Search
Close this search box.

In the Boxing Ring 2024

Global security issues and technical news from Network Box CTO, Mark Webb-Johnson.

NBSIEM+ in Network Box 8

September 2024

This month, we are talking about NBSIEM+ in Network Box 8, our cloud-based web portal and mobile application for unified access to all our services. At Network Box, we aim to unify all reporting and user/administrative interfaces into NBSIEM+. Implementing this allows for a seamless overview, administration, and management of Network Box services no matter how they are delivered. This integration forms a fundamental component of the Network Box 8 solution. On pages 2 to 3, we discuss this in greater detail and some of the key parts for the future of NBSIEM+.

On page 4, we highlight the enhancements and fixes for Network Box 5 and our cloud services that will be released in this month’s Patch Tuesday.

In other news, Network Box Hong Kong participated in a cybersecurity event organized in partnership with the Hong Kong Productivity Council and The Hong Kong Chamber of Small and Medium Business. And in this month’s Technology Focus, we highlight the Network Box Cloud IP Reputation and Cloud Domain Reputation services.

NBRS-8 CrowdStrike Friday Incident

August 2024

This month, in the first of a series of articles covering the four key components that will form Network Box’s approach to security for the rest of 2024 and beyond, we present the latest major version of our base platform operating system, NBRS-8. On pages 2 to 3, we outline some of the platform’s key features.

Also this month, Network Box Red Team Managing Consultant – Richard Stagg, shares his view on the recent CrowdStrike incident, which affected innumerable systems worldwide.

On page 7, we highlight the enhancements and fixes for Network Box 5 and our cloud services that will be released in this quarter’s Patch Tuesday.

In other news, Network Box Hong Kong was at the Business GoVirtual Expo & Conference, which took place at the HK Convention and Exhibition Centre. During the event, Network Box was presented with a Business GoVirtual Tech Award. Also at the event, Network Box Managing Director Michael Gazeley participated in a cybersecurity panel discussion. Finally, Network Box was interviewed by CDO Trends to share our insights about the CrowdStrike issue.

Network Box Engines, Signatures, and Policies

July 2024

This month, we are talking about Network Box Engines, Signatures, and Policies. Network Box has always had one primary goal for our security services: nothing malicious can be allowed to get through. On pages 2 to 3, we discuss how we meet that goal.

Please note that this will be the last of these general articles for this year. Starting next month, we will present the four key components that will form Network Box’s approach to security for the rest of 2024 and beyond: NBRS-8, Endpoint Protection, NBSIEM+ Enhancements, and Unified Cloud Management.

In other news, Network Box is proud to announce that the company won the EXCELLENCE AWARD in Tech Company of the Year — Innovation Technology Application, presented by Business GoVirtual. And in this month’s Technology Focus, we are spotlighting Network Box Red Team Services. Did you know Network Box offers Penetration Testing and Vulnerability Assessment services to help you with Risk Assessment, Audit, or Compliance Requirements?

SSL/TLS Inspection

June 2024

This month, we are talking about SSL/TLS Inspection. It is estimated that 85% of traffic on the Internet is encrypted (with a large portion of that SSL/TLS encrypted), and approximately 70% of malware campaigns use some form of encryption. However, if you do not decrypt all that traffic for inspection and policy enforcement, it may pose a considerable security risk. To address this issue, Network Box provides various levels of inspection and policy enforcement for SSL/TLS traffic. On pages 2 to 3, we discuss these in greater detail.

In other news, Network Box is proud to announce that the company has won three Cybersecurity Excellence Awards from Cybersecurity Insiders. Additionally, Network Box Hong Kong held a cybersecurity seminar in partnership with FUJIFILM Business Innovation HK. And in this month’s Technology Focus, we are spotlighting Network Box SOC Services. Did you know that when you subscribe to Network Box, you get SOC services at no extra cost?

Generative AI in Cybersecurity: Balancing Risks and Rewards

May 2024

In this edition, we are talking about Generative AI in Cybersecurity: Balancing Risks and Rewards. Artificial intelligence (AI) has revolutionized various domains, and cybersecurity is no exception. Generative AI, a subset of AI that focuses on creating new content, presents both significant opportunities and challenges for securing our digital world. On pages 2 to 3, we discuss the potential dangers and benefits of generative AI in cybersecurity.

