Castra Information Security Blog

There is often a lingering and general confusion over the acronyms IDS and IPS, and how they are like or unlike UTM software modules. E...

Blog

May 1, 2018

Set it and forget it fail

You’ve set up your SIEM, you have logs flowing and a report or three. You are done, right? You don’t need to look at it every day, righ...

Blog

March 31, 2018

Default Credentials?

The use of default credentials by vendors is an outdated, dangerous throwback to 20th century practices that has no business being used...

Blog

January 8, 2018

Shadyware ... Malware or Legit Software

What's the difference between malware and legitimate software? Just as malware is often purported to be legitimate software, legitimate...

Blog

December 5, 2017

Adblocking

Adblocking is becoming a more and more contentious topic in recent days. Publications, understandably, do not want people to block ads ...

Blog

October 12, 2017

Egress Filtering

You are probably already aware that filtering inbound traffic at the firewall is an essential part of network security - but what you m...

Blog

September 1, 2017

<button class="c-button c-button--icon"> <svg class="c-button__icon c-icon c-icon--stroke c-icon--no-fill" height="32" width="27" viewBox="0 0 31.18 27" aria-hidden="true"> <polygon points="22.8 1 8.37 1 1.16 13.5 8.37 26 22.8 26 30.02 13.5 22.8 1" /> </svg> <span>Read this Article</span> </button> </div> </a> </li> <li class="c-article-list__item"> <a class="c-article-thumb c-article-thumb--t-sky t-sky" href="https://blog.castraconsulting.com/network-segmentation"> <div class="c-article-thumb__tag">Blog</div> <div class="c-article-thumb__date"> April 18, 2017 </div> <h3 class="c-article-thumb__title"> Network segmentation </h3> <p class="c-article-thumb__excerpt"> Network segmentation is the practice of dividing a formerly 'flat' network [where every device can contact every other device] into a s... </p> <div class="c-article-thumb__footer"> <button class="c-button c-button--icon"> <svg class="c-button__icon c-icon c-icon--stroke c-icon--no-fill" height="32" width="27" viewBox="0 0 31.18 27" aria-hidden="true"> <polygon points="22.8 1 8.37 1 1.16 13.5 8.37 26 22.8 26 30.02 13.5 22.8 1" /> </svg> <span>Read this Article</span> </button> </div> </a> </li> </ul> </div> </section> </main> </div> <div class="c-container c-container--centered"> <div class="c-button-row"> <a href="https://blog.castraconsulting.com/page/1" class="c-button c-button--icon"> <svg class="c-button__icon c-icon c-icon--stroke c-icon--no-fill" height="32" width="27" viewBox="0 0 31.18 27" aria-hidden="true"> <polygon points="22.8 1 8.37 1 1.16 13.5 8.37 26 22.8 26 30.02 13.5 22.8 1"></polygon> </svg> <span> PREV </span> </a> </div> </div>  <footer class="t-night"> <div class="c-container"> <h2><span class="h-screenreader">Castra</span> <svg class="c-logo" width="150" height="36" viewBox="0 0 2618.13 614.17"><title>Castra Logo</title><g class="c-logo__primary CASTRA"><path