The European Union’s General Data Protection Regulation (EU GDPR) came into force on 25 May 2018. Many of us remember the influx of marketing emails around this time, with companies updating their privacy policies and asking for the consent of around 450 million Europeans to continue using their personal data. An often misunderstood participant of this compliance quest is log data—a source potentially rich in protected personal data. So, how does the GDPR apply to an organization’s log data?
We are happy to announce, the next release of NXLog Enterprise Edition v5 is now available.
The version 5.6 fixes issues and brings new capabilities. The most noteworthy improvements are summarized below.
The Windows DNS debug log contains valuable information on DNS queries and activity that is especially useful for monitoring and analyzing malicious traffic. This requires some configuration changes for the DNS service in order to enable debug logging.
Industrial Control Systems (ICS) have evolved over the years and now have a lot in common with traditional IT systems. Low-cost Ethernet and IP devices are replacing older, proprietary technology, which opens up new possibilities to improve connectivity and remote access. However, it also increases vulnerability to cyberattacks and incidents since the system is no longer segregated. Due to the nature of ICS, they differ from other IT systems.
Log collection is most closely linked to enterprise security practices—for example, aggregation and analysis in a SIEM. However, it is often valuable to collect certain logs for reasons other than security. It may even be a requirement of your organization, for the purposes of auditing, legal compliance, or data retention.