Lessons from the Medibank breach
Ming Fu, a member of the Americas Pre-Sales Engineering Team at QOMPLX, looks at the much publicized Medibank breach in Australia last year, and draws a few much needed lessons based on the published findings of this breach.
Attack surface risk signals: IP reputation
IP reputation should be tracked consistently. Connections to known malicious infrastructure on the Internet is a clear indicator of risk.
Attack surface risk signals: DMARC and SPF records
DMARC and SPF records are a key to protecting domain integrity and preventing phishing attacks and spam campaigns from leveraging your good name.
Attack surface risk signals: TLS/SSL configuration
TLS (Transport Layer Security)/SSL (Secure Sockets Layer) certificates play a critical role in securing enterprise communications. They are frequently targeted by sophisticated adversaries.
Attack surface risk signals: DNS records
The Domain Name System (DNS) is a foundational technology of the modern Internet and World Wide Web. DNS monitoring is critical for the security of your organization and external users.