Home > Contributors > Archives for Koen Van Impe

22 Posts

Koen Van Impe

Security Analyst

Koen Van Impe is a security analyst who worked at the Belgian national CSIRT and is now an independent security researcher. He has a twitter feed (@cudeso) and a personal blog (www.vanimpe.eu). Koen is passionate about computer security, incident handling, network analysis, honeypots, Linux, log management and web technologies. He is responsible for the follow-up and coordination of computer security incidents and gives security advice to customers.

Written By Koen Van Impe

A gauge similar to a speedometer labeled "High Priority."

article

How to Choose the Right Malware Classification Scheme to Improve Incident Response

Analysts can improve and automate their incident response processes by adopting the right malware classification scheme according to specific threat management goals.

April 23, 2018 | By Koen Van Impe

A person using a laptop and hitting the snooze button on an alarm clock.

article

Reducing Dwell Time With Automated Incident Response

As the threat landscape evolves, it is increasingly important for organizations large and small to invest in automated incident response solutions to reduce dwell time and eliminate alert fatigue.

April 2, 2018 | By Koen Van Impe

Tools, pencils and electronic devices on a wooden table.

article

Basic Security Tools You Cannot Afford to Miss in Your Risk Management Program

Security professionals can leverage freely available, open source security tools to protect their environments from threats.

October 3, 2017 | By Koen Van Impe

article

Raise the Red Flag: Guidelines for Consuming and Verifying Indicators of Compromise

Before sharing indicators of compromise, analysts must consider the sensitivity of the data and verify the identities of the senders and receivers.

September 18, 2017 | By Koen Van Impe

Toy shovels and a toy truck in a sandbox.

article

Using a Free Online Malware Analysis Sandbox to Dig Into Malicious Code

A public malware sandbox can be a great substitute for an in-house malware analysis solution — as long as you understand its limitations.

August 28, 2017 | By Koen Van Impe

Adhesive bandages on a computer keyboard.

article

The Apache Struts 2 Vulnerability and the Importance of Patch Management

The disclosure of an Apache Struts 2 vulnerability made the framework a lucrative target and highlighted the importance of patch management.

April 25, 2017 | By Koen Van Impe

A businessman about to step on a banana peel.

article

Simplifying Risk Management

To properly manage risk, security analysts must understand the threats and vulnerabilities that exist on their networks and assess their consequences.

March 28, 2017 | By Koen Van Impe

A businessman reaching into one computer monitor and out from another.

article

Don’t Let Remote Management Software Contribute to Building Botnets

IT leaders must be vigilant when using remote management software. Attackers can exploit these tools to infect devices with malware and build botnets.

January 11, 2017 | By Koen Van Impe

It might seem obvious, but the first step toward solid account protection is using strong passwords. Security leaders should require users to create unique passwords, change them regularly and organize them with a password management solution.

article

Data Breaches and the Importance of Account Protection and Incident Response

Data breaches can be devastating to an organization. Defense against data breaches starts and ends with account protection and incident response.

October 18, 2016 | By Koen Van Impe

SPF is a mechanism that specifies which servers should be able to send email to a given domain by analyzing the "mail from" header. DKIM is a method designed to authenticate and verify the validity of the signatures in email headers.

article

Understanding the SPF and DKIM Spam Filtering Mechanisms

Sender Policy Framework and DomainKeys Identified Mail are two techniques that can be used to limit the amount of spam in inboxes.

August 24, 2016 | By Koen Van Impe