Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Windows

upguard

The Windows Server Hardening Checklist

Oct 19, 2020 By UpGuard Team In UpGuard

Whether you’re deploying hundreds of Windows servers into the cloud through code, or handbuilding physical servers for a small business, having a proper method to ensure a secure, reliable environment is crucial to success. Everyone knows that an out-of-the-box Windows server may not have all the necessary security measures in place to go right into production, although Microsoft has been improving the default configuration in every server version.

Read Post
upguard

What is Netwalker ransomware? Attack methods & important defense tactics

Oct 19, 2020 By Edward Kost In UpGuard

Since ransomware was founded in 1996, many ransomware gangs have attempted and failed to quake the cybersecurity landscape. But some have broken through and even rearranged it with their obfuscatory cyberattack methods. Netwalker ransomware is an example of such a success. Within its first six months of operation, the ransomware gang received more than $25 million in ransom payments. What is Netwalker ransomware and why is it so lethal? To learn more, read on.

Read Post
elastic

Introduction to Windows tokens for security practitioners

Aug 20, 2020 By Will Burgess In Elastic

This blog series is aimed at giving defense practitioners a thorough understanding of Windows access tokens for the purposes of detection engineering. Here in Part 1, we'll cover key concepts in Windows Security. The desired outcome is to help defenders understand how access tokens work in Windows environments.

Read Post
sumologic

Detecting Windows Persistence

Aug 13, 2020 By Sumo Logic In Sumo Logic
Persistence is effectively the ability of the attacker to maintain access to a compromised host through intermittent network access, system reboots, and (to a certain degree) remediation activities. The ability of an attacker to compromise a system or network and successfully carry out their objectives typically relies on their ability to maintain some sort of persistence on the target system/network.
Read Post
elastic

macOS vs. Windows - What kernels tell you about security events: Part 2

Jul 9, 2020 By Yamin Tian In Elastic

This post continues this two-part blog series on further understanding the differences between macOS and Windows on the system level for effective endpoint security analysis. In Part 1, we covered process events. Here in Part 2, we’ll discuss file and network events. As with Part 1, my hope is to help cybersecurity professionals expand and enrich their experiences on a less familiar platform, ultimately helping them to be better prepared to face differences from past experiences.

Read Post

Netwrix Auditor for Windows File Servers - Overview

Jul 6, 2020 By Netwrix In Netwrix
Netwrix Auditor for Windows File Servers maximizes visibility into what's going on across Windows file servers by classifying sensitive data and providing actionable audit data about all changes made to files, folders, shares and permissions; and reporting on both successful and failed access attempts. Today, it’s hard to imagine an enterprise that doesn’t rely on file servers to store its data — including valuable and sensitive data. This makes file servers a key target for all sorts of attackers, including both anonymous hackers and disgruntled employees.
View Video
elastic

macOS vs. Windows - What kernels tell you about security events: Part 1

Jul 2, 2020 By Yamin Tian In Elastic

How would you compare the Windows and macOS operating systems? In what ways are they similar? Why do they each take different approaches to solving the same problem? For the last 19 years I've developed security software for Windows. Recently, I’ve started implementing similar features on macOS. Since then, people have asked me questions like this. The more experience I gained on these two operating systems, the more I realized they’re very different.

Read Post
Subscribe to Windows

Copyright © 2024 OpsMatters™. All rights reserved.