Hiding Under the Covers
May 15th, 2013
“All warfare is based on deception” – Sun Tzu, The Art of War Attackers like stealth. Once they have compromised a system, one of their primary goals is to remain undetected. Initially, attackers used malware with pseudo Windows service names such as svchosts.exe, winlogin.exe, lsasss.exe, and others. Although these names appear to be innocuous, power [...]
New School Cyber Crooks Using Old School Malware Tricks
April 29th, 2013
You can teach old crooks new tricks, but many cyber criminals are discovering that the old tricks are working just fine. Indeed, recent security headlines feature old school malware attacks, like the MiniDuke. And old school botnets with creative new names are bum rushing the Internet. At the same time, reflective memory injection (RMI) attacks, which blend [...]
Advanced Volatile Threat – Is an Old Threat the New New Threat?
March 19th, 2013
“In the meantime,” wrote [1] John Prisco, president and CEO of start-up firm Triumfant, “while our attention has been diverted towards APT1-style attacks, a more sophisticated and dangerous attack vector has emerged and will likely become more and more commonplace among cyber criminals: the Advanced Volatile Threat or AVT.” Chillingly he adds, “you’ve been warned.” [...]
No Love for IT This Valentine’s Day
February 12th, 2013
It’s going to be a rough Valentine’s Day for many IT admins this month. With ongoing issues with Java and 12 bulletins from Microsoft, including 5 critical issues and many restarts, it’s going to be a very disruptive Patch Tuesday. It’s disturbing to note how many different Microsoft platforms are critically affected this month. Everything [...]
Cyber Security Efforts in the U.S.
October 19th, 2010
Recognizing October as National Cyber security Awareness Month, Lumension Chairman and CEO, Pat Clawson, invited a handful of IT security industry leaders for 30 minutes of frank conversation on what is being done at the government level to reign in national cyber security efforts in the U.S.
IT Risk and Social Web Leverage
September 21st, 2010
Leverage in all forms is a powerful thing. For both good and bad. The popularity and speed of social websites provide an amazing degree of leverage for both businesses and hackers. The Twitter OnMouseOver JavaScript flaw and the resulting flood of exploitive tweets is a great example of the latter. In a matter of hours, thousands [...]
July 2010 Patch Tuesday Security Briefing
July 14th, 2010
Microsoft announced that they have released four security bulletins to address five separate current vulnerabilities. Especially concerning this month is the fact that all three bulletins rated “critical” also rate a “1” on Microsoft’s exploitability index (with MS10-042 addressing a vulnerability that is actively being exploited.) Additionally, MS10-043 requires a reboot and affects Windows Server [...]
A Double Whammy Patch Tuesday from Microsoft and Oracle
July 13th, 2010
Microsoft announced that they have released four security bulletins to address five separate current vulnerabilities. Especially concerning this month is the fact that all three bulletins rated “critical” also rate a “1” on Microsoft’s exploitability index (with MS10-042 addressing a vulnerability that is actively being exploited.) Additionally, MS10-043 requires a reboot and affects Windows Server [...]
By: Chris Merritt - Dir. Solutions Marketing
Time to Ditch WinXP SP2!
July 12th, 2010
I recently helped a friend set up her new Win7 box – it was a breeze, especially when compared to (or perhaps because of) the Vista lappie I set up for her a couple of years back. We had to do it because her old box was still running WinXP SP2 – and we couldn’t [...]
2010 Predictions Redux- 2nd Half Predictions and Looming Threats
June 22nd, 2010
As we ended 2009 and entered 2010, many predicted that 2010 was poised to go down in history as “the year of insider threats”. It was not a risky prediction to make considering our economic peril and our industries continued unwavering albeit misplaced focus on the gateway rather then endpoint security. The Worldwide State of [...]
FREE Scanner
Free eBook
Over 80% of IT Directors say that mobile devices represent a security threat.
