Active breach detection is the only way to protect your network beyond the firewall.

Paul Kraus

Subscribe to Paul Kraus: eMailAlertsEmail Alerts
Get Paul Kraus: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories by Paul Kraus

This week we came across an interesting phishing campaign. Users receive a file named "paymentxxx.pdf." The file is a recently created PDF v1.5 made with Microsoft Word 2007, which can be opened by any PDF reader-Adobe or any other. The PDF is a single-page document and contains a hyperlink (http://rogerrodd.com/BJ/payment.htm). The design of the PDF employs trust-generating mechanisms commonly used in phishing schemes, including a bold header stating, "PDF Is Secured," and an image of a lock and tick mark with "100% SECURE" written across it. The creator also tries to generate trust by providing a benign-looking link to view the "Quotation Order" online, a method considered safe by many of us. The problem starts when a user clicks the link. The PDF has embedded code to find and open the user's default browser (on a typical installation of Windows in an enterprise ... (more)

Interview with Paul Kraus, President and CEO, Eastwind Breach Detection

Paul has more than 25 years of experience in security, including VP Engineering at Blue Coat Systems and Solera Networks, and Director of Engineering roles at Adobe, VERITAS and Symantec. In his current role as president and CEO for Eastwind, Paul is helping define and execute the company's mission of providing enterprise-grade network security to SMBs. Eastwind Breach Detection is a cloud-based breach detection solution that aims to protect government agencies and enterprise organizations from cyber threats that bypass traditional security measures. Eastwind Breach Detection m... (more)

IdeaMensch Interview: Paul Kraus – President and CEO

Paul Kraus has more than 25 years of experience in security, including VP Engineering at Blue Coat Systems and Solera Networks, and Director of Engineering roles at Adobe, VERITAS and Symantec. In his current role as president and CEO for Eastwind, Paul is helping define and execute the company's mission of providing enterprise-grade network security to SMBs. Eastwind Breach Detection is a cloud-based breach detection solution that aims to protect government agencies and enterprise organizations from cyber threats that bypass traditional security measures. Eastwind Breach Detecti... (more)

Five Online Technologies That Seem Secure – But Aren’t

In the security game, user complacency can be dangerous. Especially when it comes to trusting our internet connection. This article highlights five online technologies that seem secure, but aren't while explaining why. Trust. We do it all the time. We trust people not to run red lights, and we trust that our internet connection will be operational enough to stream the latest Netflix series. As ongoing IRS breaches and banking breaches prove, however, not everything that is supposed to be safe actually lives up to that promise. A lot of people work hard to keep the Internet secure... (more)

Be on alert – Agrotourismo WordPress DDOS could impact you!

. The attack targets a specific WordPress theme-agritourismo-theme, and is malicious enough to cause failures. Web servers are seeing requests for files under the agritourismo theme even if that theme is not installed. You may see entries in your http logs similar to the following: - - [14/Mar/2016:07:52:50 +0000] "GET /wp-content/themes/agritourismo-theme/functions/plugins/socks4/plugins/fg/link.php HTTP/1.1" 404 29117 - - [14/Mar/2016:07:53:05 +0000] "GET /wp-content/themes/agritourismo-theme/functions/plugins/socks4/plugins/index.php HTTP/1.1" 301 - - - [14/Mar/2016:07:53:0... (more)