Category Archives: blacklisting
Making “Shady RAT” Useful: Open Letter to McAfee & the Australian DoD…
Earlier this week, I wrote a post comparing the cybersecurity strategies of the United States and Australian Departments of Defense. In that post, I applauded the Australians for having a strategy that was “detailed, well-researched and supported, and focused on … Continue reading
Total Application Control (TAC): Best of whitelisting AND blacklisting…
As hackers get better at breaking into networks and compromising data, IT security experts continue to debate the best ways to defend their systems against highly targeted malware attacks. In the PCWorld article, “How to Stop Hack Attacks In One … Continue reading
Who would you bet on in the race between hackers and users?
No one will argue that deploying security updates is important, but a recent exploit showed the difference between having a patch available and actually implementing it (again). Today’s reality is that hackers are far quicker to exploit known vulnerabilities than … Continue reading
In the blue corner, Visa and banks; in the red corner, Zeus and Sunspot…
Visa has announced plans for a one-click payment system, or what it calls a “universal digital wallet,” to improve the online experience by simplifying the process of purchasing items across the Internet. While a single log-in and password will eliminate … Continue reading
Cloud security: Protecting critical data is job #1…
Cloud computing has certainly taken its share of hits lately. Last month’s Amazon outage created a lot of chatter and analysis around the reliability and availability of cloud-based services. Despite what pretty much amounts to growing pains for cloud computing, … Continue reading
Let's make systems more secure, rather than blacklisting more efficient…
For the sake of argument, let’s say an anti-malware strategy combining cloud-based malware identification and information sharing capabilities could eliminate the bulk of malware. Even in a perfect world with perfect collaboration, such an approach will fall short of protecting … Continue reading
Verizon’s 2011 DBIR: More breaches, more targets & fewer lost records?
I’ve been saying for some time now that no business, regardless the size, is safe from modern cyber attacks. Each new security study seems to confirm the stark realities of today’s threat landscape, and how rampant data breaches really are. … Continue reading
Gartner: Find (malware) needles by removing the hay…
Last week, I read an interesting piece by our friend at Gartner, Neil MacDonald. Neil wrote about how advanced intrusions are becoming increasingly undetected by traditional protection mechanisms like firewalls and antivirus software. In the article, “Advanced Persistent Threats: Finding … Continue reading
"Antivirus with *updated signatures* remove Stuxnet"…
In the recent blog, “Stuxnet Targeting Specific SCADA Configurations,” Danny Lieberman provides a nice, thorough analysis of the high-profiled Superworm in its current state. From what we know, the virus targets plants with a specific configuration, is activated whenever WinCC … Continue reading
Top Security Stories for March: Hackers set sights on unprotected IP…
New trends in cybercrime show that hackers are shifting to more monetarily valuable information — unprotected intellectual property, and federal government networks. While traditional antivirus solutions struggle to keep up with today’s prolific attack software, Gartner recommends whitelisting as a … Continue reading
Twitter
Linkedin
YouTube
Google +
Facebook
Blog