DESKTOP-UL8M7HT : 127.0.1.1 DESKTOP-UL8M7HT 127.0.0.1 usr/lib/modules/5.15.44-Re4son-v8l+/kernel/drivers/net/wireless/broadcom/brcm80211

Firmware

Firmware Wireless Passwords VPN

What’s New in the Federal Zero Trust Strategy?

Duo's Security Blog

JANUARY 28, 2022

Imagine a shift away from logging into a “network” to having security seamlessly built into the network, and multi-factor authentication and authorization continuously performed at the application level on the fly — without users typing passwords. The vision being set forth by OMB is ambitious — but vital. What’s Next?

Authentication

Authentication Government DNS Encryption

6 Best Practices for SecOps in the Wake of the Sunburst Threat Campaign

McAfee

FEBRUARY 5, 2021

Ephemeral C2 servers and single-use DNS entries per asset (not target enterprise) were some of the more well-planned (yet relatively simple) behaviors seen in the Sunburst attack. This blog is a summary of the SOCwise Conversation on January 25th 2020. Identify places where you have more chances to detect their presence (i.e.

DNS

DNS Architecture Software Authentication

Black Hat USA 2023 NOC: Network Assurance

Cisco Security

AUGUST 28, 2023

XDR (eXtended Detection and Response) Integrations At Black Hat USA 2023, Cisco Secure was the official Mobile Device Management, DNS (Domain Name Service) and Malware Analysis Provider. SCA detected 289 alerts including Suspected Port Abuse, Internal Port Scanner, New Unusual DNS Resolver,and Protocol Violation (Geographic).

Wireless

Wireless DNS Mobile Technology

Advanced Phishing 201: How to Prevent Phishing from Impacting Your Users

Duo's Security Blog

MAY 10, 2023

Effectively protecting complex networks against sophisticated phishing attacks involves a comprehensive security stack including multi-factor authentication (MFA) , single sign-on (SSO) , and domain name system (DNS) security. We didn’t have a reliable security capability or any sort of architecture for our security offering.”

Phishing

Phishing DNS Authentication Risk

Understanding Certificate Automation Protocols

Security Boulevard

APRIL 4, 2022

On September 15, 2021, the DNS records for acme-v01.api.letsencrypt.org The ACME protocol automates the process for exchanging the information necessary for the CA to authenticate and issue certificates, and for the user to deploy the issued certificates. You can read all about the key points of how ACME works in this blog.

Encryption

Encryption Authentication DNS Risk

The Case for Multi-Vendor Security Integrations

Cisco Security

AUGUST 26, 2022

This new integration supports Umbrella proxy, cloud firewall, IP, and DNS logs. They include various items like DKIM key inspections, DNS Resource Records and more. Because of Bitglass’ agentless architecture, the joint solution can secure any app, any device, anywhere. A blog on the integration is also available here.

Firewall

Firewall Authentication Passwords Threat Detection

Black Hat Asia 2022 Continued: Cisco Secure Integrations

Cisco Security

MAY 27, 2022

In part one of our Black Hat Asia 2022 NOC blog , we discussed building the network with Meraki: . In addition to the Meraki networking gear, Cisco Secure also shipped two Umbrella DNS virtual appliances to Black Hat Asia, for internal network visibility with redundancy, in addition to providing: .

Malware

Malware Accountability DNS Technology

Key Takeaway from the Colonial Pipeline Attack

Cisco Security

MAY 24, 2021

Enforce security at the DNS layer. Cisco Umbrella analyses DNS queries to block requests to malicious domains, suspicious files or direct IP connections from command-and-control callbacks. Implement multi-factor authentication (MFA). Cisco has designed a reference architecture that will help you phase your project.

Firewall

Firewall IoT DNS Cyber Attacks

Cyber Security Informer

New Duo Feature Lets Users Skip the VPN Hassle

Identity and Access Management (IAM) in Payment Card Industry (PCI) Data Security Standard (DSS) environments.

Trending Sources

Analyzing a Danabot Paylaod that is targeting Italy

Building Scalable Security with Cisco Secure Firewall Cloud Native Version 1.1

HYAS Product Enhancements – Part II

Remotely Accessing Secure Kali Pi

What’s New in the Federal Zero Trust Strategy?

6 Best Practices for SecOps in the Wake of the Sunburst Threat Campaign

Black Hat USA 2023 NOC: Network Assurance

Advanced Phishing 201: How to Prevent Phishing from Impacting Your Users

Understanding Certificate Automation Protocols

The Case for Multi-Vendor Security Integrations

Black Hat Asia 2022 Continued: Cisco Secure Integrations

Key Takeaway from the Colonial Pipeline Attack

Stay Connected