class="C" d="M792.69,136.32c53.15-.89,89.47,15.44,119.28,37.92,8.84,6.67,23.82,18.43,29.28,27.84l-53.76,45.84-.48-.24c-2.91-6.53-10.21-13.2-15.6-17.52-20.6-16.51-52.22-34.76-92.4-25.92-8.75,1.93-17,4-24.48,7.2-28.48,12.22-49.29,34.81-59,65.76-3.2,10.16-3,20.88-5,33.12.24,4.32.48,8.65.72,13,3.16,18,5.88,31.4,13.44,44.16,13.38,22.59,31,37.88,56.88,48,52.31,20.46,104.43-7.9,125.76-38.88l54,45.36c-1.29,4-6.53,7.74-9.36,10.56A182.55,182.55,0,0,1,903.57,456c-35,23.32-95.3,42.36-151.92,25.44-32-9.57-53.31-23-76.08-41.28-37.92-30.48-72.07-103.62-51.12-173.52,11-36.85,30.89-67.54,57.84-88.56a203.69,203.69,0,0,1,68.88-35.52c8.26-2.47,17.12-3.4,26.16-5Z"></path><path class="A" d="M1150.05,140.16h-34.8q-81.7,171.59-163.44,343.2v.24h73.44q15.24-34.78,30.48-69.6h153.6l31.2,69.6H1314Q1232,311.91,1150.05,140.16Zm34.32,215.76H1080.93l51.36-113.28,52.08,113Z"></path><path class="S" d="M1451,136.32a326.37,326.37,0,0,1,105.12,15.36c9.37,2.94,18.15,6,26.64,9.6l7,2.88-28.32,55.44a276.41,276.41,0,0,0-26.4-9.36c-30.57-9.59-89.61-23.44-118.56-2.88-8.58,6.1-18,18.77-13.2,34.8,8.28,27.43,57,32.28,86.16,40.32,53.42,14.75,102.12,29,112.8,86.64,5.26,28.41-6,56.05-16.8,71.28-16.33,23-40.66,35.55-72.24,43.44-8.1,2-16.2,1.9-25.2,3.36-8.23,1.34-27,1.94-35.76.48h-7.44c-12.16-2-24.44-1.08-35.76-3.36-31.55-6.34-56.58-16.52-81.6-28.8l25.2-54.24c20.07,9.26,40.5,16.93,65,22.32l28.08,3.36,9.6.24c13,2.05,29.78.63,40.56-1.92,19.24-4.53,32.35-11.73,36-31.92a30.12,30.12,0,0,0-1.2-14.88c-7.2-18.44-30.8-23.82-50.64-29.76-40.39-12.08-83.13-17.82-113.52-39.36-18.7-13.25-29.3-29.78-34.08-57.36-.9-5.2-1.43-13.41-.48-19.2,1.63-9.92,1.76-18.1,4.8-26.16,8.49-22.51,22.45-38.76,41.52-50.64,12.93-8.05,28.41-13,45.6-16.8l18.48-2.4Z"></path><path class="T" d="M1627.41,140.16h288.72v60.48H1806.45v283h-70.08v-283h-109Z"></path><path class="R" d="M2172.21,382.08l-.72-.72c28.9-13.92,49-32.08,61-62.88,3.34-8.57,5-18.17,7-28.08,1.78-9.18,3.07-22.38,1.44-32.64-1.39-8.74-.67-16.48-2.4-24.24-6.47-29.05-18.93-51.7-39.12-67-14.3-10.8-31.07-17.51-51.36-22.56-20.86-5.19-47.89-3.84-73.44-3.84H1955.25V483.6h69.6V395.52c25.58,0,52.23.09,77-.48l66,88.56h83.28v-.24Q2211.69,432.74,2172.21,382.08ZM2167.89,271l-.72,11.28c-2.15,10.75-5.46,19.84-10.8,27.36-23.72,33.46-74.88,28.57-131.52,28.32V200.64h52.32c17.47,0,34.41-.27,47.52,3.84,23,7.21,36.56,23.41,42,48.24C2167.81,257.83,2168.75,265.46,2167.89,271Z"></path><path class="A" d="M2454,140.16h-34.56q-81.82,171.71-163.68,343.44h73.68q15.24-34.78,30.48-69.6h153.6l31,69.6h73.68Q2536.07,311.91,2454,140.16Zm-69.12,215.76,51.36-113c2.87,2.12,12.64,26.82,14.88,31.92l37.44,81.12Z"></path></g><g class="c-logo__primary"><path class="primary-castle" d="M269.73,0c9.68-.18,15.5,5,21.6,8.64Q310.65,19.8,330,31l148.8,85.92,37.44,21.6c8.82,5.24,17.32,8.69,21.36,18.72,2.3,5.71,1.44,15.26,1.44,23V434.88c0,9.5.6,19.27-2.88,25.2-5.41,9.23-15.78,13-25,18.48l-51.84,30v-247l15.84-6.24v-15.6L459.33,229V180c-12.87-9.32-24.72-19.46-39.6-27.12v30.48c-12.7-5.92-25.72-12.9-40.32-16.8q-.12-15.59-.24-31.2c-11.32-1.88-22-7.64-34.32-9.12v31.2c-13-.82-26.15-4.27-40.56-5V120.72c-11.15-1-22.84-.26-34.32-.24Q269.85,60.26,269.73,0Z"></path><path class="window" d="M326.85,267.6c13.58-.24,17.78,6.12,25.44,11.28v37.2l-30.48-9.84V269Z"></path><path