The DoD’s Defend Forward operational concept has been rolling out over the past few years. Policy makers and cyber defenders in government realized that, as the situation in Afghanistan led directly to the rise of Al-Qaeda and the 9-11 attacks, the situation in cyberspace was going to lead to crippling […]
I’ve been in cybersecurity for 19 years and love the field. It’s technically a very challenging problem to solve and the stakes are extremely high. Those of us in this field are defending the foundation of the information age. We are protecting the money in people’s bank accounts, their personal privacy and dignity, and even […]
Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) have a known vulnerability – CVE-2020-3452. This security vulnerability can allow an unauthenticated attacker to remotely conduct a directory traversal attack as well as read sensitive files on a targeted system.
Exploiting this vulnerability, the attacker can view files […]
Cybersecurity Maturity Model Certification (CMMC) is a tiered system in which defense contractors—or any organization holding Controlled Unclassified Information (CUI) must be vetted by a third-party assessor on a five-level scale to determine the maturity of their enterprise security. This requires companies that do business with the Department of Defense to protect their data since […]
Working on a Red Team is frustrating. I know, I was on one.
Red Teams work hard penetrating systems, gathering data and presenting findings to senior management only to get strongly dismissive responses- “So what?” This is frequently followed by an order to not to share detailed information with the Defensive Cyber Operations (DCO) teams […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Wayne Lloyd, Federal CTO, RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngWayne Lloyd, Federal CTO, RedSeal2020-08-10 11:35:532020-08-10 23:51:51‘Red Teams’ Need to Deliver Context — Let’s Help Them
American democracy is resilient. From its rebuilding after our civil war to recovering from the Great Depression, America has been able to overcome the largest of obstacles. However, 2020 gives us unprecedented challenges that will test this resilience. Central to our country’s recovery from this pandemic will be ensuring the foundation of our democracy remains […]
How often have you made a network change that didn’t work the way you expected or even created a new issue? The list of configuration changes needed to build, maintain, and secure a network is daunting. It’s all too easy to act without thoroughly thinking through and considering the impact on the whole network. Initially […]
As I write this, our society is amid an economic collapse and social closure the likes of which no one in our lifetime has ever seen. People everywhere are trying to create some kind of certainty so that they can plan their future, get back to their “day job” and feel safe while resuming a […]
In my last article, I discussed the importance of walking the terrain, or knowing your network. I suggested beginning at the at high level: identify your sites, then group your assets by site or facility. This is a great place to start understanding your network because network controls tend to be fairly static. However, discovering […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Kurt Van Etten, Chief Product Officer, RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngKurt Van Etten, Chief Product Officer, RedSeal2020-04-28 15:04:182020-04-28 15:04:18Know What to Protect and Why
You’ve been asked to defend your organization from a myriad of threats: state sponsored attacks, cyber criminals, insiders. But where do you start?
Many years ago, as a young Marine lieutenant I learned that the first step to establishing a defense is to understand what you’re defending. You must know the terrain. Walk the terrain. Understand the key parts […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Kurt Van Etten, Chief Product Officer, RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngKurt Van Etten, Chief Product Officer, RedSeal2020-04-02 07:00:052020-05-18 17:02:43Best Practices for Cyber Resilience: Step One, Walk the Terrain
[December 8 Webinar] Help Your Auditors Help You -Register Now
Supporting the DoD’s Defend Forward Initiative
/in Blog /by Wayne Lloyd, Federal CTO, RedSealWhat is Defend Forward?
The DoD’s Defend Forward operational concept has been rolling out over the past few years. Policy makers and cyber defenders in government realized that, as the situation in Afghanistan led directly to the rise of Al-Qaeda and the 9-11 attacks, the situation in cyberspace was going to lead to crippling […]
Why I Chose RedSeal
/in Blog /by Bryan Barney, RedSeal CEOI’ve been in cybersecurity for 19 years and love the field. It’s technically a very challenging problem to solve and the stakes are extremely high. Those of us in this field are defending the foundation of the information age. We are protecting the money in people’s bank accounts, their personal privacy and dignity, and even […]
High Severity Security Flaw with Cisco ASA: Find It and Prioritize Patching Quickly
/in Blog /by Debra Baker, CISSP CCSPRedSeal Cyber Threat Series
Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) have a known vulnerability – CVE-2020-3452. This security vulnerability can allow an unauthenticated attacker to remotely conduct a directory traversal attack as well as read sensitive files on a targeted system.
Exploiting this vulnerability, the attacker can view files […]
Be Prepared with RedSeal: DOD-Required Cybersecurity Maturity Model Certification
/in Blog /by Jay BranaganCybersecurity Maturity Model Certification (CMMC) is a tiered system in which defense contractors—or any organization holding Controlled Unclassified Information (CUI) must be vetted by a third-party assessor on a five-level scale to determine the maturity of their enterprise security. This requires companies that do business with the Department of Defense to protect their data since […]
‘Red Teams’ Need to Deliver Context — Let’s Help Them
/in Blog /by Wayne Lloyd, Federal CTO, RedSealWorking on a Red Team is frustrating. I know, I was on one.
Red Teams work hard penetrating systems, gathering data and presenting findings to senior management only to get strongly dismissive responses- “So what?” This is frequently followed by an order to not to share detailed information with the Defensive Cyber Operations (DCO) teams […]
U.S. Not Ready for Online Voting, Stick to Mail-In Ballots
/in Blog /by Ray Rothrock, Executive Chairman, RedSealAmerican democracy is resilient. From its rebuilding after our civil war to recovering from the Great Depression, America has been able to overcome the largest of obstacles. However, 2020 gives us unprecedented challenges that will test this resilience. Central to our country’s recovery from this pandemic will be ensuring the foundation of our democracy remains […]
Change Management Processes are Critical — From Nuclear Submarines to Your Network
/in Blog /by Landon Brock, Product Manager, RedSealHow often have you made a network change that didn’t work the way you expected or even created a new issue? The list of configuration changes needed to build, maintain, and secure a network is daunting. It’s all too easy to act without thoroughly thinking through and considering the impact on the whole network. Initially […]
To Recover and Rebuild, Look to Technology
/in Blog /by Ray Rothrock, Executive Chairman, RedSealAs I write this, our society is amid an economic collapse and social closure the likes of which no one in our lifetime has ever seen. People everywhere are trying to create some kind of certainty so that they can plan their future, get back to their “day job” and feel safe while resuming a […]
Know What to Protect and Why
/in Blog /by Kurt Van Etten, Chief Product Officer, RedSealIn my last article, I discussed the importance of walking the terrain, or knowing your network. I suggested beginning at the at high level: identify your sites, then group your assets by site or facility. This is a great place to start understanding your network because network controls tend to be fairly static. However, discovering […]
Best Practices for Cyber Resilience: Step One, Walk the Terrain
/in Blog /by Kurt Van Etten, Chief Product Officer, RedSealYou’ve been asked to defend your organization from a myriad of threats: state sponsored attacks, cyber criminals, insiders. But where do you start?
Many years ago, as a young Marine lieutenant I learned that the first step to establishing a defense is to understand what you’re defending. You must know the terrain. Walk the terrain. Understand the key parts […]