Posts by simon

If an EDR solution can spot an attack, why doesn’t it stop it too?

SE Labs tested Crowdstrike Falcon in this Breach Response test, pitting it against a range of hacking attacks designed to compromise systems.

This month shattered any doubt that intrusion detection technology is necessary. Large companies and other organisations that rely on compromised technology from IT management firm SolarWinds are racing to discover possible breaches.

And screaming into the abyss!

We’re all entitled to our opinions. So why is it so aggravating when “someone is wrong on the internet?”

Security forums vs. test results

People are biased. It’s natural human behaviour and not something we can correct. Not least because we have our own biases… In fact, research indicates that providing evidence to counter someone’s argument actually entrenches their initial position! Here, we’re going to explore opinions on security testing.

Supporting open standards testing for firewalls and other network security devices

SE Labs has joined forces with testing standards organisation NetSecOPEN, aiming to improve the network appliance testing market. The result will be more accurate reports containing genuinely useful data.

SE Labs joins NetSecOPEN

SE Labs has always supported transparent, repeatable, standards-based testing of security products. By being the first mainstream security testing organisation to join NetSecOPEN, we are demonstrating our commitment to that purpose across all of our testing.

Solid endpoint protection is a bare minimum

If it feels like new breaches are reported every week, it’s because they are. Attackers are taking no prisoners and are successfully breaking into businesses, political organisations and systems belonging to individuals. Most believe they have solid endpoint protection in place.

It’s not like a bank robbery, where the bad guys have to spend lots of time and effort to put themselves at physical risk for the sake of one big score. Ransomware extortions can happen in parallel. Criminals sit in front of screens watching piles of victims become compromised.

A set of backups may no longer be enough

A journalist asked us if we felt that ransomware attackers had evolved. But the truth of the matter is, there’s no need for them to do so judging by the large number of publicised cases in which they are able to achieve success without being too creative.

And how can you tell?

If you are in charge of protecting an organisation, you need good data to help make buying decisions. The consequences of simply trusting internet reviews, vendor sales pitches and instinct are extremely serious. So which security product tests are the best?

This article first appeared on LinkedIn (17th November, 2020)

And we’re really quite proud about it!

Our tests are so close to real-life hacking that sometimes there is no practical difference between the two. We don’t usually expect to interact directly with cyber criminals, but it sometimes happens. In this case, our attacker was rude enough to spoil our initial analysis and to leave a sexually aggressive message for our team, too. SE Labs has been hacked!

For immediate context, if you’ve never heard of SE Labs before, we are a computer security testing organisation. We expose our test systems to all manner of horrible software and people, to judge how effectively different security products work. No customer data was lost in this story!

How fast is your firewall? And does it still protect your business when it’s busy?

SE Labs has launched its network security performance testing service. Our reports will answer questions like, “How fast is this NGFW, really?” And, “How well does it protect, even when it’s very busy?”

We have worked with the major global vendors in this area for over a year, identifying and addressing gaps in existing network performance testing. We’ve focussed on ensuring that these new tests from SE Labs are fair, honest, reliable and accurate.

These tests are the first of a new breed.

Get ahead in the game that never ends

Have you ever been hacked? You, personally, or your business? If your answer is, “no” it would be interesting to know how you can be so sure.

I once spoke to a marketing manager at a global anti-malware company who claimed that his PC had never been infected by malware, despite him not using anti-virus. How would be know? Not all malware announces its presence as clearly as, say ransomware. “I just would,” he claimed.

Well, 2020 was an interesting year! Some of the largest and newest security companies were bought and sold…

The world descended into chaos thanks to a biological virus (while digital viruses continue to wreak havoc)…

And SE Labs launched a new website and started using machine learning in its testing.

We appreciate some of these things are more important than others…

However, in the face of adversity we must all carry on and we are proud to announce our second annual report, in which we review the unprecedented year of 2020, announce our annual awards winners and discuss testing like hackers.