Get up-to-the-minute news and opinions, plus access to a wide assortment of IT security resources that will keep you current and informed.

Keep me logged in Forgot your password?

Please wait...

Please wait...

 Advanced Persistent Threats

Are security basics getting lost under the cover of cloud and mobile?

Sean Martin, founder, Imsmartin Consulting April 12, 2012

Be wary of vendor messaging in light of today's threats, as it may be misguided. Organizations can cope with the latest concerns by applying tried-and-true security best practices.
 

Trojan targets Tibetan activist groups that use Macs

March 30, 2012

Researchers have uncovered a rare instance of so-called espionage malware for the Mac OS X platform.
 

Do you need to worry about the advanced persistent threat?

Wolfgang Kandek, CTO, Qualys February 26, 2012

Yes, advanced persistent threats are stealthy and difficult to stop, but organizations should remember that the most common attack type facing them is mass malware.
 

Microsoft to scale up its threat intelligence sharing

January 13, 2012

Microsoft plans to make available a real-time feed containing data on cyber attacks to help other organizations protect its customers.
 

Back to basics for enterprise defense

Vicki Ames, former information system security officer at a federal medical research agency • November 01, 2011

Implementing proper security practices protects against today's and tomorrow's risks, says Vicki Ames, former information system security officer at a federal medical research agency .
 

Your security will fail, but is this the right attitude?

Sean Martin, founder, imsmartin consulting October 27, 2011

IT professionals wishing to protect their systems from sophisticated attacks are receiving mixed messages of how to combat the problem. Their confusion is understandable, but the most important takeaway message is to not accept failure.
 

Would the United States win a cyberwar?

Cameron Camp, researcher for ESET • September 07, 2011

Cyberthreats are increasing, but can be mitigated with a concerted effort at educating as many people as possible.
 

Advanced persistent threats call for a reality check

Sean Martin, founder, imsmartin consulting September 07, 2011

Before seeking out help from vendors in dealing with the advanced persistent threat, security professionals must understand exactly what defines such an attack.
 

Kaspersky says McAfee report is all bark and no bite

August 18, 2011

McAfee is dealing with another round of industry disparagement over its "Shady RAT" report, which chronicled a five-year-long hacking campaign.
 

Lawmaker requests McAfee briefing to discuss Shady RAT

August 11, 2011

A California congresswoman has requested a meeting with McAfee's head researcher and his team following the security company's release last week of a 14-page report chronicling a persistent hacking campaign affecting some 50 U.S. organizations.
 

Tracing the advanced persistent threat: Interview with Joe Stewart

August 10, 2011

While McAfee's recently released "Shady RAT" report concentrated on the victims of a mass cyberespionage ring, another researcher has decided to focus his attention on the adversaries behind such attacks. In a video recorded last week at the Black Hat conference in Las Vegas, Joe Stewart of Dell SecureWorks explains how he was able to trace 60 families of custom malware thanks to error messages yielded by a "connection bouncer" tool used by the hackers to hide their tracks, but which inadvertently pointed back to about a dozen command-and-control centers hosted by ISPs in China. Two of the malware families are known to have been used in the RSA SecurID breach. "It gives you a better line on attribution," Stewart told SCMagazineUS.com.
 

Crooks opt for spear phishing despite higher upfront cost

June 30, 2011

Cybercriminals are scrapping widespread malicious email campaigns for more targeted attacks, according to a new Cisco report.
 

Flash exploits might signal APT activity

June 17, 2011

An Adobe Flash vulnerability that was fixed this week is being leveraged in widespread but targeted drive-by downloads and spear phishing attacks.
 

SC Congress Canada: RSA security architect discusses SecurID breach

June 16, 2011

The security architect of RSA offered a candid account of the SecurID breach during a session Wednesday at SC Congress Canada in Toronto.
 

Lockheed admits to hack that may portend more breaches

May 31, 2011

There remain more questions than answers after defense contractor Lockheed Martin over the weekend disclosed that its systems had been successfully breached.
 

The security industry needs fewer touchdowns, more interceptions

April 14, 2011

There's an old adage in sports that defense wins championships. The information security industry may need to become more familiar with it.
 

Itself a customer, EMC buys NetWitness for network analysis

April 04, 2011

EMC has acquired NetWitness, a fast-growing network monitoring and analysis firm that caters to a slew of Fortune 100 and government customers.
 

Flash zero-day, social engineering enable RSA SecurID hack

April 01, 2011

The breach of RSA's intellectual property related to its SecurID products appears to be a classic case of social engineering and network pivoting.
 

Cyberthreats: A long haul

December 01, 2010

Enterprises are under constant seige from cyberthreats that continue to evolve to new levels of sophistication, reports Deb Radcliff.
 
Popular Topics
4G-war Advanced Persistent Threat Anonymous Apple Threats Botnets Bring Your Own Device Carrington Effect Cyber Crime Data Breach Data Breaches Data Leakage Encryption Government Hackers Hacktivism Health Care Information Security IT Security Java Malware Mobile Devices Phishing SC Congress Canada Social Security Numbers Stolen Information