Blumira’s SIEM Detection Rules Explained
A security information and event management (SIEM) platform detects and alerts on malicious behavior in an environment to protect from threats such as ransomware and breaches. S...
Read MoreHow To Detect AS-REP Roasting With Blumira
During a recent proof of concept with a new customer, there was an interesting back and forth between our Blumira team and the customer testing our detections in a pentesting lab e...
Read MoreWhat To Log In A SIEM
A poorly configured SIEM can result in an overwhelming amount of useless alerts — or worse, a lack of alerts for real security incidents. Neither option is ideal. Many new B...
Read MoreBest Practices For Configuring Firewall Rules
A firewall won’t secure your environment like it should if you don’t properly configure its ports and policies. But which ports should you block? It’s a question that every s...
Read MoreHow To Set Up and Configure LAPS
LAPS (Local Administrator Password Solution) is a free and helpful tool that Microsoft recommends for local administrator password management. Below you will find a step-by-st...
Read MoreA Guide To Cybersecurity Deception Techniques
Using “low-hanging fruit” cybersecurity deception techniques to entice an attacker that has already infiltrated an environment will offer even more opportunities for early dete...
Read More