Network security

With the growth of malware and data breaches, enterprises must ensure their networks -- and the applications and traffic on those networks -- are secure. Learn about important network security strategies and technologies, such as VPNs, Secure Access Service Edge (SASE), zero trust and software-defined perimeter (SDP).

Top Stories

Feature 02 Apr 2024
SASE vs. SD-WAN: What's the difference?

SASE and SD-WAN are two similar architectures administrators use to provide secure network access, but they differ in terms of deployment, security, connectivity and more. Continue Reading
Tip 21 Mar 2024
10 remote work cybersecurity risks and how to prevent them

Larger attack surfaces, limited oversight of data use and more vulnerable technologies are among the security risks faced in remote work environments. Continue Reading

Tip 21 Mar 2024

How to avoid internet black holes for the network

Black holes in the network disrupt connectivity and compromise data integrity. Network monitoring, team collaboration and routing optimization help minimize the negative effects. Continue Reading
Definition 15 Mar 2024

virus (computer virus)

A computer virus is a type of malware that attaches itself to a program or file. A virus can replicate and spread across an infected system and it often propagates to other systems, much like a biological virus spreads from host to host. Continue Reading
Definition 14 Mar 2024

virus signature (virus definition)

A virus signature, also known as a 'virus definition,' is a piece of code with a unique binary pattern that identifies a computer virus or family of viruses. Continue Reading
Answer 08 Mar 2024

Cloud security vs. network security: What's the difference?

While network security focuses on solely protecting networks, cloud security provides protection for networks, servers, containers, apps and more. Continue Reading
Feature 07 Mar 2024

VPNs persist amid the rise of ZTNA, other VPN alternatives

VPN use continues despite its outdated status in the networking industry. But usage has declined as enterprises make room for remote access alternatives, like ZTNA, SASE and more. Continue Reading
Guest Post 04 Mar 2024

SASE drives network and security team collaboration

Successful SASE implementation requires network and security team collaboration. Research from EMA reveals shared responsibilities and multivendor strategies enhance teamwork. Continue Reading
Answer 28 Feb 2024

Classical internet vs. quantum internet: How do they differ?

The quantum internet is a hypothetical secure network made of qubits. It differs from the classical internet with its use of quantum principles for enhanced security and computing. Continue Reading
Definition 27 Feb 2024

OpenSSL

OpenSSL is an open source cryptographic toolkit that facilitates secure communications between endpoints on a network. Continue Reading
Definition 27 Feb 2024

computer forensics (cyber forensics)

Computer forensics is the application of investigation and analysis techniques to gather and preserve evidence from a particular computing device in a way that is suitable for presentation in a court of law. Continue Reading
Tip 20 Feb 2024

A network compliance checklist for remote work

This network compliance checklist for remote work provides best practices on establishing remote policies and procedures, help desk support and data backup, among other steps. Continue Reading
Definition 20 Feb 2024

Advanced Encryption Standard (AES)

The Advanced Encryption Standard (AES) is a symmetric block cipher chosen by the U.S. government to protect classified information. Continue Reading
Definition 15 Feb 2024

firewall as a service (FWaaS)

Firewall as a service (FWaaS), also known as a cloud firewall, is a service that provides cloud-based network traffic analysis capabilities to customers as part of an overall cybersecurity program. Continue Reading
Definition 09 Feb 2024

cyberterrorism

Cyberterrorism is usually defined as any premeditated, politically motivated attack against information systems, programs, and data that threatens violence or results in violence. Continue Reading
Definition 09 Feb 2024

mobile security (wireless security)

Mobile security, also known as wireless security, refers to the measures taken to protect smartphones, tablets, laptops, smartwatches and other portable computing devices and the networks they connect to, from threats and vulnerabilities associated with wireless computing. Continue Reading
Tip 07 Feb 2024

NetSecOps best practices for network engineers

Network engineers increasingly need to align their duties with security, such as implementing continuous monitoring, deploying threat intelligence and collaborating with security. Continue Reading
Definition 07 Feb 2024

keylogger (keystroke logger or system monitor)

