Are threat feeds masking your biggest security blind spot?

Security teams that subscribe to threat feeds get lists of known malicious domains, IPs, and file signatures that they can leverage to blacklist and prevent attacks from those sources.
The post Are threat feeds masking your biggest security blind spot?… Continue reading Are threat feeds masking your biggest security blind spot?

How does the Noise Protocol Framework provide authenticity in overlay networks like Nebula?

In addition to my question: Is a Nebula overlay network essentially a peer-to-peer mesh network with mutual TLS?.
How does the Noise Protocol Framework work? Especially, how does it provide authenticity to overlay networks such as Nebula n… Continue reading How does the Noise Protocol Framework provide authenticity in overlay networks like Nebula?

Is a Nebula overlay network essentially a peer-to-peer mesh network with mutual TLS?

I’m looking into Nebula overlay networks as also offered by the founders of it on defined.net.
To my understanding this type of network is some kind of mesh overlay network, which offers a form of peer-to-peer mutual TLS, is that assumptio… Continue reading Is a Nebula overlay network essentially a peer-to-peer mesh network with mutual TLS?

Is it possible to block entire TLDs on Ubiquity UniFi devices without a custom DNS?

I’m looking into ways to network wide block specific TLDs such as ZIP, XYZ, MOV. However I prefer to not setup a whole custom DNS specifically for this purpose. I so far did not find a solution yet. A command line option instead of through… Continue reading Is it possible to block entire TLDs on Ubiquity UniFi devices without a custom DNS?

Do countries have the ability to geo block another country entirely when at cyberwar? [closed]

In addition to this question: Does geo blocking whole countries objectively increase security?. When countries are at (cyber) war or have full trade embargos against each other. Do they have the technical ability to geo block the traffic f… Continue reading Do countries have the ability to geo block another country entirely when at cyberwar? [closed]

Does geo blocking whole countries objectively increase security? [duplicate]

I often see whole countries being blocked using GEO-IP blocks in network firewalls and even in web application firewalls. Often with great anecdotal success in reducing the amount of registered intrusions and attacks.
However, I’m wonderin… Continue reading Does geo blocking whole countries objectively increase security? [duplicate]

How the Shadowserver Foundation helps network defenders with free intelligence feeds

In this Help Net Security interview, Piotr Kijewski, CEO of The Shadowserver Foundation, discusses the organization’s mission to enhance internet security by exposing vulnerabilities, malicious activity, and emerging threats. Kijewski explains the foun… Continue reading How the Shadowserver Foundation helps network defenders with free intelligence feeds