Network World

Cisco issues firewall, SD-WAN security warnings

Network World - Wed, 01/22/2020 - 5:54pm

Amongst Cisco’s dump of 27 security advisories today only one was rated as critical – a vulnerability in its Firepower firewall system that could let an attacker bypass authentication and execute arbitrary actions with administrative privileges on a particular device.

The Firepower Management Center (FMC) vulnerability – which was rated at 9.8 out of 10 – comes from improper handling of Lightweight Directory Access Protocol (LDAP) authentication responses from an external authentication server. With it, an attacker could exploit the vulnerability by sending crafted HTTP requests to an affected device and gain administrative access to its web-based management interface.

To read this article in full, please click here

Categories: Network World

How to prep for Windows 7, Server 2008 end of life

Network World - Wed, 01/22/2020 - 6:00am
Still running Windows 7 or Windows Server 2008? Take these steps to minimize your risk.
Categories: Network World

Windows Server vulnerability disclosed by NSA; Don’t wait to patch

Network World - Mon, 01/20/2020 - 12:00am

Microsoft’s monthly Patch Tuesday included a hefty haul of fixes: 49 total, and one of them is more than just critical. For enterprises running Windows Server 2016 and Server 2019, it's vital you implement the patch ASAP.

The National Security Agency (NSA) disclosed the Windows vulnerability on Tuesday, the same day the fix was issued. That means the NSA found the flaw likely months ago but held off on public notification until Microsoft could come up with a fix. It would be irresponsible for the NSA, or anyone else, to announce a vulnerability and not give the software maker time to patch it.

The vulnerability was spotted in "crypt32.dll," a Windows module that has been in both desktop and server versions since NT 4.0 more than 20 years ago. Microsoft describes the library as handling certificate and cryptographic messaging functions in the CryptoAPI.

To read this article in full, please click here

Categories: Network World

Why multicloud security is your next big challenge

Network World - Thu, 01/16/2020 - 10:50am
Companies deploy an average of three to five different cloud services. With an increased emphasis on security and regulatory compliance, the capability to manage these disparate systems is crucial.
Categories: Network World

Review: SaltStack brings SecOps to network orchestration and automation

Network World - Wed, 01/15/2020 - 6:00am
SaltStack Enterprise, and its optional SecOps modules, is one of the only platforms available today that can fully manage complex enterprise environments while also protecting them.
Categories: Network World

3 easy ways to make your Windows network harder to hack

Network World - Wed, 01/15/2020 - 6:00am
Start the new year off by eliminating common paths for attackers to breach your network.
Categories: Network World

How to deal with the impact of digital transformation on networks

Network World - Mon, 01/13/2020 - 6:00am

Digital transformation has increased the importance of the network, particularly the edge, where customers, employees, cloud applications and IoT devices connect to the enterprise. The legacy static and non-differentiated network edge of years past is no longer sufficient for many reasons, so as companies embark on digital-transformation plans, their networks must evolve.

Networking pros should be looking at, among other things, improving security and embracing software-defined networking (SDN) that supports propagating changes quickly across the network in order to accommodate the many challenges digital transformation creates.

To read this article in full, please click here

Categories: Network World

How to fix insecure LDAP binds

Network World - Wed, 01/08/2020 - 6:00am
Prevent Windows admin credentials from being exposed in cleartext with this tip.
Categories: Network World

Cisco issues critical security warnings its Data Center Network Manager

Network World - Fri, 01/03/2020 - 8:23am

Cisco this week issued software to address multiple critical authentication exposures in its Data Center Network Manager (DCNM) software for its Nexus data center switches.

DCNM is a central management dashboard for data-center fabrics based on Cisco Nexus switches and handles a number of core duties such as automation, configuration control, flow policy management and real-time health details for fabric, devices, and network topology.

To read this article in full, please click here

Categories: Network World

How to get maximum protection from MFA in Office 365

Network World - Thu, 01/02/2020 - 10:02am
Follow these steps to ensure your multi-factor authentication for Office 365 is effective.
Categories: Network World

Most popular tech stories of 2019

Network World - Mon, 12/30/2019 - 2:51pm
Insider Pro subscribers pick the Top 10 articles published in our debut year.
Categories: Network World