How to Detect MAC Address Spoofing and Stop Rogue Devices
Learn how attackers use MAC address spoofing to evade security controls and discover proven methods to detect and block rogue devices.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Forward Networks Appoints Sanjay Mehta as CMO to Drive Global Adoption of Its Industry-First Network Digital Twin
Seasoned enterprise marketing leader to accelerate global awareness and adoption of Forward Networks' pioneering digital twin technology as enterprises face AI-driven infrastructure pressures.
Web Application Firewalls (WAFs): A false sense of security?
Web application firewalls (WAF) is a protection mechanism to help block potential malicious requests before they can reach the application itself. Often this is implemented as a proxy, intercepting HTTP requests, analyzing them, and finally deciding on an action. While effective, over relying on it could lead to a false sense of security that allows attackers to exploit unresolved internal issues.
Security and Networking Reimagined
We reimagined security and networking so organizations can reject trade-offs between risk and performance. Experience modern security and networking without trade-offs.
Create a Reusable Function to Validate Configuration Settings Across Device Types
In a typical enterprise environment, NTP server configurations may differ not just between vendors, but even across OS variants within the same vendor. Ensuring that these configurations are correct and standardized is critical for time synchronization, which underpins security, logging, and automation.
Unmanaged Doesn't Have to Mean Unprotected
Today’s enterprises are more fluid than ever. Employees work from personal devices, contractors join from unmanaged devices, and IT teams are expected to secure it all—without adding complexity or degrading performance. But most secure access tools were never built for this reality. The Cato Browser Extension offers a better way forward. It brings zero-trust access to unmanaged devices, BYOD, or third-party systems without installing endpoint software.
Tackling the Modern WAF Challenge: Why Managed WAAP Is the Key to Effective Application Security
Organizations today face a continuous struggle to secure their web applications against threats that constantly evolve in the fast-paced digital landscape. The Web Application Firewall (WAF) serves as a primary line of defense against these threats; however, its management challenges often outweigh its security benefits, resulting in organizations not realizing the full value of their security investment.
Detecting EDR Evasion with Corelight Open NDR
This video walks through how Corelight Open NDR helps security teams detect EDR evasion by delivering complete visibility across all network assets. Using a real-world scenario, the video demonstrates how anomaly detection uncovers suspicious activity, mapping events directly to MITRE ATT&CK techniques. The investigation process highlights the detection of an anomalous user agent, which ultimately reveals a Linux privilege escalation toolkit.
Black Hat USA 2025: A grab bag and a half
I’ve been to several Black Hat conferences (seven in the last two and a half years, alone) to be a threat hunter in the Network Operations Center (NOC), so I didn’t expect to be surprised by much at this year’s Black Hat USA.
Hunting GTPDOOR: The case of the "Black Hat Positive"
Ben Reardon, Lead Researcher Corelight Labs / NOC crew I'm a researcher on the Labs team at Corelight and, for me, working in the Black Hat Network Operations Center (NOC) at the USA show in Las Vegas is up there as one of the most interesting and intense activities on the calendar.