Marcus Carey, security researcher at Rapid7
December 03, 2012
Threat of the month

Threat of the month: Natural disasters

Threat of the month: pdf.exe.zip files
Threat of the month: pdf.exe.zip files

What is it?

With any geographical location there comes the possibility of natural disasters, such as Hurricane Sandy. 

How does it work?

Natural disasters can result in the loss of confidentiality, integrity and availability of information and assets. Winter storms and earthquakes can cause massive power outages forcing network outages, which can result in massive losses of availability for the businesses. 

Should I be worried?

Many organizations don't account for natural disaster and, as a result, can be severely impacted.

How can I prevent it?

Organizations must develop realistic disaster recovery (DR) programs. However, having a DR program is only half the battle. Organizations must test their DR plan via simulations. Businesses should look into cloud services, which have changed the game when it comes to scalability of services. When creating a DR plan, one should keep Murphy's Law in mind: Anything that can go wrong, will go wrong.

From the December 2012 Issue of SCMagazine »
Related Articles
Related Topics

More in Threat of the Month

Threat of the month: pdf.exe.zip files

Threat of the month: pdf.exe.zip files

For our May issue's "threat of the month," we focused on pdf.exe.zip files, an old-style email executable attachment attack.

Threat of the month: Universal Plug and Play vulnerabilities

Threat of the month: Universal Plug and Play ...

April's "threat of the month" are Universal Plug and Play (UPnP) vulnerabilities, which allow attackers to execute arbitrary code.

Threat of the month: IE exploits

Threat of the month: IE exploits

IE exploits, a zero-day vulnerability that affects various Internet Explorer versions, are February's "Threat of the month."