Tag Archives: application whitelisting
Flame: The Latest (& Not Last) Targeted Attack
Today I sat down with CoreTrace’s founder and CTO, Dan Teal, to get his perspective on the latest targeted attack gaining publicity: Flame. Readers of this blog know that Dan is uniquely qualified to comment on attacks such as these, … Continue reading
NSA’s Application Whitelisting: Why It Is Right… And Wrong.
Recently the United States National Security Agency (NSA) announced that it had developed an approach to application whitelisting that is designed to consume fewer resources than “standard whitelisting techniques.” While I applaud the NSA for moving towards whitelisting versus relying … Continue reading
Continuous Monitoring: Holy Grail to FISMA Compliance – or Not?
Well is it or is it not? Who cares? Let’s take out the debate about whether or not the new FISMA regulations actually do anything for security practices, and face the reality that we, as government entities (whether directly employed … Continue reading
Video: Stopping Reflective Memory Injection with CoreTrace Bouncer
Today’s cyber attackers have added a new weapon into their arsenal: a sophisticated memory attack known as “Reflective Memory Injection”. Reflective Memory Injection goes beyond traditional memory exploits like skape/jt to easily compromise and own a victim computer. Most security … Continue reading
Security Earthquake Nobody Felt: McAfee Endorses Application Whitelisting
Folks in California are so used to earthquakes that sometimes they barely notice when one happens. Folks in the security business are so busy and swamped with the noise of the market that we often miss tectonic shifts in our … Continue reading
File Integrity Protection via Application Whitelisting
It is a PR disaster. A group of ‘hacktivists’ have somehow managed to attack your company website and changed your content (which is actively being displayed to the entire world). Your phone won’t stop ringing, and your mailbox just melted … Continue reading
10 Things You Don't Know about Virtualization Security…
When it comes to virtualization security, there are many things that people don’t even know are problems, or don’t even know they need to address. In our recent webinar, “10 Things You Don’t Know about Virtualization Security”, IANS faculty member … Continue reading
Top Security Stories for June: Malware developers prove their efficiency.
We’ve always known how tenacious hackers are, working around the clock to infiltrate corporate networks. In June, we found out just how efficient they are. Mutating malware that bypasses security updates within hours and unconventional cyber attacks on seemingly secure … Continue reading
Total Application Control (TAC): Best of whitelisting AND blacklisting…
As hackers get better at breaking into networks and compromising data, IT security experts continue to debate the best ways to defend their systems against highly targeted malware attacks. In the PCWorld article, “How to Stop Hack Attacks In One … Continue reading
It's a new platform… So why use an old (broken) security approach?
When it comes to protecting network endpoints against more cunning and deceitful modern malware attacks, deploying proven security tools to prevent malicious code from exploiting your system is job #1. Unfortunately, the cat-and-mouse game between IT security professionals and hackers … Continue reading
Twitter
Linkedin
YouTube
Google +
Facebook
Blog