class="window" d="M398.37,289.44c12.56-.26,21.2,4.47,26.4,11.52v36.72q-15.24-4.9-30.48-9.84V300c0-2.42-.78-8.28.72-9.36Z"></path><path class="window" d="M326.37,380.4c12.18-.26,20.86,4.66,25.92,11.52v37L321.81,419v-37.2Z"></path><path class="window" d="M399.57,402c11.6-.24,20.35,5.16,25.2,11.76v36.72h-.24l-30.24-9.84v-37Z"></path></g><g class="c-logo__accent"><path class="turret" d="M344.37,126.24c1.14,1.22.48,6,.48,8.16v23c-4.08-.63-8.16-1.28-12.24-1.92V130.08Z"></path><path class="turret" d="M419.73,153.12v30.24l-12-6V156.48C411.73,155.37,415.73,154.24,419.73,153.12Z"></path><path class="accent-castle" d="M93.81,235.68C104.45,231,115,226.19,126,221.52c23.23-9.88,49-18.32,74.64-25.44l21.12-3.84c14.54-3.23,30.48-7,48-6.72V0c-10.8.05-16.46,5.77-23.28,9.84Q227.13,21,207.81,32.16l-147.6,85.2L21.57,139.68c-8.72,5.17-17.19,9-20.4,19.68-2,6.65-.72,15.71-.72,23.52V432.72c0,6.4-1.16,14.24.24,20.16A30.85,30.85,0,0,0,5.25,463.2c3.94,5.54,10.83,8,16.8,11.52l29.52,17,107.28,61.92L234,597.12c9,5.63,22,17.24,35.76,17V214.32c-29.87,0-54.79,6.7-77.76,13.92S147,243.06,126,252L89.73,267.6l-10.08-8.16c-1-5.11-.28-11.49-.24-17C83.51,239.44,88.82,237.87,93.81,235.68Zm92.64,43.44c4.91-6.94,12.83-7.13,20.4-11.52,3.52,0,7.14.11,9.36,1.44,1.5,1.08.72,6.94.72,9.36v27.84l-30.24,9.84h-.24Zm0,112.8c4.79-6.77,12.63-7.15,19.92-11.52a41.33,41.33,0,0,1,10.56,1.44v37l-30.24,9.84h-.24ZM113.73,301.2a31.29,31.29,0,0,1,16.08-11l6.24-1,8.4,1.68v37q-15.24,4.92-30.48,9.84h-.24Zm0,112.8a32.69,32.69,0,0,1,12.48-9.84l8.4-2.16c3.43,0,6.95.14,9.12,1.44,1.5,1.08.72,6.94.72,9.36v27.84L114,450.48h-.24Z"></path></g></svg> </h2> <div class="c-footer"> <div class="c-footer__left"> <h3 class="c-heading c-heading--xs">Contact</h3> <dl class="c-list c-list--dl"> <dt>e:</dt> <dd><a href="mailto:info@castraconsulting.com">info@castraconsulting.com</a></dd> <dt>p:</dt> <dd><a href="tel:1-919-595-8560">919.595.8560</a> (EST)</dd> <dt>p:</dt> <dd><a href="tel:1-408-476-8488 ">408.476.8488 </a> (PST)</dd> <dt>a:</dt> <dd> <address class="c-address"> <a href="https://goo.gl/maps/xAoEmyBfk9cHpzS26" target="_blank" rel="noopener noreferrer"><div class="c-address__line">3308 Durham-Chapel Hill Blvd</div><div class="c-address__line">Suite #201</div><div class="c-address__line">Durham, NC 27707</div></a> </address> </dd> </dl> <a class="c-button c-button--icon c-button--flush" href="/contact#form?meeting"> <svg class="c-button__icon c-icon c-icon--stroke c-icon--no-fill" height="32" width="27" viewBox="0 0 31.18 27" aria-hidden="true"> <polygon points="22.8 1 8.37 1 1.16 13.5 8.37 26 22.8 26 30.02 13.5 22.8 1" /> </svg> <span>Schedule a Meeting</span></a> </div> <div class="c-footer__center"> <h3 class="c-heading c-heading--xs">About Castra</h3> <p>Castra is a Managed Security business. We work with Fortune 50/Global 2,000 organizations as well as SMB’s and everything in between. We have worked with thousands of Healthcare, Financial, Retail, Technology, and Government organizations on a variety of projects that range from tailored consulting, to 24x7 Managed Services.