Category Archives: Uncategorized
Making “Shady RAT” Useful: Open Letter to McAfee & the Australian DoD…
Earlier this week, I wrote a post comparing the cybersecurity strategies of the United States and Australian Departments of Defense. In that post, I applauded the Australians for having a strategy that was “detailed, well-researched and supported, and focused on … Continue reading
Tale of Two DoDs: U.S. & Australian security plans differ in usefulness…
Earlier this week, I came across some coverage about some of the Australian Department of Defence’s (DoD) cyber-security strategies. While not completely fair, I found it an interesting study in contrasts between the Australian strategies/tactics and those recently outlined by … Continue reading
Is DoD really ready to embrace new technologies & companies?
As a former Air Force information warfare officer, and a member of the military’s red and blue teams for many years, I believe the Department of Defense’s new “Strategy for Operating in Cyber-Space” is a small step towards developing a … Continue reading
Top Security Stories for June: Malware developers prove their efficiency.
We’ve always known how tenacious hackers are, working around the clock to infiltrate corporate networks. In June, we found out just how efficient they are. Mutating malware that bypasses security updates within hours and unconventional cyber attacks on seemingly secure … Continue reading
'Private Citizen' a surveillance program, not a solution for protecting critical infrastructure
There’s been much debate about the National Security Agency’s program, “Perfect Citizen,” which is designed to protect the country’s most widely used and critical infrastructure such as electric grids and nuclear-power plants from emerging cyber attacks. While one camp says … Continue reading
Targeted attacks a growing threat to confidential medical records
In an important step to enforce new state laws around protecting the privacy of medical records, the California Department of Public Health (CDPH) has fined five California hospitals a total of $675,000 for failing to prevent unauthorized access to their … Continue reading
Dissecting targeted attacks
The sharing of personal information over the Internet has been a huge driver for targeted attacks, which are designed to steal highly sensitive corporate information. According to the article, “Surviving today’s targeted attacks,” hackers who once sought fame and notoriety … Continue reading
Top endpoint security stories for May 2010 — May Day turns into a distress signal for cybersecurity industry
Laser focus attacks, new exploits, and ongoing security woes continue to leave many organizations in disarray about how to defend their networks against highly targeted cyber-attacks. Even the government, which has taken a hard stance on protecting our digital infrastructure, … Continue reading
Defective McAfee update could have been avoided. Here's how…
Yesterday, we saw yet another example of how antivirus — not malicious code — can leave thousands of PCs useless. What intended to be a routine McAfee software update to its antivirus definitions for corporate customers has likely turned into … Continue reading
From the "what more proof do you need?" file: 90% of the most secure firms may be affected by botnets…
An RSA study released on Wednesday claims that most major U.S. corporations — including up to 88% of Fortune 500 companies — may be affected by botnet activity from computers compromised by the Zeus Trojan. In the article, “88 percent … Continue reading
Twitter
Linkedin
YouTube
Google +
Facebook
Blog