-
Midmarket security tutorials
SearchMidmarketSecurity.com’s tutorials offer IT professionals in-depth lessons and technical advice on the hottest topics in the midmarket IT security industry. Through our tutorials we seek to provide site members with the foundational knowledge ne... Tutorial
-
Microsoft releases Forefront Endpoint Protection 2010
Microsoft has announced the release of Forefront Endpoint Protection 2010 (FEP), an email filtering and antimalware product for Windows PCs and servers. News | 05 Jan 2011
-
Microsoft releases free regular expression patterns fuzzing tool
SDL RegEx Fuzzer examines regular expression patterns and whether they can be exploited causing a denial-of-service (DoS) attack. Article | 14 Oct 2010
-
Midmarket financial firms grapple with internal, external security threats
In the wake of the global economic crisis, many financial firms are struggling to meet tough regulations while defending against both accidental data leakage and a constant barrage of external attacks. Article | 13 Oct 2010
-
Tool defeats binary diffing, automated reverse engineering of Windows security patches
At Black Hat, a researcher unveils a tool that obfuscates fixes in Windows security patches, making them invisible to binary diffing suites and automated reverse engineering. Article | 06 Aug 2009
-
How to make data loss prevention tools affordable and manageable for midmarket
Data loss prevention can work for the midmarket if organizations have streamlined requirements and can easily identify and locate sensitive data. Article | 11 Jun 2009
-
Examining Conficker: When a worm becomes a botnet
Conficker may be backed by a well funded group or government intending to silently collect information. Though the hype has waned, Conficker could lead to a much larger threat. News | 04 Jun 2009
-
Stolen FTP credentials likely in latest website attacks
The latest website attack techniques use stolen user credentials instead of website vulnerabilities to crack websites and spread malware. News | 04 Jun 2009
-
Secure software development lifecycle: An approach for SMBs
Small businesses that lack the resources to implement the full MSDL can use its basic tenants to provide more secure software development. Tip
-
A step-by-step SMB IT security risk assessment process
Assessing your organization's security threats and risks takes just five steps, says Robbie Higgins. Check out his quick guide to the SMB security risk assessment process. Tip
-
Three pen test tools for free penetration testing
Nmap, Nessus and Nikto are penetration testing tools that security operators can use to conduct pentests on their networks and applications. Tip
-
How to use an edge firewall for network bandwidth management
These five tips will help your organization apply quality-of-service controls on a network perimeter firewall. Tip
-
How to conduct endpoint application security triage
Many patch management systems fail to address endpoint application security. Tom Chmielarski suggests three areas to examine to ensure that your endpoint applications are secure. Tip
-
Defending against Firesheep: How to prevent a session hijacking attack
A new exploit tool called Firesheep revealed just how vulnerable applications like Facebook and Twitter are to session hijacking attacks. Mike Chapple lists four steps you can take to protect your midsized business. Tip
-
Value and limitations of Windows Data Execution Prevention
When attackers inject malicious code into an application, Microsoft's Data Execution Prevention (DEP) technique can thwart the attack and save the day. But expert Tom Chmielarski says DEP does have some limitations. Tip
-
Buffer overflow prevention: Add apps to Microsoft EMET with command line configuration
Adding vulnerable applications to the Microsoft Enhanced Mitigation Experience Toolkit is simple once you've mastered the command line configuration tool. Tip
-
Windows 7 backup tool: Three Windows 7 Backup and Restore use cases
Windows 7's built-in backup tool is a reliable options for smaller organizations wanting to preserve the confidentiality and availability of stored data. Tip
-
Windows 7 Backup and Restore Center a critical data protection tool
Windows 7's built-in backup tool is a reliable options for smaller organizations wanting to preserve the confidentiality and availability of stored data. Tip
- See More: Tips on Security vulnerability management
-
vulnerability analysis (vulnerability assessment)
Vulnerability analysis, also known as vulnerability assessment, is a process that defines, identifies, and classifies the security holes (vulnerabilities) in a computer, network, or communications infrastructure... (Continued) Word
-
blended threat
A blended threat is an exploit that combines elements of multiple types of malware and perhaps takes multiple attack vectors to increase the severity of damage and the speed of contagion. Word
-
network scanning
Word
-
port scan
Word
-
Inside Ryder Truck Rental's PCI compliance project
In 2007, Julio Gonzalez, director of IT, GRC and network operations at Ryder Truck Rental, kicked off a PCI project aimed at addressing any credit card exposures. Podcast
-
Building a security dashboard
In this video, Joel Snyder of Opus One explains what a security dashboard is, how it can be useful to midmarket organizations and how to go about building one. Video
-
Intrusion defense in the era of Windows Vista
Microsoft has built comprehensive antimalware capabilities into its new Windows Vista operating system in the hopes that enterprises will forego third-party applications. But is the protection up to the standards that enterprises demand? Video
-
More or less: Browser security reloaded
This podcast will explore the various security merits of current browsers and give tips on how to decide which is right for your organization. Podcasts
-
Secure software development lifecycle: An approach for SMBs
Small businesses that lack the resources to implement the full MSDL can use its basic tenants to provide more secure software development. Tip
-
Midmarket security tutorials
SearchMidmarketSecurity.com’s tutorials offer IT professionals in-depth lessons and technical advice on the hottest topics in the midmarket IT security industry. Through our tutorials we seek to provide site members with the foundational knowledge ne... Tutorial
-
A step-by-step SMB IT security risk assessment process
Assessing your organization's security threats and risks takes just five steps, says Robbie Higgins. Check out his quick guide to the SMB security risk assessment process. Tip
-
Microsoft releases Forefront Endpoint Protection 2010
Microsoft has announced the release of Forefront Endpoint Protection 2010 (FEP), an email filtering and antimalware product for Windows PCs and servers. News
-
Three pen test tools for free penetration testing
Nmap, Nessus and Nikto are penetration testing tools that security operators can use to conduct pentests on their networks and applications. Tip
-
How to use an edge firewall for network bandwidth management
These five tips will help your organization apply quality-of-service controls on a network perimeter firewall. Tip
-
How to conduct endpoint application security triage
Many patch management systems fail to address endpoint application security. Tom Chmielarski suggests three areas to examine to ensure that your endpoint applications are secure. Tip
-
Defending against Firesheep: How to prevent a session hijacking attack
A new exploit tool called Firesheep revealed just how vulnerable applications like Facebook and Twitter are to session hijacking attacks. Mike Chapple lists four steps you can take to protect your midsized business. Tip
-
Value and limitations of Windows Data Execution Prevention
When attackers inject malicious code into an application, Microsoft's Data Execution Prevention (DEP) technique can thwart the attack and save the day. But expert Tom Chmielarski says DEP does have some limitations. Tip
-
Microsoft releases free regular expression patterns fuzzing tool
SDL RegEx Fuzzer examines regular expression patterns and whether they can be exploited causing a denial-of-service (DoS) attack. Article
- See More: All on Security vulnerability management
About Security vulnerability management
Get the latest information on formulating your vulnerability management strategy in order to find and fix network, operating system and application vulnerabilities. Get expert advice on vulnerability scanning and build your strategy on how your midmarket IT organization will act on the results.