Blog - page 6

PCI-DSS Compliance 3.2 Updates

Whether you swipe it, chip it, tap it, or phone it in, if you are involved in capturing payments from a credit card, you are most likely required to comply with Payment Card Industry Data Security Standard (PCI-DSS) requirements. PCI-DSS is in a transitional phase in which version 3.1 is the accepted standard, with all participants moving to the 3.2 standards by January 2018. Although 3.2 is only a minor number change, there are numerous differences between the new version of PCI-DSS and the old one.

Read More

Reactions to Trump's Executive Order on Cybersecurity

Recently, President Trump signed an Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure. The order, originally designated to be signed shortly after his inauguration in January, was signed on May 11, 2017. I had the opportunity to sit down with James Carder and Dan Wilbricht to get their thoughts on what this order may mean for the cybersecurity space.

Read More

SANS Institute Validates LogRhythm’s Ability to Scale Above 300K MPS

We are very proud that the SANS Institute has validated our ability to deliver a solution that ingests high volumes of data, performs rapid data processing and machine analytics, and allows concurrent search, dashboarding, and report generation across a full data set. Find out what happened when SANS put the LogRhythm platform to the test.

Read More

Ready to Rule Your Network?

We're announcing a new NetMon Freemium contest, backed by cash prizes! Create a solution based on DPA rules, query rules, or dashboards and enter it to win.

Read More

A Technical Analysis of WannaCry Ransomware

Ransomware that has been publicly named "WannaCry," “WCry” or "WanaCrypt0r" (based on strings in the binary and encrypted files) has spread to at least 74 countries as of Friday 12 May 2017. This blog addresses the technical analysis of the ransomware, mitigation, LogRhythm signatures, Network Monitor query rules, and indicators of compromise.

Read More

WannaCry Ransomware

On the afternoon of Friday, May 12, 2017, what we refer to as version 2 of WannaCry ransomware started to infect systems of a private Spanish telecommunications company. This blog covers the ransomware background, a high-level technical overview, the kill switch, and advice for defending against WannaCry.

Read More