Security @ Cisco Blogs

Security

OpenSSL Heartbleed vulnerability CVE-2014-0160 – Cisco products and mitigations

*** UPDATED 15-April 2014 *** By now, almost everyone has heard of the OpenSSL Heartbleed vulnerability with CVE id CVE-2014-0160. The vulnerability has to do with the implementation of the TLS heartbeat extension (RFC6520) and could allow secret key

April 9, 2014 • 2 min read

Evelyn de Souza

Drivers for Managed Security and what to look for in a Cloud Provider [Summary]

The first blog of this series discussing the role of data security in the cloud can be found here. In 2014 and onward, security professionals can expect to see entire corporate perimeters extended to the cloud, making it essential to choose a service

April 8, 2014 • 1 min read

Jason Brvenik

NSS Labs Breach Detection Systems Testing Demonstrates Why Threat Protection Must be Continuous

Follow @vrybdpkt Long before becoming a part of Cisco, the Sourcefire team was aggressively addressing the advanced malware challenges our customers face daily. We believe that the most effective way to address these challenges is a continuous

April 2, 2014 • 2 min read

Kathy Trahan

The Security Imperative As Mobility Evolves

Editor’s Note: This post is a response to EN Mobility Workspace. Please see that post for full context. A colleague of mine here at Cisco, Jonathan, recently spoke well to the Evolution of Cisco Mobility Workspace Journey. Like all technologies

April 1, 2014 • 2 min read

Paul Eckstein

Cisco Security Response Team Opens Its Toolbox

Cisco’s network is a massively complex environment that requires extensive monitoring and remediation. In today’s world of advanced threats and attacks, the company that possesses and positions its tools to preemptively identify and

March 27, 2014 • 1 min read

Erin Float

A Bundle is Born

https://www.youtube.com/watch?v=qjFUgZ32ZpU Today, we released the first Cisco IOS Software Security Advisory Bundled Publication of 2014. Six years ago, Cisco committed to disclosing IOS vulnerabilities on a predictable schedule (on the fourth

March 26, 2014 • 1 min read

Mary Landesman

February 2014 Threat Metrics

Web surfers in February 2014 experienced a median malware encounter rate of 1:341 requests, compared to a January 2014 median encounter rate of 1:375. This represents a 10% increase in risk of encountering web-delivered malware during the second month

March 21, 2014 • 2 min read

Martin Lee

Coordinated Website Compromise Campaigns Continue to Plague Internet

This post is co-authored with Levi Gundert and Andrew Tsonchev. Update 2014-03-21: For clarity, the old kernel is a common indicator on the compromised hosts. We are still investigating the vulnerability, and do not yet know what the initial vector

March 20, 2014 • 3 min read

Levi Gundert

Understanding Security Through Probability

This post was also authored by Min-yi Shen and Martin Lee. Security is all about probability. There is a certain probability that something bad will happen to your networks or your systems over the next 24 hours. Hoping that nothing bad will happen is

March 20, 2014 • 3 min read

Cisco Blogs

Security

Our Favorite Topics:

Security

OpenSSL Heartbleed vulnerability CVE-2014-0160 – Cisco products and mitigations

Drivers for Managed Security and what to look for in a Cloud Provider [Summary]

NSS Labs Breach Detection Systems Testing Demonstrates Why Threat Protection Must be Continuous

The Security Imperative As Mobility Evolves

Cisco Security Response Team Opens Its Toolbox

A Bundle is Born

February 2014 Threat Metrics

Coordinated Website Compromise Campaigns Continue to Plague Internet

Understanding Security Through Probability

Cisco Cybersecurity Viewpoints

Why Cisco Security?