Security researchers have found a way to reverse the effects of an NSA hacking utility that deletes event logs from compromised machines. Last week, Fox-IT published a Python script that recovers ...

When an unexpected problem occurs in a Windows environment, the first step in resolving that problem is usually to gather information. After all, you need to know what happened before you can fix it.

Security event monitoring systems are often plagued by signal-to-noise problems. Here's how to ensure they produce meaningful alerts One of the most interesting facts in the field of computer security ...

In brief: The Windows event log and Event Viewer are supposed to help users diagnose security issues and other problems in PCs. However, Kaspersky researchers encountered one hacker who used the event ...

Collecting too much log data overwhelms systems and staff. Centralized event log management lets you filter for the most significant security data. More companies are using their security logs to ...

Log and event management is now a requirement for organizations that need to monitor security and IT policy enforcement, document compliance, and achieve IT operations excellence without increasing ...

Incident responders and blue teams have a new tool called Chainsaw that speeds up searching through Windows event log records to identify threats. The tool is designed to assist in the first-response ...

Previously we wrote about CERT and the “13 best practices for preventing and detecting insider threats.” Now we’ll dig deeper into best practice No. 5: “Log, monitor, and audit employee online actions ...

An unprecedented discovery made by Kaspersky could have serious consequences for those using Windows operating systems. The cybersecurity company published an article on May 4 detailing that — for the ...