Tag Archives: CoreTrace
Flame: The Latest (& Not Last) Targeted Attack
Today I sat down with CoreTrace’s founder and CTO, Dan Teal, to get his perspective on the latest targeted attack gaining publicity: Flame. Readers of this blog know that Dan is uniquely qualified to comment on attacks such as these, … Continue reading
NSA’s Application Whitelisting: Why It Is Right… And Wrong.
Recently the United States National Security Agency (NSA) announced that it had developed an approach to application whitelisting that is designed to consume fewer resources than “standard whitelisting techniques.” While I applaud the NSA for moving towards whitelisting versus relying … Continue reading
Continuous Monitoring: Holy Grail to FISMA Compliance – or Not?
Well is it or is it not? Who cares? Let’s take out the debate about whether or not the new FISMA regulations actually do anything for security practices, and face the reality that we, as government entities (whether directly employed … Continue reading
Security Earthquake Nobody Felt: McAfee Endorses Application Whitelisting
Folks in California are so used to earthquakes that sometimes they barely notice when one happens. Folks in the security business are so busy and swamped with the noise of the market that we often miss tectonic shifts in our … Continue reading
Top Security Stories for July: New plans, breaches, platforms & arrests…
In response to increasing cyber threats targeting the U.S. government, defense contractors and the nation’s critical infrastructure, the Department of Defense released its new strategy for protecting our nation’s systems and networks from cyber attacks. While it’s a nice first … Continue reading
10 Things You Don't Know about Virtualization Security…
When it comes to virtualization security, there are many things that people don’t even know are problems, or don’t even know they need to address. In our recent webinar, “10 Things You Don’t Know about Virtualization Security”, IANS faculty member … Continue reading
Is DoD really ready to embrace new technologies & companies?
As a former Air Force information warfare officer, and a member of the military’s red and blue teams for many years, I believe the Department of Defense’s new “Strategy for Operating in Cyber-Space” is a small step towards developing a … Continue reading
Lessons from RSA, Epsilon, etc.: Partners may be the weakest security link.
Computer hackers by and large focus on the weakest link of an organization’s security system. Whether it’s an unprotected server, a newly discovered system vulnerability, or an unsuspecting employee’s computer that is connected to the corporate network, cyber criminals are … Continue reading
Top Security Stories for June: Malware developers prove their efficiency.
We’ve always known how tenacious hackers are, working around the clock to infiltrate corporate networks. In June, we found out just how efficient they are. Mutating malware that bypasses security updates within hours and unconventional cyber attacks on seemingly secure … Continue reading
Total Application Control (TAC): Best of whitelisting AND blacklisting…
As hackers get better at breaking into networks and compromising data, IT security experts continue to debate the best ways to defend their systems against highly targeted malware attacks. In the PCWorld article, “How to Stop Hack Attacks In One … Continue reading
Twitter
Linkedin
YouTube
Google +
Facebook
Blog