Optimal Security : the Lumension Blog

What’s all the fuss about the latest changes on Facebook? Simply put, the changes mean that nearly everything that you place on your Facebook page can now potentially be made available to anyone surfing the Internet.
The latest Facebook changes are purported to be an enhancement to make the social networking site easier for people who are looking for [...]

When you begin to dig into the intricacies of accurately projecting what the threat landscape will look like in the next year, it is actually relatively easy in some respects. Just look at failing defensive technologies and you’ll have a good indication of what will transpire in our network environments. Let me explain.
The best example [...]

The IT security community has been buzzing about a new zero-day exploit for Adobe that is reportedly in the wild.  It is now being investigated by Adobe and initial details are available on Adobe’s blog.
The malicious PDF files are reportedly being used in targeted attacks with the PDF being sent as an email attachment and [...]

Paul Henry, Forensics and Security Analyst, provides his insights in this December Patch Tuesday Security Briefing.

The latest Internet Explorer zero day threat will unfortunately catch many off guard and will have a significant impact on many organizations that are still relying on outdated defenses.
For the past decade or perhaps longer, our way of dealing with threats has been to try to filter our way out of trouble. However, with our [...]

Paul Henry, Forensics and Security Analyst, provides his insights in this November Patch Tuesday Security Briefing.

It certainly seems that not a week goes by without hearing about yet another attack on Facebook users. Last week it was a phishing scam driven by a botnet, and this week, we have two new and different phishing scams — one cleverly tricking users into revealing their passwords and another installing malware that quietly [...]

As far back as a decade ago, attacks consisted of simultaneously launching strikes utilizing multiple vulnerabilities to gain a foothold in a target network and then following up with privilege escalation attacks to make it more worthwhile for the bad guys. For many years, we simply referred to these attacks as blended threats. While “Chained [...]

With Twitter expected to top 18 million users by the end of this year, users of the widely utilized social media tool are seeing first-hand the ugly side of this popular platform.  Another Twitter phishing scam reared its ugly head this week, aggressively sending out direct message spam, hoping to lure unsuspecting users to click [...]

Paul Henry, Forensics and Security Analyst, provides his insights in this October Patch Tuesday Security Briefing.