Knowledge
-
13.5.2019You better make good on your (security) debt
Author: Jan Bervar
“Technical debt” describes the consequences of all the bad choices and shortcuts we have taken in IT over the years. Cybersecurity is a similar story. How to pay off this "security debt"?
-
21.3.2019Simplified data center firewall policies for maximum security
Firewalls are notorious for having a suboptimal policy configuration – from stale, years old rules that are no longer needed, to rules that allow wide access and represent a critical threat to the business. OCP Group wanted to eliminate these risks and asked NIL to help them improve the network access security of their data center.
-
26.3.2018Smart security investing: change your game!
Author: Jan Bervar
Digital defense evolution is happening under the surface. However, to join it and make perhaps the most meaningful upgrade of your risk management in decades, you will have to change your game.
-
23.3.2018The challenges of new security protocols
Author: Stojan Rančić
The new protocol version TLS 1.3 allows for safer network communication, while creating new security challenges and concerns. We recommend that you review the security features of your environment before TLS 1.3 becomes widely used.
-
09.1.2018What do the Meltdown and Spectre vulnerabilities mean for IT environments?
Author: Stojan Rančić
Who is affected by the Meltdown and Spectre vulnerabilities and how can you protect your IT environment against the attackers?
-
08.11.2017How to defend against DDoS attacks?
Author: Srečko Milanič
DDoS attacks are relatively inexpensive and easy to execute, so every organization is a potential target. How to respond against a DDoS and mitigate the threat?
-
27.10.2017Critical WPA2 vulnerability: you must update your devices and Wi-Fi infrastructure
Author: Stojan Rančić, Urban Jurca
Hackers can exploit the KRACK attack to intercept encrypted wireless traffic and thereby steal your sensitive information, such as passwords, credit card numbers, personal information, and professional secrets, if those travel through the wireless network unencrypted.
-
18.5.2017Let it only be me who is (pen)testing my home network (Part II)
Author: Matevž Mesojednik
I the previous series, I illustrated a few specific weaknesses of badly reputed networking protocol, namely UPnP. But why not evaluate home router’s security posture from the inside and see how well it performs. See where this lead me.
-
07.4.2017
Let it only be me who is (pen)testing my home network (Part I)
Author: Matevž Mesojednik
I got challenged the other day, having been given an opportunity to demonstrate some real-world hacks as part of the FRI student's Garage. The desired topic was cyber-attack surface within SOHO environments.
-
30.3.2017Dude, where's my (cloud) firewall?
Author: Jan Bervar
Using the public cloud securely requires some rethinking of your security architecture. Cloud security is not about the trust you have in a cloud provider, but rather about building appropriate security controls.
-
24.3.2017"HoeflerText" isn't installed. Really?
Author: Matej Vidič
One of the new types of ransomware that we've been running into recently impressed me with its distribution approach and ability to avoid detection. Why was it so successful?
-
14.3.2017What is IT Security All About?
Author: Robert Turnšek
In the world of IT, security is one of its pillars. Today, saying that your company or business is totally secure is a luxury no one can afford. Security always was and will be a constant battle between you and the bad guys.
-
12.12.2016The Suspicious Seven: A Network Visibility Checklist
What to do when your network is already compromised? This checklist outlines seven of the most common types of network blind spots and suspicious activities that every security team needs to be able to see. If you can’t detect these activities, you are giving threats a place to hide on your network.
-
09.11.2016Operations Management Suite - Automation and Security
Author: Robert Turnšek
See how to streamline IT operations and respond faster to security threats from a single portal with Microsoft OMS. Through practical demo Robert showed how to enable automation and deploy threat detection and prevention mechanism.
-
07.7.2016Azure Rights Management
Author: Jan Češčut
How can you ensure, that your documents are only read by the persons they were intended for? Watch the video and learn how to use Azure Rights Management Services (RMS) to protect your organization from intentional or accidental data leaks.
-
18.4.2016The Soft, Warm Underbelly of the Cloud
Author: Jan Bervar
Cloud automation is a complex collection of software, prone to cascading failures, and exposed to an untrusted population of users. How can it be exploited, what are the consequences, and how can we control the risks involved?
-
17.12.2015Security is not the Issue, Trust is
Author: Robert Turnšek
Data centers of global IT cloud providers are built to last and can and will withstand just about anything – hardware, software and security wise. The only notable issue remaining with them is therefore trust related.
-
29.10.2014Engineering expertise represented NIL in the best possible light
Ronald Reagan UCLA Medical Center from Los Angeles, USA, was redesigning their network infrastructure. NIL assisted them with upgrading their optical DWDM network and with migration of legacy firewalls to Cisco ASA 5585.
-
15.3.2013Virtual firewalls – The Good, the Bad and the Ugly
Author: Ivan Pepelnjak
Ivan Pepelnjak explains the virtual firewalls taxonomy, describes the major architectural options, and illustrates typical use cases with products from few established virtual firewall vendors (Cisco, VMware, Juniper, Vyatta/Brocade) and startups (LineRate Systems, Midokura).
-
20.12.2010Less unwanted traffic and a more secure local network
To reduce the potential negative influence of users on the network and decrease unwanted traffic, Krka introduced multiple layers of security mechanisms at the edge of the network.
