CoreTrace WhiteSpace

The Application Whitelisting and Security Weblog

Top endpoint security stories for July 2010 — Targeted attacks heat up in July, broaden scope of intended corporate victims

August 4, 2010 at 11:55 am, by Toney Jennings

If targeted cyber attacks weren’t already one of the year’s top security concerns, a new study revealed that they’re no longer limiting their focus on the corporate giants of the world. They’re becoming the norm for midsized businesses, as well. This was just one of several recent reports and newly surfaced malware like the Stuxnet worm that have security professionals on high alert. With more stealthier attacks aimed at beating forensic efforts, cyber crime continues to have a growing impact on organizations and their bottom line. Here are some of the top security stories from July 2010. Continue reading this post…

U.S. proactive cybersecurity measures lack proactive solutions

June 30, 2010 at 7:14 am, by Toney Jennings

One of the hottest topics in cyberspace is the “Protect Cyberspace as a National Asset Act” (PCNAA), a bill the U.S. Senate is considering that would help strengthen the mechanisms by which government and private industry protect the safety and security of the Internet. According to the article, “Plan cyberwar defenses now, before any attacks succeed,” the flaws in America’s counterterrorism strategy continue to leave our cyber-communications network vulnerable to attacks aimed at breaching our personal privacy, stealing our secrets, and even physically harming us.

While it is good news that Congress is taking proactive steps before things explode, their solution to consolidate power within the government to legally monitor and respond to cyber threats as they occur is no way to get on top of the actual problem. Instead of proactively addressing the situation with a reactive set of solutions, they need to carry these measures through with proactive solutions that prevent the situations in the first place. Continue reading this post…

Custom malware is the foundation of today’s targeted cyber attacks… Just ask the Treasury!

May 12, 2010 at 10:47 am, by Toney Jennings

Cyber crime has evolved from mass attacks intended to wreck havoc and steal as much data as possible to highly targeted attacks looking for specific information from an organization. Custom malware, designed to bypass legacy endpoint security, forms the foundation of these attacks. As a result, these calculated attacks are becoming more dangerous for the businesses and government entities hackers are targeting. Continue reading this post…

Top endpoint security stories for April 2010 – April sees cyber crime in full bloom

May 4, 2010 at 10:31 am, by Toney Jennings

April showers may bring May flowers, but the Internet also saw something else in full bloom — cyber crime. Computer systems around the globe experienced a variety of problems in April ranging from more fake antivirus software to malicious code that avoids detection from search engine Web crawlers. But none were as big as a well-publicized faulty security update that crashed thousands of computers and became a public relations nightmare for one of the world’s top security software makers. Here were some of the top security stories from April 2010: Continue reading this post…

Are we in a cyberwar or not?

March 11, 2010 at 11:16 am, by Toney Jennings

I continue to hear various viewpoints about whether or not we are in a cyberwar. Recently, our friend, Howard Schmidt was quoted in the article, “White House Cyber Czar: ‘We are not in a cyberwar’,” that we are not in a cyberwar. His stance is cyberwar is “a terrible metaphor” where there are no winners. While I can certainly respect that, there are also a number of opposing views and supporting statistics that say otherwise.

One comes from the former director of national intelligence, Michael McConnell, who recently testified in Congress by saying the country is already in the midst of a cyberwar — and losing it at that. This comes on the heels of growing speculation from experts that say the Chinese government was behind the recent cyberattacks targeting U.S. government Web sites, Google, and dozens of other U.S. companies. This, of course, raises the question: “If we aren’t already in a cyberwar, are we headed toward one?”

Larry Wortzel, a member of the U.S.-China Economic and Security Review Commission, said in the article, “Expert says Chinese government likely behind massive cyberattacks,” that whether the Chinese government or independent hackers in China were responsible for the recent attacks, we are seeing “persistent, systematic and sophisticated attacks” that are clearly targeting U.S. military, technical and scientific information. Similar trends released at RSA Conference and reported in the story, “Chinese hacks attacks said likely to recur,” said an increase in Internet attacks from China could double if the pace during the first two months of 2010 continues.

People often ask me, given my military background and experience fighting cyber crime, are we in a cyberwar or not? To me, whether or not we are is irrelevant. What defines cyber warfare? What’s important is that we are aware of what is going on and our government and the private sector are doing everything they can to ensure our cyber security. I commended President Obama last October when he said that cyber threats were one of the most serious economic and national security challenges we face as a nation. The fact is, cyber crime has already cost U.S. companies billions of dollars. If these trends aren’t stopped, cyber crime will continue to have a growing impact on both our economy and global competitiveness.

Ensuring our cyber security comes down to one thing — preparedness. The more we understand, and the more proactive steps the government and private sector take independently and collectively, are vital to defending our networks, national assets and critical infrastructures from any type of attack, whether we are in a cyberwar or not.