http://sei.cmu.edu/feeds/tag/Updates on changes and additions to the SEI Blog for posts matching Best Practices in Network Securityen-usMon, 08 May 2023 00:00:00 -0400https://www.sei.cmu.edu/blog/process-and-technical-vulnerabilities-6-key-takeaways-from-a-chemical-plant-disaster/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesWeak processes can be as risky as technical vulnerabilities. This post describes how both of them worsened a cyber attack on a chemical plant.Daniel KambicMon, 08 May 2023 00:00:00 -0400https://www.sei.cmu.edu/blog/process-and-technical-vulnerabilities-6-key-takeaways-from-a-chemical-plant-disaster/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesCyber Risk and Resilience ManagementOperational ResilienceResilience Management Model (RMM)CybersecurityCybersecurity ControlsEnterprise Risk and Resilience ManagementBest Practices in Network SecurityCritical Infrastructure Protectionhttps://www.sei.cmu.edu/blog/dns-over-https-3-strategies-for-enterprise-security-monitoring/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesDNS over HTTPS (DoH) can impair enterprise network visibility and security by bypassing traditional DNS monitoring and protections. In this post, I'll provide enterprise defenders three strategies for security monitoring of DoH.Sean HutchisonMon, 09 Aug 2021 00:00:00 -0400https://www.sei.cmu.edu/blog/dns-over-https-3-strategies-for-enterprise-security-monitoring/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Traffic Analysis Cybersecurity EngineeringCybersecurityBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/pandemic-home-security-for-your-enterprise/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThe COVID-19 pandemic has greatly increased remote work among enterprise employees. Home-network environments are not professionally managed, so they are an appealing target for attackers. In this post, we advise how to mitigate these risks to regain a security footing.Phil Groce, Harry CaskeyMon, 25 Jan 2021 00:00:00 -0500https://www.sei.cmu.edu/blog/pandemic-home-security-for-your-enterprise/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/remote-work-vulnerabilities-and-threats-to-the-enterprise/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesHow has this change in the way we work altered our security posture? How has it changed our attack surface, and what should we be doing to defend it? In this blog post, I explore the answers to these questions.Phil GroceMon, 18 Jan 2021 00:00:00 -0500https://www.sei.cmu.edu/blog/remote-work-vulnerabilities-and-threats-to-the-enterprise/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/cat-and-mouse-age-net/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThis SEI Blog post explores evolving .NET threat landscape with challenges faced by red and blue teams and suggests ways to stay ahead of attackers.Brandon MarzikThu, 19 Nov 2020 00:00:00 -0500https://www.sei.cmu.edu/blog/cat-and-mouse-age-net/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesSecurity VulnerabilitiesCERT/CCCybersecurityBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/how-to-protect-your-high-value-assets/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThis blog post will outline the background of the federal High Value Asset (HVA) Program, explain the resources available to guide the securing of high value assets, and discuss ways to apply these resources to your own assets.Brian Benestelli, Emily ShawgoMon, 26 Oct 2020 00:00:00 -0400https://www.sei.cmu.edu/blog/how-to-protect-your-high-value-assets/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesCybersecurityBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/network-segmentation-concepts-and-practices/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn this blog post, we review the basics of network segmentation and describe how organizations should implement it as an ongoing process.Daniel Kambic, Jason FrickeMon, 19 Oct 2020 00:00:00 -0400https://www.sei.cmu.edu/blog/network-segmentation-concepts-and-practices/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/anti-phishing-training-is-it-working-is-it-worth-it/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesPhishing attacks target human, rather than technical, vulnerabilities. Some organizations, companies, government agencies, educational institutions, and individuals put on blinders....Mike PetockThu, 23 Jan 2020 00:00:00 -0500https://www.sei.cmu.edu/blog/anti-phishing-training-is-it-working-is-it-worth-it/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesInsider ThreatBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/could-blockchain-improve-the-cybersecurity-of-supply-chains/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesA September 2018 report to the President, Assessing and Strengthening the Manufacturing and Defense Industrial Base and Supply Chain Resiliency of the United States, raised concerns about cybersecurity....Eliezer KanalMon, 04 Nov 2019 00:00:00 -0500https://www.sei.cmu.edu/blog/could-blockchain-improve-the-cybersecurity-of-supply-chains/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesBlockchainCybersecurityBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/mapping-cyber-hygiene-to-the-nist-cybersecurity-framework/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn honor of Cybersecurity Awareness Month, I decided to put fingers to keys and share some basic practices that every organization should consider for their cyber hygiene initiatives....Matthew TrevorsWed, 30 Oct 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/mapping-cyber-hygiene-to-the-nist-cybersecurity-framework/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesMission AssuranceBest PracticesBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/managing-the-risks-of-ransomware/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesRansomware poses a growing threat to both businesses and government agencies. Though no