Network security not only ensures secure networking within companies but also plays a central role in connecting mobile users, for the Internet of Things (IoT), and for cloud computing. What does network security mean? Network security refers to all technical and organizational measures designed to ensure the confidentiality, integrity, and availability of data and systems …
Emergency management and regular drills are not yet standard everywhere, according to a result of the BSI (German Federal Office for Information Security) cyber security survey. This is to be changed by the planned BSI standard 200-4. The step-by-step model for getting started with BCM (business continuity management) plays an important role here. Further development …
A series of cyberattacks from the onset of the pandemic is dragging on like chewing gum. The attacks just won’t stop. Foreign state power in domestic cyberspace is a threat of a special kind. Foreign state power in domestic cyberspace Rarely has a major outcry been as deeply justified as that surrounding the attacks against …
An antivirus program protects computers from malicious software. This can be, for example, Trojans, worms or spyware, and other malware. Antivirus software is able to detect, block and remove malicious software. What are virus scanners? Basically, virus scanners, often called malware scanners, can be divided into different types depending on their function. Commonly used is …
IT projects based on open source have been gaining popularity for several years now, including OPNsense as a central firewall solution for companies. The growing community and the independent adaptability make OPNsense a future-proof alternative to commercial solutions. Thanks to many plugins, OPNsense is worth a closer look, especially for SMEs. OPNsense As a Professional …
The data protection impact assessment, or DSIA for short, is an important installation of the General Data Protection Regulation (GDPR). It is intended to ensure the protection of personal data in data-processing bodies through a risk analysis to be carried out in advance. The consequences of processing operations are to be examined and evaluated in …
Headlines about devastating cyberattacks have not been uncommon lately – and they seem to be becoming more frequent: Both the number of security breaches and their severity continue to increase. Yet it turns out that many of the attacks could be avoided. This makes security breaches a particularly bitter pill for those organizations that fall …
The Key Management Interoperability Protocol is a protocol standardized by OASIS (Organization for the Advancement of Structured Information Standards). KMIP enables the communication of applications and systems for the storage and management of keys, certificates, or other secret objects. What is KMIP (Key Management Interoperability Protocol)? The abbreviation KMIP stands for Key Management Interoperability Protocol …
What is KMIP (Key Management Interoperability Protocol)? Read More »
Metasploit is an open-source project that provides, among other things, the Metasploit framework. It contains a collection of exploits that can be used to test the security of computer systems. Metasploit can also be misused as a tool for hackers. What is Metasploit? The framework provided by the Metasploit open-source project can be used to …
Often, users are given admin rights on a computer because individual programs won’t work otherwise. This has been common practice for years, but it brings with it many problems, such as an increased risk of malware. In most cases, extended rights are not even necessary. Windows offers enough possibilities for users to work with the …
The number of construction sites in data protection is not decreasing, it seems. The data protection consequences of a hard Brexit are just one example. This makes it all the more important to set the right priorities in data protection. The best tool for this is the data protection impact assessment, for which there is …
Tools for Data Protection Impact Assessment According to DSGVO Read More »
Cloud environments, IT virtualization, and software-defined infrastructure (SDI) are expected to realize key business objectives on the enterprise side, such as scalability, flexible service delivery, and cost-efficiency. Agile IT infrastructures as the foundation for digital transformation inevitably require CIOs and IT leaders to rethink their security strategy. That’s why micro-segmentation is a high priority. Best …
Many IT security measures are not developed or deployed until you encounter a concrete problem. It was the same with Captcha. This security query was developed to put a stop to spam and the unwanted use of web services by automated bots and to clearly distinguish humans from machines. But as is so often the …
Today, security services such as a virtual private network (VPN) can be easily outsourced to the cloud. It is important to be clear in advance about the required level of security and the requirements and deployment environments of the clients and to document this in a way that is comprehensible to the cloud VPN provider. …
Privileged Identity Management (PIM) protects resources and user accounts in Azure AD and thus also in Microsoft 365 or Endpoint Manager. The technology can largely prevent attacks on privileged user accounts. Privileged Identity Management in Azure AD and Microsoft 365 The management of user accounts in Azure AD naturally plays a role above all with …
Privileged Identity Management in Azure AD and Microsoft 365 Read More »
Self-Sovereign Identity (SSI) ensures secure and trustworthy digitization. Users can self-sovereign their digital identity and credentials such as ID cards or certificates to applications. The European SSI ecosystem breaks dependencies on monopolists and gives us the freedom to shape the digital future with confidence and speed. What is Self-Sovereign Identity (SSI)? Time, IT security, privacy, …
What Is Self-Sovereign Identity (SSI) and Its Use Read More »
A zero-day exploit is a special form of exploit, i.e. the exploitation of a vulnerability where no patch exists yet for a discovered security hole. Such an exploit can be used for very dangerous, because undetected, zero-day attacks that spread, for example, rootkits, remote access Trojans (RATs), or other malware. What is a zero-day exploit? …
The Remote Desktop Protocol (RDP), popular with many admins, poses a huge security risk to businesses. Security vendor Sophos has released its nearly four-month study, “RDP Exposed: The Threat That’s Already at your Door” and published the long-term results. It shows how cybercriminals are relentlessly trying to attack businesses via RDP. RDP is a huge …
What started 15 years ago as a diploma thesis by the current head of development, Henning Krause, has long been established in the market as a veritable on-premises solution for email filtering “Made in Germany”. Now, Paderborn-based Net at Work GmbH has built a brand new cloud solution from it, which Stefan Cink, Business Unit …
E-mail? But Secure! Premiere of the NoSpamProxy Cloud Read More »
Agile methods such as DevOps are now an integral part of software development. If you don’t pay close attention to security right from the start, you risk a lot of money and the reputation of your company. How DevOps and security fit together Better, faster, more efficient. This says it all about the requirements for …
