Follow

How Should I Read the Weekly Security Digest Notification Emails?

Normshield Cloud will send you a highly summarized view of your network's security performance as weekly digest emails. The content includes a concise version of various NormShield Dashboard information.

Let's go into details of reading the email. The first part denotes the date period that the report relates to. Since it's a weekly digest, the date period shows the last week.

weekly_digest1.PNG

Figure 1 - The head of NormShield Cloud's weekly security digest email

Figure 1 shows the head of the digest email. There are four badges;

  • Vulns (Urgent/Critical): The number of vulnerabilities opened last week with Urgent or Critical severities
  • Vulns (Other): The number of vulnerabilities opened last week with severities other than Urgent or Critical
  • Scans (Vulnerability): The number of vulnerability scans executed last week
  • Scans (Other): The number of other scans (portmap, ssl, domain, compliance, etc.) executed last week

 weekly_digest2.PNG

Figure 2 - The second set of badges of NormShield Cloud's weekly security digest email

Figure 2 shows the following badges of the digest email. There are 7 badges in two rows;

  • Leakages (Email/CC): The number of unique leakages (email, credit card) extracted last week
  • Leakages (Other): The number of other unique leakages (PII, IP address, source code, etc.) extracted last week
  • Leakages (Overall Sources):
  • Ports (Critical Open Ports Count): The number critical ports, such as 139, 445, 1521, 3309, 3389, etc. found OPEN last week
  • Ports (Total Open Ports Count): The number all ports found OPEN last week
  • Alarms (Urgent/Critical): The number of Urgent and Critical level alarms produced last week
  • Alarms (Other): The number of all alarms produced last week

weekly_digest3.PNG

Figure 3 - The third set of badges of NormShield Cloud's weekly security digest email

Figure 3 shows the following badges of the digest email. There are 4 badges in two rows;

  • SSL (Expire in under 30 days): The number of web-SSL certificates that will expire under 30 days
  • SSL (Monitored): The total number of web-SSL certificates that are being monitored
  • Domains (Expire in under 30 days): The number of domain names that will expire under 30 days
  • Domains (Monitored): The total number of domain names that are being monitored

weekly_digest4.PNG

Figure 4 - The fourth set of badges of NormShield Cloud's weekly security digest email

Figure 4 shows the following badges of the digest email. There are 5 badges in two rows;

  • Fraud Domains (Registered): Similar domains that are registered last week by attackers that will be used for fraud against you
  • Fraud Domains (Possibly Related to You): Similar domains that are registered last week by 3rd party authorities that will be possibly used for fraud against you
  • Fraud Domains (Overall Analyzed Domains): The number of your domain names analyzed against fraud by NormShield
  • Reputation (Bad Reputation Entries): The bad reputation entries related to your assets popped out last week
  • Reputation (Overall Analyzed Entries): The overall bad reputation entries analyzed by NormShield

weekly_digest5.PNG

Figure 5 - The fifth set of badges include overall numbers in NormShield Cloud's weekly security digest email

Figure 5 shows the following badges of the digest email. The weekly period restriction doesn't apply the numbers here. They present the overall numbers. There are 8 badges in two rows;

  • Vulns (Urgent, Open, Exploitable): The number of OPEN vulnerabilities with Urgent severity that can be exploited
  • Vulns (Urgent/Critical, Open): The number of OPEN vulnerabilities with Urgent or Critical severities
  • Scans (Vulnerability): The number of overall all vulnerability scans against your network
  • Scans (Other): The number of overall all other scans (portmap, ssl, domain, compliance, etc.) against your network
  • Threat Level: The current overall threat level of your network
  • Assets (Monitored): The number of assets that are monitored (vulnerability scans, other scans, ssl, domain monitorings, etc.)
  • Software Bugs (Open, Critical): The number of overall software bugs OPEN with Critical severity
  • Compliance Controls (Failed): The number of overall FAILED compliancy controls

weekly_digest6.PNG

 Figure 6 - The sixth set of badges of NormShield Cloud's weekly security digest email

Figure 6 shows the following badges of the digest email. There are 4 badges in two rows;

  • Ports (Critical Open Ports Count): The number of overall critical ports (139, 445, 3389, 1521, 3306, etc.) OPEN
  • Ports (Total Open Ports Count): The number of overall OPEN ports
  • The Riskiest Vulnerability: The riskiest vulnerability in your network. This is calculated using the days that vulnerabilities stay OPEN and their NormShield Risk Score. The vulnerability with the biggest calculated number is shown since it's the one has been lingering too much time and needs immediate attention.
  • The Riskiest Asset: The riskiest asset is the asset that contains the most vulnerabilities with high NormShield Risk Score.

weekly_digest7.PNG

Figure 7 - The seventh set of badges of NormShield Cloud's weekly security digest email

Figure 7 shows the following badge of the digest email, which is a simple table and it includes the heading details of Top 10 OPEN vulnerabilities with Urgent and Critical severities.

weekly_digest8.PNG

Figure 8 - The last badge NormShield Cloud's weekly security digest email

Figure 8 shows the last badge of the digest email, which is also a simple table and it includes the heading details of Top 10 vulnerable assets having the most severe vulnerabilities sum.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.
Powered by Zendesk