strategy can fully eliminate these risks, this post provides recommendations....David Tobar, Jason FrickeFri, 11 Oct 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/managing-the-risks-of-ransomware/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessCyber MissionsBest Practices in Network SecuritySituational Awarenesshttps://www.sei.cmu.edu/blog/7-guidelines-for-being-a-trusted-penetration-tester/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThe best way to learn is by doing. But when it comes to penetration testing, learners risk legal implications and bad habits if they don't follow ethical, safe procedures....Karen MillerTue, 17 Sep 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/7-guidelines-for-being-a-trusted-penetration-tester/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/six-free-tools-for-creating-a-cyber-simulator/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIt can be hard for developers of cybersecurity training to create realistic simulations and training exercises when trainees are operating in closed (often classified) environments with no ability to connect to the Internet....Joseph MayesMon, 15 Apr 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/six-free-tools-for-creating-a-cyber-simulator/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesCybersecurityCyber MissionsBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/business-email-compromise-operation-wire-wire-and-new-attack-vectors/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn June 2018, Federal authorities announced a significant coordinated effort to disrupt business email compromise (BEC) schemes that are designed to intercept and hijack wire transfers from businesses and individuals....Anne ConnellMon, 08 Apr 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/business-email-compromise-operation-wire-wire-and-new-attack-vectors/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesMalwareCyber MissionsBest Practices in Network SecuritySocial Engineeringhttps://www.sei.cmu.edu/blog/how-to-use-static-analysis-to-enforce-sei-cert-coding-standards-for-iot-applications/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThe Jeep hack, methods to hack ATMs, and even hacks to a casino's fish tank provide stark evidence of the risks associated with the Internet of Things (IoT)....David SvobodaMon, 01 Apr 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/how-to-use-static-analysis-to-enforce-sei-cert-coding-standards-for-iot-applications/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesSecurity-Related RequirementsSecure CodingCyber Risk and Resilience ManagementStatic AnalysisCybersecuritySecure DevelopmentCyber MissionsBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/evaluating-threat-modeling-methods-for-cyber-physical-systems/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesAddressing cybersecurity for a complex system, especially for a cyber-physical system of systems (CPSoS), requires a strategic approach during the entire lifecycle of the system....Nataliya ShevchenkoMon, 04 Feb 2019 00:00:00 -0500https://www.sei.cmu.edu/blog/evaluating-threat-modeling-methods-for-cyber-physical-systems/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity-Related RequirementsOCTAVECyber Risk and Resilience ManagementNetwork Situational AwarenessEnterprise Risk and Resilience ManagementCyber MissionsThreat Modeling Best Practices in Network SecurityRiskCyber-Physical SystemsCritical Infrastructure Protectionhttps://www.sei.cmu.edu/blog/threat-modeling-12-available-methods/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesAlmost all software systems today face a variety of threats, and the number of threats grows as technology changes....Nataliya ShevchenkoMon, 03 Dec 2018 00:00:00 -0500https://www.sei.cmu.edu/blog/threat-modeling-12-available-methods/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity-Related RequirementsOCTAVECyber Risk and Resilience ManagementNetwork Situational AwarenessEnterprise Risk and Resilience ManagementCyber MissionsThreat Modeling Best Practices in Network SecurityRiskCyber-Physical SystemsCritical Infrastructure Protectionhttps://www.sei.cmu.edu/blog/ipv6-adoption-is-your-isp-ready-to-support-ipv6/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThis SEI Blog post examines best practices for transitioning to IPv6 and presents points to help determine if your current ISP can support IPv6 ambitions.Joseph MayesMon, 22 Oct 2018 00:00:00 -0400https://www.sei.cmu.edu/blog/ipv6-adoption-is-your-isp-ready-to-support-ipv6/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIPV6Cyber MissionsBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/best-practices-in-network-traffic-analysis-three-perspectives/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn July of this year, a major overseas shipping company had its U.S. operations disrupted by a ransomware attack, one of the latest attacks to disrupt the daily operation of a major, multi-national organization....Angela Horneman, Timothy Shimeall, Timur SnokeMon, 08 Oct 2018 00:00:00 -0400https://www.sei.cmu.edu/blog/best-practices-in-network-traffic-analysis-three-perspectives/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesHuman-Machine InteractionsCyber MissionsBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/cybersecurity-architecture-part-2-system-boundary-and-boundary-protection/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn Cybersecurity Architecture, Part 1: Cyber Resilience and Critical Service, we talked about the importance of identifying and prioritizing critical or high-value services and the assets and data that support them....Jason Fricke, Andrew HooverThu, 06 Sep 2018 00:00:00 -0400https://www.sei.cmu.edu/blog/cybersecurity-architecture-part-2-system-boundary-and-boundary-protection/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesInsider ThreatBest Practices in Network SecurityCybersecurity Controls