May 18 2012
The Missing Manual: CVRF 1.1 Part 2 of 2
Now it’s time for some XML! Let’s take what you’ve learned and manually convert the Cisco RVS4000 and WRVS4400N Web Management Interface Vulnerabilities security advisory into a CVRF document. Please note that this process is meant to be instructive an…
May 16 2012
The Missing Manual: CVRF 1.1 Part 1 of 2
In this post you will learn about some of the design decisions behind the 1.1 release of the Common Vulnerability Reporting Framework (CVRF). Particular attention is paid to explaining some of the required elements and the Product Tree. After those tas…
May 16 2012
Cisco Study: IT Saying Yes To BYOD
May 15 2012
Should IT Fear Mother’s Day?
This past weekend was Mother’s Day here in the United States, and being a mother of two high-tech savvy teenage [...]
May 09 2012
Who are these Cisco Security Intelligence Engineers?
This article provides personal insight into a specialized role residing within Cisco’s Applied Intelligence team, a team which was highlighted in the Network World feature article (page 3), “Inside Cisco Security Intelligence Operations.” The role …
May 07 2012
CSIRT Monitoring for Cisco House at the London 2012 Olympic Games
As part of CSIRT’s mobile monitoring offering for special events, we undertook monitoring of the corporate and customer traffic of [...]
April 25 2012
Have You Hacked Yourself Lately?
This post stresses the need for organization to periodically and frequently perform testing of incident response policies, procedures, and plans prior to the “real thing” occurring on their networks.
April 19 2012
Anatomy of a Data Breach: Part II
Even as the latest breach headline fades away, we all know there is another waiting in the wings. How can organizations protect themselves? There is no panacea for securing a payment environment, and implementing advanced technology alone will not make…
April 16 2012
What is it Like to be a Cisco Security Analyst?
Security events, such as vulnerabilities and threats, that are detected globally continue to grow and evolve in scale, impact, diversity, and complexity. Compounded with this is the other side of the coin, the unreported or undetected events awaiting i…