Home / 2015 / March

Month: March 2015

Wordly Wise Wednesday – IDS / IPS

What is the difference between an Intrusion Detection System (IDS) and Intrusion Prevention System (IPS)? Both systems are security tools that are designed to identify network security threats. Both of the tools evaluate the network traffic and compare that against known signatures, patterns and other aspects to determine if the traffic may be a malicious attacker worming their way into your ne...
Read More

Oink Oink or Honk Honk… What is the difference between Piggybacking and Tailgating?

One of those terms (or sets of terms) that never seems to have a clear response from security analyst to security analyst within the community is what the difference between piggybacking and tailgating is. Let’s take a quick step back and make sure that we all know what we are talking about. If you are not a security analyst, you have undoubtedly seen either both or one of these terms used in s...
Read More

The Heartbleed continues… another OpenSSL issue discovered (FREAK)

On March 3, 2015, researchers in France went public with another OpenSSL vulnerability. In 2014, significant vulnerabilities were discovered in OpenSSL, publicized and socialized by the names “POODLE” and “HEARTBLEED.” This current vulnerability is identified as “FREAK,” or Factoring RSA Export Keys.   The current vulnerability (FREAK) seeks to exploit an old technology requirement. In ...
Read More