The Difference Between Active Directory and LDAP

Active Directory (AD) is a directory service made by Microsoft. It provides all sorts of functionality like authentication, group and user management, policy administration and more. LDAP is a way of speaking to Active Directory. LDAP, which stands for Lightweight Directory Access Protocol, is a means for querying items in any directory service that supports […]

Continue Reading →

Football player hacked live during NFL draft

Experts had Laremy Tunsil flagged as one of the top prospects in Thursday night’s NFL draft. But shortly before the opening pick, something disturbing happened. An incriminating video tweeted from Tunsil’s own verified Twitter account showed the Ole Miss star smoking a “marijuana-like substance” from a gas mask. It quickly became clear that Tunsil’s account […]

Continue Reading →

The DROWN Attack

pexels-photo

First Heartbleed, then Poodle, now DROWN. Yet another SSL vulnerability. Here’s what you need to know. With DROWN, a rather significant portion of the web (mail servers, VPNs, etc.) are open to an attack that, while tricky to execute, can decrypt a securely encrypted TLS connection. Researchers estimate more than 3.5 million HTTPS servers are […]

Continue Reading →

Varonis DatAnswers is GA

DatAnswers

Our newest product, DatAnswers, was made generally available on December 15th. Now that the New Year’s change freeze is behind us, why not try it free for 30 days? Wait, what is DatAnswers? A secure, highly efficient, affordable enterprise search engine for file shares and SharePoint. Why would Varonis make a search engine? Not only […]

Continue Reading →

Miscommunication as a Cybersecurity Threat

Blank computer screen

There was a great interview in WSJ this weekend with Blackstone’s CISO Jay Leek.  They asked Mr. Leek a question that I love asking people in high-level security roles: WSJ: What most worries you? LEEK: The No. 1 most significant risk to every organization is your well-intentioned, nonmalicious insider who is trying to do the […]

Continue Reading →

POODLE SSL Bug Scanner

POODLE!

As you may have noticed, there’s been widespread attention on this new POODLE SSL attack (CVE-2014-3566) that lets attackers spy on your traffic to any website that is vulnerable. As a public service, we’ve made a free, easy-to-use site that lets you scan any URL to see if it’s vulnerable and offers some helpful links to […]

Continue Reading →

Announcing the Varonis Connect Community

Do you have feature requests for us?  Ever want to discuss a product customization with an engineer?  Looking for a certain how-to video?  Look no further!  Today, we’re happy to announce a new online community for Varonis customers and partners. Varonis Connect is a friendly community where you can exchange ideas and information, participate in […]

Continue Reading →

Announcing DatAnywhere 2.0

We’re pleased to announce that version 2.0 of Varonis DatAnywhere is now generally available. Our engineering team continues to add new features at a rapid pace! What’s new in 2.0? Stub files. Stub files make files appear and behave as if they’re stored locally on the client, but they remain safely on your file shares […]

Continue Reading →

Billion User Breach PSA

The latest story which has the security world in tizzy is the New York Times report that Russian hackers have amassed more than a billion Internet passwords. Bruce Schneier wrote in interesting post yesterday calling into question the validity of this report. He points out that Hold Security, the company that is hyping this breach, is not only […]

Continue Reading →

21 Free Tools Every SysAdmin Should Know

Check out our favorite free sysadmin tools that we use to help us work faster and be more awesome. At Varonis we’re always looking for productivity hacks—whether it be keyboard shortcuts or meditation techniques.  Last week, a bunch of us got together and shared our favorite free sysadmin tools—ones we love and use all time. […]

Continue Reading →