A keylogger, sometimes called a keystroke logger, is a type of surveillance technology used to monitor and record each keystroke on a specific device, such as a computer or smartphone. Continue Reading
Tip 07 Feb 2024

How ZTNA protects against internal network threats

ZTNA has grown in popularity as a method to enable remote access and mitigate security risks, but businesses can also use ZTNA to protect against internal threats inside a network. Continue Reading
Definition 07 Feb 2024

encryption

Encryption is the method by which information is converted into secret code that hides the information's true meaning. Continue Reading
Definition 06 Feb 2024

dictionary attack

A dictionary attack is a method of breaking into a password-protected computer, network or other IT resource by systematically entering every word in a dictionary, or word list, as a password. Continue Reading
Definition 02 Feb 2024

communications security (COMSEC)

Communications security (COMSEC) is the prevention of unauthorized access to telecommunications traffic or to any written information that is transmitted or transferred. Continue Reading
Definition 31 Jan 2024

security operations center (SOC)

A security operations center (SOC) is a command center facility in which a team of information technology (IT) professionals with expertise in information security (infosec) monitors, analyzes and protects an organization from cyberattacks. Continue Reading
Feature 31 Jan 2024

Top 13 ransomware targets in 2024 and beyond

Two in three organizations suffered ransomware attacks in a single year, according to recent research. And, while some sectors bear the brunt, no one is safe. Continue Reading
Definition 29 Jan 2024

indicators of compromise (IOC)

Indicators of compromise are unusual activities on a system or network that imply the presence of a malicious actor. Continue Reading
Tip 29 Jan 2024

How to rank and prioritize security vulnerabilities in 3 steps

Vulnerability management programs gather massive amounts of data on security weaknesses. Security teams should learn how to rank vulnerabilities to quickly fix the biggest issues. Continue Reading
Definition 23 Jan 2024

network slicing

Network slicing is a technique that creates multiple virtual networks on top of a shared physical network to provide greater flexibility in the use and allocation of network resources. Continue Reading
Tip 22 Jan 2024

Incident response automation: What it is and how it works

Many of today's security operations teams are understaffed and overwhelmed. Learn how incident response automation can help them work smarter, instead of harder. Continue Reading
Definition 19 Jan 2024

security incident

A security incident is an event that could indicate that an organization's systems or data have been compromised or that security measures put in place to protect them have failed. Continue Reading
Definition 18 Jan 2024

dark web (darknet)

The dark web is an encrypted portion of the internet not visible to the general public via a traditional search engine such as Google. Continue Reading
Definition 12 Jan 2024

tunneling or port forwarding

Tunneling or port forwarding is the transmission of data intended for use only within a private -- usually corporate -- network through a public network in such a way that the public network's routing nodes are unaware that the transmission is part of a private network. Continue Reading
Opinion 11 Jan 2024

Security implications of HPE's plan to buy Juniper Networks

While networking is the main driver of HPE's plan to acquire Juniper Networks, security is a big part of the strategy as well. Continue Reading
Feature 09 Jan 2024

How to fix the top 5 cybersecurity vulnerabilities

Check out how to fix five top cybersecurity vulnerabilities to prevent data loss from poor endpoint security, ineffective network monitoring, weak authentication and other issues. Continue Reading
Tip 05 Jan 2024

5G security: Everything you should know for a secure network

5G touts better security controls than 4G, including stronger encryption, privacy and authentication. But enterprises need to consider the challenges, too. Continue Reading
Tip 21 Dec 2023

Best practices for secure network automation workflows

It's not enough to build network automation workflows. It's important to secure those workflows, as well. Access control, encryption and collaboration all play important roles. Continue Reading
Tip 11 Dec 2023

What 5G skills are most in demand?

