Category Archives: endpoint security

Flame: The Latest (& Not Last) Targeted Attack

Posted on June 4, 2012 by JT Keating

Today I sat down with CoreTrace’s founder and CTO, Dan Teal, to get his perspective on the latest targeted attack gaining publicity: Flame. Readers of this blog know that Dan is uniquely qualified to comment on attacks such as these, … Continue reading →

Posted in Advanced Threat Protection, application whitelisting, endpoint security | Tagged antivirus, application control, application whitelisting, APT, CoreTrace, duqu, flame attack, stuxnet, targeted attacks | Leave a comment

Video: Stopping Reflective Memory Injection with CoreTrace Bouncer

Posted on March 3, 2012 by Greg Valentine

Today’s cyber attackers have added a new weapon into their arsenal: a sophisticated memory attack known as “Reflective Memory Injection”. Reflective Memory Injection goes beyond traditional memory exploits like skape/jt to easily compromise and own a victim computer. Most security … Continue reading →

Posted in Advanced Threat Protection, application whitelisting, endpoint security | Tagged advanced threat protection, antivirus, application whitelisting, cybersecurity, memory protection | Leave a comment

Security Earthquake Nobody Felt: McAfee Endorses Application Whitelisting

Posted on January 27, 2012 by JT Keating

Folks in California are so used to earthquakes that sometimes they barely notice when one happens. Folks in the security business are so busy and swamped with the noise of the market that we often miss tectonic shifts in our … Continue reading →

Posted in endpoint security, whitelisting | Tagged antivirus, application control, application whitelisting, CoreTrace, McAfee | 1 Comment

Making “Shady RAT” Useful: Open Letter to McAfee & the Australian DoD…

Posted on August 5, 2011 by JT Keating

Earlier this week, I wrote a post comparing the cybersecurity strategies of the United States and Australian Departments of Defense. In that post, I applauded the Australians for having a strategy that was “detailed, well-researched and supported, and focused on … Continue reading →

Posted in blacklisting, endpoint security, Featured, Uncategorized, whitelisting | Tagged antivirus, infosec, McAfee, Shady RAT, Symantec, whitelisting | Leave a comment

Tale of Two DoDs: U.S. & Australian security plans differ in usefulness…

Posted on August 3, 2011 by JT Keating

Earlier this week, I came across some coverage about some of the Australian Department of Defence’s (DoD) cyber-security strategies. While not completely fair, I found it an interesting study in contrasts between the Australian strategies/tactics and those recently outlined by … Continue reading →

Posted in endpoint security, Featured, Uncategorized, whitelisting | Tagged antivirus, cybersecurity, DoD, patching, vulnerabilities, whitelisting | 3 Comments

10 Things You Don't Know about Virtualization Security…

Posted on July 22, 2011 by JT Keating

When it comes to virtualization security, there are many things that people don’t even know are problems, or don’t even know they need to address. In our recent webinar, “10 Things You Don’t Know about Virtualization Security”, IANS faculty member … Continue reading →

Posted in endpoint security, whitelisting | Tagged application control, application whitelisting, BOUNCER, CoreTrace, total application control, virtualization security | Leave a comment

Lessons from RSA, Epsilon, etc.: Partners may be the weakest security link.

Posted on July 14, 2011 by JT Keating

Computer hackers by and large focus on the weakest link of an organization’s security system. Whether it’s an unprotected server, a newly discovered system vulnerability, or an unsuspecting employee’s computer that is connected to the corporate network, cyber criminals are … Continue reading →

Posted in endpoint security, whitelisting | Tagged BOUNCER, CoreTrace, cyber attacks, cyber criminals, endpoint security, security breach, whitelisting | 1 Comment

Total Application Control (TAC): Best of whitelisting AND blacklisting…

Posted on June 29, 2011 by Toney Jennings

As hackers get better at breaking into networks and compromising data, IT security experts continue to debate the best ways to defend their systems against highly targeted malware attacks. In the PCWorld article, “How to Stop Hack Attacks In One … Continue reading →

Posted in blacklisting, endpoint security, whitelisting | Tagged application control, application whitelisting, blacklisting, BOUNCER, CoreTrace, financial fraud, fraud detection, malware attacks, TAC, total application control | Leave a comment

It's a new platform… So why use an old (broken) security approach?

Posted on June 27, 2011 by JT Keating

When it comes to protecting network endpoints against more cunning and deceitful modern malware attacks, deploying proven security tools to prevent malicious code from exploiting your system is job #1. Unfortunately, the cat-and-mouse game between IT security professionals and hackers … Continue reading →

Posted in endpoint security, whitelisting | Tagged application whitelisting, BOUNCER, CoreTrace, malware, malware attacks | 2 Comments

Lumension Acquires CoreTrace

Blog

Next Steps