Home > Contributors > Archives for Koen Van Impe

19 Posts

Koen Van Impe

Security Analyst

Koen Van Impe is a security analyst who worked at the Belgian national CSIRT and is now an independent security researcher. He has a twitter feed (@cudeso) and a personal blog (www.vanimpe.eu). Koen is passionate about computer security, incident handling, network analysis, honeypots, Linux, log management and web technologies. He is responsible for the follow-up and coordination of computer security incidents and gives security advise to customers.

Written By Koen Van Impe

article

Raise the Red Flag: Guidelines for Consuming and Verifying Indicators of Compromise

Before sharing indicators of compromise, analysts must consider the sensitivity of the data and verify the identities of the senders and receivers.

September 18, 2017 | By Koen Van Impe

Toy shovels and a toy truck in a sandbox.

article

Using a Free Online Malware Analysis Sandbox to Dig Into Malicious Code

A public malware sandbox can be a great substitute for an in-house malware analysis solution — as long as you understand its limitations.

August 28, 2017 | By Koen Van Impe

Adhesive bandages on a computer keyboard.

article

The Apache Struts 2 Vulnerability and the Importance of Patch Management

The disclosure of an Apache Struts 2 vulnerability made the framework a lucrative target and highlighted the importance of patch management.

April 25, 2017 | By Koen Van Impe

A businessman about to step on a banana peel.

article

Simplifying Risk Management

To properly manage risk, security analysts must understand the threats and vulnerabilities that exist on their networks and assess their consequences.

March 28, 2017 | By Koen Van Impe

A businessman reaching into one computer monitor and out from another.

article

Don’t Let Remote Management Software Contribute to Building Botnets

IT leaders must be vigilant when using remote management software. Attackers can exploit these tools to infect devices with malware and build botnets.

January 11, 2017 | By Koen Van Impe

It might seem obvious, but the first step toward solid account protection is using strong passwords. Security leaders should require users to create unique passwords, change them regularly and organize them with a password management solution.

article

Data Breaches and the Importance of Account Protection and Incident Response

Data breaches can be devastating to an organization. Defense against data breaches starts and ends with account protection and incident response.

October 18, 2016 | By Koen Van Impe

SPF is a mechanism that specifies which servers should be able to send email to a given domain by analyzing the "mail from" header. DKIM is a method designed to authenticate and verify the validity of the signatures in email headers.

article

Understanding the SPF and DKIM Spam Filtering Mechanisms

Sender Policy Framework and DomainKeys Identified Mail are two techniques that can be used to limit the amount of spam in inboxes.

August 24, 2016 | By Koen Van Impe

Blockchain technology may be closely associated with bitcoin, but there is much more to this growing technology than one form of cryptocurrency. In fact, organizations could leverage blockchains to decrease their transaction costs.

article

Will Blockchain Technology Replace Traditional Business Models?

Blockchain technology has become a hot trending topic within the computer world in the last couple years. There's more to it than just bitcoins.

July 6, 2016 | By Koen Van Impe

Incident handling can be improved when security professionals have the opportunity to learn and practice. Unfortunately, the materials needed for this are not always readily available, which is why we've assembled a list of training options.

article

Security Training for Incident Handling: What Else Is Out There?

This follow-up article offers even more options for improving incident handling through training courses, workshops and challenges.

May 31, 2016 | By Koen Van Impe

article

The New Glibc Getaddrinfo Vulnerability: Is It GHOST 2.0?

Is the new glibc getaddrinfo vulnerability really GHOST 2.0? Signs point to yes, so organizations should patch this vulnerability immediately.

March 21, 2016 | By Koen Van Impe