In the evolving 5G job market, service providers, systems integrators and enterprises are looking for applicants who have experience and aspirations in five broad areas. Continue Reading
Definition 05 Dec 2023

offensive security

Offensive security is the practice of actively seeking out vulnerabilities in an organization's cybersecurity. Continue Reading
Opinion 04 Dec 2023

5 network security predictions for 2024

Check out network security trends for 2024 from Enterprise Strategy Group, from SaaS security and rising DDoS attacks to network and endpoint convergence. Continue Reading
Tip 01 Dec 2023

7 key OT security best practices

Keeping operational technology secure requires vigilance and effort, especially as OT increasingly converges with IT. These cybersecurity best practices can help. Continue Reading
Definition 01 Dec 2023

attack surface

An attack surface is the total number of all possible entry points for unauthorized access into any system. Continue Reading
Definition 01 Dec 2023

Address Resolution Protocol (ARP)

Address Resolution Protocol (ARP) is a protocol that maps dynamic IP addresses to permanent physical machine addresses in a local area network (LAN). Continue Reading
Definition 30 Nov 2023

wiretapping

Wiretapping is the surreptitious electronic monitoring and interception of phone-, fax- or internet-based communications. Continue Reading
Definition 28 Nov 2023

timing attack

A timing attack is a type of side-channel attack that exploits the amount of time a computer process runs to gain knowledge about or access a system. Continue Reading
Opinion 22 Nov 2023

Palo Alto Networks SASE Converge updates boost security, UX

With the announcement of its latest SASE portfolio updates and the acquisition of Talon, Palo Alto Networks connects the dots between security and performance. Continue Reading
Tip 13 Nov 2023

What should admins know about Microsoft Entra features?

Microsoft Entra combines new and existing cloud-based products and packages them under a new name. Learn how this change affects identity access management in your organization. Continue Reading
Definition 09 Nov 2023

mandatory access control (MAC)

Mandatory access control (MAC) is a security strategy that restricts the ability individual resource owners have to grant or deny access to resource objects in a file system. Continue Reading
Definition 03 Nov 2023

Common Vulnerabilities and Exposures (CVE)

Common Vulnerabilities and Exposures (CVE) is a publicly listed catalog of known security threats. Continue Reading
Feature 03 Nov 2023

GSK unifies networking and security for cloud migration

Sessions at ONUG Fall 2023 emphasized the value of a unified networking and security approach. GSK integrated the two to begin its digital transformation journey to the cloud. Continue Reading
Definition 01 Nov 2023

authentication

Authentication is the process of determining whether someone or something is who or what they say they are. Continue Reading
Definition 30 Oct 2023

supercookie

A supercookie is a type of tracking cookie inserted into an HTTP header to collect data about a user's internet browsing history and habits. Continue Reading
Answer 20 Oct 2023

What to know about UDP vulnerabilities and security

UDP is a simple protocol, but it has inherent vulnerabilities that make it prone to attacks, such as limited packet verification, IP spoofing and DDoS attacks. Continue Reading
Opinion 19 Oct 2023

Cloud-native firewalls are the next step in network security

The network security challenges associated with cloud provider and virtual firewalls are leading to third parties introducing cloud-native firewalls. Continue Reading
Definition 19 Oct 2023

Structured Threat Information eXpression (STIX)

Structured Threat Information eXpression (STIX) is a standardized Extensible Markup Language (XML) programming language for conveying data about cybersecurity threats in a way that can be easily understood by both humans and security technologies. Continue Reading
Definition 18 Oct 2023

antispoofing

Antispoofing is a technique for identifying and dropping packets that have a false source address. Continue Reading
Definition 17 Oct 2023

Secure Sockets Layer certificate (SSL certificate)

A Secure Sockets Layer certificate (SSL certificate) is a small data file installed on a web server that allows for a secure, encrypted connection between the server and a web browser. Continue Reading
Feature 17 Oct 2023

10 cybersecurity experts to follow on social media

Cybersecurity experts provide valuable insights into the security landscape. Follow this curated list of recognized authorities to stay informed and safeguard your digital assets. Continue Reading
Definition 16 Oct 2023

