Tag Archives: whitelisting
Making “Shady RAT” Useful: Open Letter to McAfee & the Australian DoD…
Earlier this week, I wrote a post comparing the cybersecurity strategies of the United States and Australian Departments of Defense. In that post, I applauded the Australians for having a strategy that was “detailed, well-researched and supported, and focused on … Continue reading
Tale of Two DoDs: U.S. & Australian security plans differ in usefulness…
Earlier this week, I came across some coverage about some of the Australian Department of Defence’s (DoD) cyber-security strategies. While not completely fair, I found it an interesting study in contrasts between the Australian strategies/tactics and those recently outlined by … Continue reading
Lessons from RSA, Epsilon, etc.: Partners may be the weakest security link.
Computer hackers by and large focus on the weakest link of an organization’s security system. Whether it’s an unprotected server, a newly discovered system vulnerability, or an unsuspecting employee’s computer that is connected to the corporate network, cyber criminals are … Continue reading
Verizon’s 2011 DBIR: More breaches, more targets & fewer lost records?
I’ve been saying for some time now that no business, regardless the size, is safe from modern cyber attacks. Each new security study seems to confirm the stark realities of today’s threat landscape, and how rampant data breaches really are. … Continue reading
Top Security Stories for March: Hackers set sights on unprotected IP…
New trends in cybercrime show that hackers are shifting to more monetarily valuable information — unprotected intellectual property, and federal government networks. While traditional antivirus solutions struggle to keep up with today’s prolific attack software, Gartner recommends whitelisting as a … Continue reading
Godzilla versus King Kong, bot style? Zeus versus Ares… (and why neither wants to face Bouncer)
Over the past few years, the Zeus virus has infected millions of financial systems worldwide, capturing account credentials that cybercriminals use to gain access to corporate networks and steal sensitive data. While there have been competitive programs designed to dethrone … Continue reading
Top security stories for September 2010: Targeted threats, vulnerabilities at ‘unacceptable’ levels… and Stuxnet
While speculations about the Intel/McAfee deal continued to reverberate throughout the industry, new findings about the intentions of the infamous Stuxnet worm dominated the security headlines in September. Security professionals also ran into an old nemesis when the “Here you … Continue reading
It’s pretty cool when your baby really ISN’T ugly…
You’ve all been there before. You’re having dinner with friends and out come the baby pictures. Inevitably, you are listening to a set of parents who are gushing about the fact that their child is the next Fabio or Christy … Continue reading
Application whitelisting: A perfect way to extend the life of Windows 2000 systems
On July 13, 2010 Microsoft ended its support of Windows 2000-based systems. This week, Gartner Analyst Neil MacDonald detailed the options available to organizations who may still be using Windows 2000: Migrate to a newer and supported operating system Pay … Continue reading
Researcher suggests hackers have already infiltrated critical infrastructures
For organizations that run the nation’s most critical infrastructures, it’s important to understand that today’s targeted cyber attacks are designed to carry out any number of activities including monitoring network processes to bringing down the grid. Just because hackers haven’t … Continue reading
Twitter
Linkedin
YouTube
Google +
Facebook
Blog