Posts

Showing posts from October, 2015

Continuous Asset Profiling

Image
Continuous Asset Profiling  Something we are pretty proud of at edgescan  is our Continuous Asset Profiling service which is part of any edgescan license. We call it HIDE (Host Index, Discovery & Enumeration). So what is it and why should I care? HIDE provides continuous asset profiling across blocks of our clients IP's So rather than asking a client to specify individual IP's, edgescan profiles entire IP blocks/ranges. But why do this? The reason we give our clients the ability to profile entire blocks is three-fold. HIDE can detect if a server/IP goes live since the last round of continuous profiling. HIDE can detect if a new service / port or firewall change has occurred on any asset profiled. HIDE can alert our client of any change to their external asset profile on an ongoing basis using various methods such as SMS, email or Live Feed. If, as per traditional approaches to profiling, we only assess named endpoints we don't...

Security done wrong and blowing the budget...how not to secure your business

Image
The State of Cyber Security : We don't  want a 15 year old breaching our systems, stealing data and taking 13% off our share price as a result.....hmm I think not. If I wanna be hacked the hacker has got to be elite and like an uber hacker right!! It is strikingly obvious that security is still weak for both the large enterprise and smaller organisations alike. Take  TalkTalk hacked by 15yr old  for example... We live in a world where multi-million euro businesses can be drastically hit by ANYONE with the will, determination and curiosity, I sh*t you not!!. Poor practices we accept in the industry Yearly security testing on sites & systems that change frequently We perform annual testing of our systems, in a time limited manner. Our systems are in a constant state of flux (for the below reasons) but we still only do the annual security test.  See anything wrong here? 3 words  for you... Window Of...