SEO poisoning (search poisoning)

SEO poisoning, also known as 'search poisoning,' is a type of malicious advertising (malvertising) in which cybercriminals create malicious websites and then use search engine optimization (SEO) techniques to cause the sites' links to show up prominently in search results, often as ads at the top of the results. Continue Reading
Definition 12 Oct 2023

security awareness training

Security awareness training is a strategic approach IT and security professionals take to educate employees and stakeholders on the importance of cybersecurity and data privacy. Continue Reading
Definition 06 Oct 2023

risk-based authentication (RBA)

Risk-based authentication (RBA) is an authentication method in which varying levels of stringency are applied to a system’s authentication process based on the likelihood that access to that system could result in its compromise. Continue Reading
Opinion 02 Oct 2023

Transitioning to single-vendor SASE will take time

New Enterprise Strategy Group research reveals enterprises are interested in single-vendor SASE -- but with multiple tools on hand, the transition will take planning and time. Continue Reading
Definition 02 Oct 2023

multifactor authentication

Multifactor authentication (MFA) is an account login process that requires multiple methods of authentication from independent categories of credentials to verify a user's identity for a login or other transaction. Continue Reading
Definition 29 Sep 2023

cyber insurance

Cyber insurance, also called cyber liability insurance or cybersecurity insurance, is a contract an entity can purchase to help reduce the financial risks associated with doing business online. Continue Reading
Tip 29 Sep 2023

How to use Wireshark to sniff and scan network traffic

Wireshark continues to be a critical tool for security practitioners. Learning how to use it to scan network traffic should be on every security pro's to-do list. Continue Reading
Definition 21 Sep 2023

governance, risk and compliance (GRC)

Governance, risk and compliance (GRC) refers to an organization's strategy for handling the interdependencies among the following three components: corporate governance policies, enterprise risk management programs, and regulatory and company compliance. Continue Reading
Tutorial 05 Sep 2023

Use Angry IP Scanner to audit the network

Angry IP Scanner provides a network scanner alternative to Nmap that is simple, user-friendly and versatile across OSes. Scan types include ping scans, UDP scans and TCP scans. Continue Reading
Definition 23 Aug 2023

network vulnerability scanning

Network vulnerability scanning is the process of inspecting and reporting potential vulnerabilities and security loopholes on a computer, network, web application or other device, including firewalls, switches, routers and wireless access points. Continue Reading
Definition 21 Aug 2023

risk analysis

Risk analysis is the process of identifying and analyzing potential issues that could negatively impact key business initiatives or projects. Continue Reading
News 14 Aug 2023

Cisco acquisitions target mostly ThousandEyes, Cloud Security

Cisco has made nine acquisitions this year, with all but two focused on improving internet monitor ThousandEyes as well as security manager and policy administrator Security Cloud. Continue Reading
Definition 11 Aug 2023

message authentication code (MAC)

A message authentication code (MAC) is a cryptographic checksum applied to a message in network communication to guarantee its integrity and authenticity. Continue Reading
Tip 11 Aug 2023

An introduction to quantum networks and how they work

Quantum networks hold potential for faster and more secure communication. But true quantum networks are still experimental and require more engineering and scientific research. Continue Reading
Tip 09 Aug 2023

Types of Nmap scans and best practices

Nmap scanning helps network teams with network reconnaissance and vulnerability discovery. Common types of scans include TCP SYN, OS detection, vulnerability and version detection. Continue Reading
Definition 07 Aug 2023

IoT security (internet of things security)

IoT security (internet of things security) is the technology segment focused on safeguarding connected devices and networks in IoT. Continue Reading
Definition 03 Aug 2023

policy engine

A policy engine is a software component that allows an organization to create, monitor and enforce rules about how network resources and the organization's data can be accessed. Continue Reading
Definition 01 Aug 2023

Computer Fraud and Abuse Act (CFAA)

