Lancope Blog

What distributed denial of service (DDoS) is and how NetFlow can give situational awareness when it happens to your network.

NetFlow when effectively stored makes a great basis for analyzing indicators of compromise (IOC) like those provided in Mandiant's APT1 report.

The systematic problems the Mandiant APT1 report revealed in enterprise surveillance efforts.

How the importance of physical surveillance throughout human history teaches us why we are failing at network security and how we can fix it.

What SQL Injection is and how intelligent monitoring of NetFlow can detect and deter it.

Using NetFlow to determine if network resources are being sold on the black market.

We are taking a retarded amount of time to discover unknown (zero day) threats and how we can reduce that window.

The last installment explains the importance of knowing what to do when a breach is detected.

InfoSec attackers are not created equal. They range from punk kids to nation states. It's important to know who is coming after your protected assets.