Hiding Under the Covers
May 15th, 2013
“All warfare is based on deception” – Sun Tzu, The Art of War Attackers like stealth. Once they have compromised a system, one of their primary goals is to remain undetected. Initially, attackers used malware with pseudo Windows service names such as svchosts.exe, winlogin.exe, lsasss.exe, and others. Although these names appear to be innocuous, power [...]
New School Cyber Crooks Using Old School Malware Tricks
April 29th, 2013
You can teach old crooks new tricks, but many cyber criminals are discovering that the old tricks are working just fine. Indeed, recent security headlines feature old school malware attacks, like the MiniDuke. And old school botnets with creative new names are bum rushing the Internet. At the same time, reflective memory injection (RMI) attacks, which blend [...]
CISPA, FISMA Passed the House. Now What?
April 24th, 2013
CISPA, the Cyber Intelligence Sharing and Protection Act, passed the US House of Representatives late last week and will move to the Senate for further debate. If this rings a bell, it should. Last summer, CISPA passed the House before stalling in the face of a Senate filibuster. Of course, it was not the only [...]
Embedded Chinese Malware – Theoretical Threat or Practical Issue?
April 4th, 2013
Before we begin discussing the issue of the theoretical or practical reality in the potential threat of the Chinese embedding malware in the computer equipment they manufacture, consider this: Just a few years ago who would have thought that any government (never mind our own) would have created malware to attack another government’s computer systems [...]
What Businesses Need to Know About Cyber Security
April 3rd, 2013
What laws are in place for cyber security and are they enough? Are the Chinese the only foreign nation hackers we need to worry about? Who are the real perpetrators? How big of a problem is stolen IP for the U.S. and other countries and what is being done about it? These questions and [...]
Are Journalists Sitting Ducks?
March 26th, 2013
Remember Mat Honan – a Wired reporter that covers consumer electronics? He had his entire digital life erased last summer. His Google account was deleted, his Twitter taken over, his iPhone, iPad and MacBook erased. How about the New York Times hack? Chinese hackers allegedly broke into the paper’s systems, stole passwords and watched reporters, [...]
Advanced Volatile Threat – Is an Old Threat the New New Threat?
March 19th, 2013
“In the meantime,” wrote [1] John Prisco, president and CEO of start-up firm Triumfant, “while our attention has been diverted towards APT1-style attacks, a more sophisticated and dangerous attack vector has emerged and will likely become more and more commonplace among cyber criminals: the Advanced Volatile Threat or AVT.” Chillingly he adds, “you’ve been warned.” [...]
By: Chris Merritt - Dir. Solutions Marketing
PSA for Evernote Users: Change Your Passwords
March 4th, 2013
Another day, another breach of a popular cloud-based service. This time it was Evernote, a wildly popular personal note taking app for tablets like iOS devices (iPhones, iPads and iPod Touches) and similar Android devices. The breach was apparently discovered on Thursday 02/28 and made public on Saturday (03/02) morning. Evernote is requiring all of [...]
Time to Think New About Security
February 25th, 2013
For the good guys to get a leg up on increasingly brazen cyber criminals, we must share breach intelligence. The bad guys do it and we are at a significant disadvantage because we don’t. Or at least we don’t at the level we should. I’ve said this many times before but the road to cyber [...]
The Shape of Things to Come with Critical Infrastructure Attacks
February 13th, 2013
How many movies have you seen where the fate of humankind depends on a geeky guy sweating in front of a computer? The specific drama varies from movie to movie, but they generally include the need to: hack into a system to get critical information, crack a password, or disable an evil supercomputer bent on [...]
FREE Scanner
Free eBook
Over 80% of IT Directors say that mobile devices represent the greatest network security threat.