The Computer Fraud and Abuse Act (CFAA) of 1986 is United States legislation that imposes criminal penalties on individuals who intentionally access a protected computer without proper authorization or whose access exceeds their authorization. Continue Reading
Tip 01 Aug 2023

Top 5 benefits of SASE to enhance network security

A cloud-based distributed architecture, centralized management and endpoint-specific security policies are just some of the benefits of Secure Access Service Edge. Continue Reading
Definition 31 Jul 2023

Common Access Card (CAC)

A Common Access Card (CAC) is a smart card issued by the Unites States Department of Defense for accessing DOD systems and facilities. Continue Reading
Feature 18 Jul 2023

Ransomware case study: Recovery can be painful

In ransomware attacks, backups can save the day and the data. Even so, recovery can still be expensive and painful, depending on the approach. Learn more in this case study. Continue Reading
Definition 18 Jul 2023

cyber extortion

Cyber extortion is a crime involving an attack or threat of an attack coupled with a demand for money or some other response in return for stopping or remediating the attack. Continue Reading
Tip 10 Jul 2023

What are the elements of modern network security architecture?

Modern network security is a mix of several elements, including secure access service edge, virtualization technologies, segmentation and zero-trust models. Continue Reading
Feature 10 Jul 2023

Wi-Fi AP placement best practices and security policies

From a security standpoint, Wi-Fi network designers should consider the physical and logical placement of APs, as well as management, segmentation and rogue devices. Continue Reading
Definition 07 Jul 2023

network intrusion protection system (NIPS)

A network intrusion protection system (NIPS) is an umbrella term for a combination of hardware and software systems that protect computer networks from unauthorized access and malicious activity. Continue Reading
Definition 21 Jun 2023

Nessus

Nessus is a platform developed by Tenable that scans for security vulnerabilities in devices, applications, operating systems, cloud services and other network resources. Continue Reading
Opinion 14 Jun 2023

Cisco releases new security offerings at Cisco Live 2023

At Cisco Live 2023, Cisco emphasized its plans to emphasize security, rolling out a host of new initiatives from secure access to AI-aided security to cloud-native app security. Continue Reading
Conference Coverage 14 Jun 2023

Cisco Live 2023 conference coverage and analysis

Use this guide to Cisco Live 2023 -- a five-day in-person and online conference -- to learn about networking trends, including news from keynote speeches and education sessions. Continue Reading
Feature 31 May 2023

An overview of 802.1X authentication methods and EAP

Enterprises use 802.1X authentication to manage their wireless LANs, and that process relies on the Extensible Authentication Protocol and its various types. Continue Reading
Definition 30 May 2023

eavesdropping

Eavesdropping is the act of listening to, recording or intercepting private communications. Continue Reading
Definition 16 May 2023

geo-blocking

Geo-blocking is blocking something based on its location. Continue Reading
Definition 09 May 2023

application blacklisting (application blocklisting)

Application blacklisting --increasingly called application blocklisting -- is a network or computer administration practice used to prevent the execution of undesirable software programs. Continue Reading
Tip 04 May 2023

Review the components of VMware SASE Platform

VMware SASE Platform provides many strong networking and security capabilities, but it comes in an offering that feels like many individual products packaged together. Continue Reading
Definition 01 May 2023

Web application firewall (WAF)

A web application firewall (WAF) is a firewall that monitors, filters and blocks Hypertext Transfer Protocol (HTTP) traffic as it travels to and from a website or web application. Continue Reading
Tip 28 Apr 2023

The pros and cons of VPNs for enterprises

VPNs use different protocols and encryption to protect data and prevent unauthorized users from accessing company resources. But those protocols come with their own benefits and challenges. Continue Reading
Tip 19 Apr 2023

Generative AI in SecOps and how to prepare

Generative AI assistants could be game changers in the SOC -- but not if SecOps teams haven't prepared for them. Here's how to get ready. Continue Reading
Definition 18 Apr 2023

nslookup

Nslookup is the name of a program that lets users enter a host name and find out the corresponding IP address or domain name system (DNS) record. Continue Reading
Feature 18 Apr 2023

