Blog | NIL

Blog

New 0-day vulnerabilities in Microsoft Exchange Server actively exploited

30. Sep 2022

Two reported 0-day vulnerabilities affecting Microsoft Exchange Server 2013, 2016, and 2019 (on-prem) tracked as CVE-2022-41040 and CVE-2022-41082 are being actively exploited in the wild. Read how critical these are and how to mitigate them.

Blog

Insider Threats: What are they and how to mitigate them

20. Sep 2022

Organizations' own personnel pose one of the biggest threats to their security. Read the article to learn how to mitigate Insider Threats.

Blog

The Importance of Identity-Oriented Cybersecurity

14. Sep 2022

Why should you re-focus your cyber defense from on-premises security to identity-oriented security? Read the article and learn how to verify your remote users and improve their access and cloud application security.

Blog

How to detect Malware Persistency (part 1)

26. Aug 2022

Malware persistency is a mechanism adversaries use to ensure foothold in a breached environment. Read the article to learn how to detect it.

Blog

Diving Deep: Malware Injection Techniques

27. Jul 2022

Malware Injection Techniques This is the first entry in the Malware Injection Techniques article series that we will be writing about. The ultimate goal of any malicious software is to be able to execute its code without any hindrance. In the past, security...

Blog

SASE – Buzzword or an intelligent road to cloud security?

28. Jun 2022

Secure Access Service Edge (SASE) All about what SASE (Secure Access Service Edge) is and how it can be the solution for your IT security in the cloud. We are witnessing the most significant transformation since industrialization. As a result,...

Blog

How to detect Typosquatting?

27. Jun 2022

Typosquatting is a type of social engineering attack, where a threat actor registers domains with deliberately misspelled names of known brands or websites and hosts malicious content on them or lures visitors to input sensitive data into the website. This...

Blog

How to detect Follina the Windows MSDT 0-day

2. Jun 2022

Microsoft confirmed a security vulnerability tracked as CVE-2022-30190 and released it on their MSRC portal on May 30th, 2022. The vulnerability allows for a remote code execution (RCE) when MSDT (Microsoft Support Diagnostic Tool) is called using URL protocol from a calling...

Blog

Cybersecurity Is in the Hands of Managers

30. May 2022

We live in a world where not a day goes by without a new cybersecurity breach, data encryption, stealing business data, or infecting personal and professional devices with a new type of malware no-one even knew existed. In the past year alone, a serious cybersecurity attack on Slovenia’s biggest commercial TV and an attack on […]

Blog

Solving the Collaboration Tools Interoperability Challenge with Webex Rooms

23. May 2022

Expanding the capabilities of the Webex Room system Conducting day-to-day business has become increasingly depend on the ability to constantly adapt, change, and foresee the challenges of the future. This is very clear in hybrid business environments with disperse workforce and distributed IT environments. For these organizations, the struggle is very real. How can you […]

Blog

Sustainable Business Strategies: Responsibility and Opportunity of the HR

20. Mar 2022

One of the bigger COVID-19 consequences is definitely the change in business and management standards. The awareness that the social component is key for reaching long-term results and well-being has strengthened. HR plays a crucial role, as it holds all...

Blog

Visit of a Security Operations Center (SOC)

28. Feb 2022

SOC 101 In this podcast, we discussed about Cyber Security Operation Centers – so called SOCs. Jakob Premrn, a cyber security analyst at NIL (part of Conscia Group) explained what SOC actually stands for, described major roles in the SOC...

Blog

How to evaluate the credibility and quality of a SOC

24. Jan 2022

Choosing a Managed Detection and Response (MDR) service provider is very important, yet tricky task. Matevž Mesojednik, SOC Lead at NIL, explains some of the essential criteria for evaluating the quality and credibility of MDR providers.

Blog

What to do and what not to do when you are under a cyber attack?

20. Oct 2021

Tackling cyber-attacks “ad-hoc” with no adequate knowledge of how to respond to an incident is never a good reaction. So what should you do when you are under a cyber attack? Suzana Kužnik, cyber security analyst at NIL`s Security Operations Center,...

Blog

Understanding the Importance of First Steps After a Ransomware Attack

19. Oct 2021

What to do and what not to do when you are under a ransomware attack? Despite a lot of discussion about ransomware attacks in the past few years, the statistics reveal that attacks are becoming more frequent and new ways...

Blog

Basic Principles of OT Security

13. Oct 2021

The Challenge of Securing Windows 95-Based Devices Industrial environments with their Industrial Control Systems (ICSs) are a special challenge for IT security. They are rigid and not open to changes. Typically, they are also full of misconfigurations and potentially risky...

Blog

Industrial Cybersecurity and how to protect OT environments?

11. Oct 2021

The basics of OT security Industrial environments are a special challenge for IT security. What we have noticed so far is that there are many misconfigurations and potentially risky communication paths that our clients are unaware of. For example: OT...

Blog

How to be secure from Ransomware?

6. Oct 2021

Ransomware 101 Jakob Premrn, cybersecurity expert at NIL, part of Conscia Group, explains what is Ransomware, why is it so profitable and how to defend against it. Listen to the podcast! You must enable cookies in order to listen to the podcast.

Blog

How to Stop Ransomware?

4. Oct 2021

Should you pay the ransom? The answer to a million dollar question Some of the most valuable companies today are those that collect, analyze, and sell data. But not just them. Every business processes and stores critical data. Data is the new oil. It is very, very valuable to businesses. Cybercriminals are very aware of […]

Blog

How to fight against cyber attacks?

13. Aug 2021

Firefighting cyber attacks If you have been feeling depressed about the Covid-19 crisis lately, we’ve got the news for you – cybercrime represents a similar threat to the modern civilization in a digital world as Covid-19 does to our health....

Blogs

New 0-day vulnerabilities in Microsoft Exchange Server actively exploited

Insider Threats: What are they and how to mitigate them

The Importance of Identity-Oriented Cybersecurity

How to detect Malware Persistency (part 1)

Diving Deep: Malware Injection Techniques

SASE – Buzzword or an intelligent road to cloud security?

How to detect Typosquatting?

How to detect Follina the Windows MSDT 0-day

Cybersecurity Is in the Hands of Managers

Solving the Collaboration Tools Interoperability Challenge with Webex Rooms

Visit of a Security Operations Center (SOC)

How to evaluate the credibility and quality of a SOC

What to do and what not to do when you are under a cyber attack?

Understanding the Importance of First Steps After a Ransomware Attack

Basic Principles of OT Security

Industrial Cybersecurity and how to protect OT environments?

How to be secure from Ransomware?

How to Stop Ransomware?

How to fight against cyber attacks?

Get our tips, videos and blogs straight to your inbox