</p> <div> <div class="c-form c-form--footer"> <div class="c-form__container" style="display: block;"> <span id="hs_cos_wrapper_subscribe_to_newsletter--footer" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_form" style="" data-hs-cos-general-type="widget" data-hs-cos-type="form" ><h3 id="hs_cos_wrapper_subscribe_to_newsletter--footer_title" class="hs_cos_wrapper form-title" data-hs-cos-general-type="widget_field" data-hs-cos-type="text"></h3> <div id='hs_form_target_subscribe_to_newsletter--footer'></div> </span> </div> </div> </div> </div> <nav class="c-footer__right"> <h3 class="c-heading c-heading--xs">Quicklinks</h3> <ul class="c-list"> <li class="c-list__item"><a href="https://castraconsulting.com/">Home</a></li> <li class="c-list__item"><a href="https://castraconsulting.com/about">About</a></li> <li class="c-list__item"><a href="https://castraconsulting.com/services">Services</a></li> <li class="c-list__item"><a href="https://castraconsulting.com/partners">Partners</a></li> <li class="c-list__item"><a href="/" aria-current="page">The Latest</a></li> <li class="c-list__item"><a href="https://castraconsulting.com/contact">Contact</a></li> <li class="c-list__item"><a href="https://castraconsulting.com/privacy">Privacy</a></li> </ul> </nav> </div> </div> <script> const $menuIcon = document.querySelector(".c-nav__menu-icon"); const $addThisShareDock = document.getElementById("at-share-dock"); $menuIcon.addEventListener("click", function(e) { e.preventDefault(); const expanded = this.getAttribute("aria-expanded") === "false" ? false : true; this.setAttribute("aria-expanded", !expanded); // Hide-Show the Add This dock at the bottom of mobile // screens so that we can see the "Request a Quote" // and "Schedule a Meeting" buttons if ($addThisShareDock.style.display === "none") { $addThisShareDock.style.display = "block"; } else { $addThisShareDock.style.display = "none"; } }); </script> </footer> </body> <script type="text/javascript" src="/hs/hsstatic/HubspotToolsMenu/static-1.62/js/index.js"></script> <script> (function () { window.addEventListener('load', function () { setTimeout(function () { var xhr = new XMLHttpRequest(); xhr.open('POST', '/_hcms/perf', true /*async*/); xhr.setRequestHeader("Content-type", "application/json"); xhr.onreadystatechange = function () { // do nothing. }; var connection = navigator.connection || navigator.mozConnection || navigator.webkitConnection; function populateNetworkInfo(name, connection, info) { if (name in connection) { info[name] = connection[name]; } } var networkInfo = {}; if (connection) { ['type', 'effectiveType', 'downlink', 'rtt'].forEach(function(name) { populateNetworkInfo(name, connection, networkInfo); }); } var perfData = { url: location.href, portal: 5159461, content: -1, group: 6580342500, connection: networkInfo, timing: performance.timing }; xhr.send(JSON.stringify(perfData)); }, 3000); // Execute this 3 seconds after onload. }); })(); </script>  <script src="/_hcms/forms/v2.js"></script> <script> var options = { formsBaseUrl: '/_hcms/forms/', portalId: '5159461', formId: '3b22606a-ac46-4979-ba4d-6c6d5fb322ff', formInstanceId: '4050', pageId: '6580342500', css: '', target: '#hs_form_target_subscribe_to_newsletter--header', contentType: "listing-page", formData: { cssClass: 'hs-form stacked hs-custom-form' } }; options.getExtraMetaDataBeforeSubmit = function() { var metadata = {}; if (hbspt.targetedContentMetadata) { var count = hbspt.targetedContentMetadata.length; var targetedContentData = []; for (var i = 0; i < count; i++) { var tc = hbspt.targetedContentMetadata[i]; if ( tc.length !