Advanced Persistent Threats
The intrusion prevention system is a mainstay of any organization's perimeter-focused security infrastructure, but its days may be numbered as a standalone technology. Yet, its purpose lives on.
While some instances of Stuxnet and Duqu found their way into seemingly unplanned locations, the majority of occurrences were localized to targeted systems.
The Uighur Muslim minority group is being targeted in a new APT campaign that targets Mac users and is difficult to detect.
Tom Kellermann, vice president of cyber security at Trend Micro, joined me on the SC Magazine podcast to discuss an APT campaign known as IXESHE, which is going after sensitive targets from Asia to Germany. But its command-and-control infrastructure really is what makes it special.
Be wary of vendor messaging in light of today's threats, as it may be misguided. Organizations can cope with the latest concerns by applying tried-and-true security best practices.
Researchers have uncovered a rare instance of so-called espionage malware for the Mac OS X platform.
Yes, advanced persistent threats are stealthy and difficult to stop, but organizations should remember that the most common attack type facing them is mass malware.
Microsoft plans to make available a real-time feed containing data on cyber attacks to help other organizations protect its customers.
IT professionals wishing to protect their systems from sophisticated attacks are receiving mixed messages of how to combat the problem. Their confusion is understandable, but the most important takeaway message is to not accept failure.
Cyberthreats are increasing, but can be mitigated with a concerted effort at educating as many people as possible.
Before seeking out help from vendors in dealing with the advanced persistent threat, security professionals must understand exactly what defines such an attack.
McAfee is dealing with another round of industry disparagement over its "Shady RAT" report, which chronicled a five-year-long hacking campaign.
A California congresswoman has requested a meeting with McAfee's head researcher and his team following the security company's release last week of a 14-page report chronicling a persistent hacking campaign affecting some 50 U.S. organizations.
While McAfee's recently released "Shady RAT" report concentrated on the victims of a mass cyberespionage ring, another researcher has decided to focus his attention on the adversaries behind such attacks. In a video recorded last week at the Black Hat conference in Las Vegas, Joe Stewart of Dell SecureWorks explains how he was able to trace 60 families of custom malware thanks to error messages yielded by a "connection bouncer" tool used by the hackers to hide their tracks, but which inadvertently pointed back to about a dozen command-and-control centers hosted by ISPs in China. Two of the malware families are known to have been used in the RSA SecurID breach. "It gives you a better line on attribution," Stewart told SCMagazineUS.com.
Cybercriminals are scrapping widespread malicious email campaigns for more targeted attacks, according to a new Cisco report.
An Adobe Flash vulnerability that was fixed this week is being leveraged in widespread but targeted drive-by downloads and spear phishing attacks.
The security architect of RSA offered a candid account of the SecurID breach during a session Wednesday at SC Congress Canada in Toronto.
There remain more questions than answers after defense contractor Lockheed Martin over the weekend disclosed that its systems had been successfully breached.
There's an old adage in sports that defense wins championships. The information security industry may need to become more familiar with it.
EMC has acquired NetWitness, a fast-growing network monitoring and analysis firm that caters to a slew of Fortune 100 and government customers.
The breach of RSA's intellectual property related to its SecurID products appears to be a classic case of social engineering and network pivoting.
Enterprises are under constant seige from cyberthreats that continue to evolve to new levels of sophistication, reports Deb Radcliff.
Sign up to our newsletters
SC Magazine Articles
- U.S., China agree to cybersecurity code of conduct
- APT group exploits Adobe Flash Player zero-day in phishing operation
- Dridex banking malware spreading through new spam campaign
- Targeted attacks rise, cyber attackers spreading through networks, report says
- COA Network breached, all customer data treated as potentially compromised
- 'MEDJACK' tactic allows cyber criminals to enter healthcare networks undetected
- Samsung devices, including Galaxy S6, vulnerable to remote code execution
- Study: Organizations taking months to remediate vulnerabilities
- U.S., China agree to cybersecurity code of conduct
- Suspicious activity on LastPass network, data compromised
- 'Prized' app developers banned from distributing malware in FTC settlement
- OPM shuts down background investigation system, faces lawsuit
- Survey: Security concerns holding back orgs from adopting cloud infrastructure
- Federal Reserve's Powell concerned about security of chip and signature
- Meritus Medical Center notifies patients of improper access to data