In other news, Network Box Hong Kong was at InnoEx 2024 to exhibit our award-winning security technologies and managed services. Additionally, Network Box Hong Kong welcomed the Office of the Government Chief Information Officer (OGCIO) to discuss how Hong Kong could enhance its cybersecurity in the face of ever-evolving cyber threats. And in this month’s Technology Focus, we are spotlighting NBSIEM+. Did you know Network Box offers existing customers FREE 90 days of storage of non-audit event logs with NBSIEM+?

CVE-2024-3094: Planting a trojan horse in a library to go after a bigger target

April 2024

This month, we are talking about CVE-2024-3094, which has the open source community and news wires buzzing. RedHat has classified the flaw as 10.0 (most critical). If successful, it would allow a trojan horse to be planted in a library to go after a bigger target. So what exactly is the problem, and what is its impact on the open source community? On pages 2 to 3, we break it down and discuss in greater detail.

In other news, Network Box Singapore won the Best Value Cyber Security Solutions Company award at the APAC Business Client Service Excellence Award 2024. Additionally, Network Box Hong Kong assisted the Police Force in performing Red Teaming on the Police’s Scameter+ App. And in this month’s Technology Focus, we are spotlighting the Network Box Mobile SIEM+ App. Available for both Apple iOS and Android-based mobile devices, the App provides secure access to administer Network Box managed services.

Seeing Red… Network Box Red Team Services

March 2024

This month, Network Box Red Team’s Managing Consultant, Richard Stagg, introduces Network Box Red Team Services. Businesses understand the need for “defensive security” very well. They will spend wisely on firewalls, endpoint protection, SIEM, MDM, and whatever else they need to deter attacks, detect breaches, respond and recover. However, it is far less common for an organization to actively hunt for weaknesses that a skilled threat actor could exploit. This is why Network Box is now offering “offensive security” services. On pages 2 to 3, we discuss this in greater detail.

In other news, Network Box Germany has been awarded the TeleTrusT – IT Security made in Germany trust seal. Additionally, Network Box’s ISO/IEC 27001 certification has been audited and upgraded to the latest standard. And finally, starting this month, Network Box is introducing a new feature titled Technology Focus. This monthly feature will highlight a different aspect of Network Box services. For this month, we will be turning the spotlight on External View Security Scans.

Ransomware Delivery Protocol (RDP) and others

February 2024

This month, we are talking about Ransomware Delivery Protocol (RDP) and others. Whilst this is a play on words for Remote Desktop Protocol, the security risks that it represents cannot be overlooked. Among every ransomware case that Network Box has been called in to assist with over the past five years, RDP has been the #1 mechanism for network infiltration and eventual ransomware delivery. Whilst being the worst offender, RDP is far from the only problematic such service. On pages 2 to 3, we discuss this in greater detail and provide a few best practices to alleviate these threats.

In other news, Network Box’s Managing Director, Michael Gazeley, participated in a cybersecurity panel discussion titled, Building Network Security Barriers Together – Creating a New Chapter for Smart Cities. Additionally, as a special end-of-year summary, Network Box has compiled all the key events of the last year in the 2023 edition of Year in Focus. And in this month’s Global Security Headlines, there were security issues with Cisco, TeamViewer, Ivanti, and Cloudflare.

Ransomware Delivery Protocol (RDP) and others

January 2024

This month, we are talking about Ransomware Delivery Protocol (RDP) and others. Whilst this is a play on words for Remote Desktop Protocol, the security risks that it represents cannot be overlooked. Among every ransomware case that Network Box has been called in to assist with over the past five years, RDP has been the #1 mechanism for network infiltration and eventual ransomware delivery. Whilst being the worst offender, RDP is far from the only problematic such service. On pages 2 to 3, we discuss this in greater detail and provide a few best practices to alleviate these threats.

In other news, Network Box’s Managing Director, Michael Gazeley, participated in a cybersecurity panel discussion titled, Building Network Security Barriers Together – Creating a New Chapter for Smart Cities. Additionally, as a special end-of-year summary, Network Box has compiled all the key events of the last year in the 2023 edition of Year in Focus. And in this month’s Global Security Headlines, there were security issues with Cisco, TeamViewer, Ivanti, and Cloudflare.

Thank You!

One of our experts will be in touch soon!