== 3) { continue; } targetedContentData.push({ definitionId: tc[0], criterionId: tc[1], smartTypeId: tc[2] }); } metadata["targetedContentMetadata"] = JSON.stringify(targetedContentData); } return metadata; }; hbspt.forms.create(options); </script> <script> var options = { formsBaseUrl: '/_hcms/forms/', portalId: '5159461', formId: '3b22606a-ac46-4979-ba4d-6c6d5fb322ff', formInstanceId: '3803', pageId: '6580342500', css: '', target: '#hs_form_target_subscribe_to_newsletter--footer', contentType: "listing-page", formData: { cssClass: 'hs-form stacked hs-custom-form' } }; options.getExtraMetaDataBeforeSubmit = function() { var metadata = {}; if (hbspt.targetedContentMetadata) { var count = hbspt.targetedContentMetadata.length; var targetedContentData = []; for (var i = 0; i < count; i++) { var tc = hbspt.targetedContentMetadata[i]; if ( tc.length !== 3) { continue; } targetedContentData.push({ definitionId: tc[0], criterionId: tc[1], smartTypeId: tc[2] }); } metadata["targetedContentMetadata"] = JSON.stringify(targetedContentData); } return metadata; }; hbspt.forms.create(options); </script>  <script type="text/javascript"> var _hsq = _hsq || []; _hsq.push(["setContentType", "listing-page"]); _hsq.push(["setCanonicalUrl", "https:\/\/blog.castraconsulting.com"]); _hsq.push(["setPageId", "6580342500"]); _hsq.push(["setContentMetadata", { "contentPageId": null, "legacyPageId": null, "contentFolderId": null, "contentGroupId": 6580342500, "abTestId": null, "languageVariantId": null, "languageCode": null, }]); </script> <script type="text/javascript" id="hs-script-loader" async defer src="/hs/scriptloader/5159461.js"></script>  <script type="text/javascript"> var hsVars = { ticks: 1585770521319, page_id: 0, content_group_id: 6580342500, portal_id: 5159461, app_hs_base_url: "https://app.hubspot.com", cp_hs_base_url: "https://cp.hubspot.com", language: "en", analytics_page_type: "listing-page", category_id: 3, folder_id: 0, is_hubspot_user: false } </script> <div id="fb-root"></div> <script>(function(d, s, id) { var js, fjs = d.getElementsByTagName(s)[0]; if (d.getElementById(id)) return; js = d.createElement(s); js.id = id; js.src = "//connect.facebook.net/en_GB/all.js#xfbml=1&status=0"; fjs.parentNode.insertBefore(js, fjs); }(document, 'script', 'facebook-jssdk'));</script> <script>!function(d,s,id){var js,fjs=d.getElementsByTagName(s)[0];if(!d.getElementById(id)){js=d.createElement(s);js.id=id;js.src="https://platform.twitter.com/widgets.js";fjs.parentNode.insertBefore(js,fjs);}}(document,"script","twitter-wjs");</script>

Let's talk Security

The latest updates

Beginners Guide to IDS, IPS and UTM - What's the difference?

Set it and forget it fail

Default Credentials?

Shadyware ... Malware or Legit Software

Adblocking

Egress Filtering

IPS / FP / OMG / WTF?