11 computer networking conferences in 2023

Conferences are the best place to learn about the cutting edge and networks with other professionals. Continue Reading
Tip 17 Apr 2023

How to build a cybersecurity deception program

In 'The Art of War,' Sun Tzu declared, 'All warfare is based on deception.' Learn how to apply this principle in the enterprise by building a cybersecurity deception program. Continue Reading
News 12 Apr 2023

Cisco provides extra-secure Webex for U.S. government

Cisco will provide a higher-security cloud-based unified communications platform for U.S. national security and defense personnel to monitor classified data, starting in 2024. Continue Reading
Tip 11 Apr 2023

SD-WAN vs. VPN: How do they compare?

When comparing SD-WAN and VPN, enterprises choosing between the two technologies should consider factors like cost, management and routing intelligence. Continue Reading
Tip 07 Apr 2023

5 ChatGPT security risks in the enterprise

Whether in the hands of cybercriminals or oblivious end users, ChatGPT introduces new security risks. Continue Reading
Definition 06 Apr 2023

war driving (access point mapping)

War driving, also called access point mapping, is the act of locating and possibly exploiting connections to wireless local area networks (WLANs) while driving around a city or elsewhere. Continue Reading
Definition 24 Mar 2023

vishing (voice or VoIP phishing)

Vishing (voice or VoIP phishing) is a type of cyber attack that uses voice and telephony technologies to trick targeted individuals into revealing sensitive data to unauthorized entities. Continue Reading
Tip 22 Mar 2023

How network perimeters secure enterprise networks

Network perimeters serve as essential network security to block unwanted traffic. Find out how they differ from the network edge and how they help secure enterprise networks. Continue Reading
Tip 21 Mar 2023

4 ChatGPT cybersecurity benefits for the enterprise

As OpenAI technology matures, ChatGPT could help close cybersecurity's talent gap and alleviate its rampant burnout problem. Learn about these and other potential benefits. Continue Reading

1
2
3
4
5
6

Unified Communications

Recapping Enterprise Connect 2024
Enterprise Strategy Group analysts recap the top trends at Enterprise Connect 2024, including generative AI for UC and CX, the ...
AI communications features key when assessing UC vendors
UC vendors are adding more AI capabilities with each software release. What's the best way to ensure vendors' capabilities align ...
Microsoft unbundles Teams, but change won't affect market
Microsoft's decision to separate out Teams from its Office 365 and Microsoft 365 products might satisfy regulators, but won't ...

Mobile Computing

The ultimate guide to mobile device security in the workplace
Mobile devices provide connectivity for employees to access business data and communicate with colleagues, but these unique ...
Top 4 mobile security threats and challenges for businesses
Mobile devices are a target for hackers, with several ways to steal data. These threats -- from network spoofing to phishing ...
What BYOD trends will take hold in the business world?
As employees and organizations come to expect greater mobility, BYOD is an important consideration in the successful planning and...

Nvidia GTC 24: Are you ready for the future of AI?
The 2024 Nvidia GTC conference focused on the company's new Blackwell GPU Platform. With advancements in AI taking off, companies...
Nvidia partners, customers drive AI into data centers
Nvidia and its partners are providing the tools and infrastructure to build and deploy AI applications that companies say could ...
How to understand advancements in modern data centers
Data center advancements are rapidly occurring with storage demand. Some advancements, like an increase in temperatures, are ...

Ukraine IT services firms target new markets as exports drop
Ukrainian IT services firms are eyeing new geographic markets and exploring digital transformation as the war and a difficult ...
AWS partner competency asks for GenAI tech, business skills
The cloud provider's generative AI certification takes months to complete, involves numerous technical and operational demands, ...
Digital transformation spending rides on CX, AI
Spending on digital transformation could get an increase this year from businesses seeking to improve customer experience and ...

Close