One of the hottest topics in cyberspace is the “Protect Cyberspace as a National Asset Act” (PCNAA), a bill the U.S. Senate is considering that would help strengthen the mechanisms by which government and private industry protect the safety and security of the Internet. According to the article, “Plan cyberwar defenses now, before any attacks succeed,” the flaws in America’s counterterrorism strategy continue to leave our cyber-communications network vulnerable to attacks aimed at breaching our personal privacy, stealing our secrets, and even physically harming us.
While it is good news that Congress is taking proactive steps before things explode, their solution to consolidate power within the government to legally monitor and respond to cyber threats as they occur is no way to get on top of the actual problem. Instead of proactively addressing the situation with a reactive set of solutions, they need to carry these measures through with proactive solutions that prevent the situations in the first place. Continue reading this post…
Laser focus attacks, new exploits, and ongoing security woes continue to leave many organizations in disarray about how to defend their networks against highly targeted cyber-attacks. Even the government, which has taken a hard stance on protecting our digital infrastructure, has been slow to move. Here were some of the top security stories from May 2010. Continue reading this post…
A recent study by NSS Labs revealed just how ineffective some of today’s top anti-virus software solutions are at stopping one of the most highly profiled and successful cyber attacks of 2010. According to the article, “More Anti-Virus Fail,” NSS Labs created variants of the Operation Aurora attack to see how many AV products caught the malicious code. The result: Only one out of the seven products tested correctly thwarted multiple exploits and malicious code payloads.
This says a lot about the current state of the AV industry. With so many new viruses and malware variants successfully bypassing security solutions, it is time to shift our way of thinking about how to protect our networks from new and unknown forms of malware and viruses.
With online crime losses doubling in 2009, we simply can’t afford to rely solely on AV software to protect our critical infrastructures from the countless number of malware variants out there. If these solutions are already losing the battle against highly visible malware, I can’t imagine the success rate of stopping unknown attacks would be any better.
As an example of how the industry currently looks at these problems, NSS Labs’ CTO, Vikram Phatak, said: “There are many ways to possibly exploit a vulnerability, and rather than focusing on every attack method, vendors need to focus on [shielding] the vulnerability itself.”
Vikram is correct in pointing out that you can’t defend against every attack method, but focusing on protecting against exploitation of the vulnerability is reactive, and a failure as well. This still leaves companies open to newly discovered vulnerabilities, relies on reactive patching and security system updates, and will ultimately fall on its face. We need to completely rethink our approach to endpoint security that begins with a foundation of whitelisting that would defeat new malware completely independently of the vulnerability or attack.
With industrialized hacking on the rise, organizations serious about protecting their data must take proactive measures if they expect to win the war against cybercriminals. That’s Imperva CTO Amichai Shulman’s straight-forward message to applications owners everywhere and lists some real trends that are threatening businesses everywhere. My take, this is a good list, but while proactive is good, protective is better.
In this week’s TechJournal South article, “Industrialized hacking tops five data security trends for 2010″, Mr. Shulman’s data security firm listed its top five security predictions for 2010: Continue reading this post…
I recently wrote about a the 60 Minutes special on cyber security, and how a former chief of national intelligence didn’t believe the U.S. is prepared for a sophisticated attack that could bring down a major power grid. Opinions varied about the special itself, but the one thing people shouldn’t overlook is that cyber threats are real and that the infrastructure that protects our power grids needs to be defended.
The spotlight on this need continued last week when President Obama issued a statement saying December was Critical Infrastructure Protection (CIP) Month. Proclamations like these won’t change the world. Our systems won’t magically become secure, and most of the people responsible for these systems are already working hard to defend them.
That said, this proclamation adds to the increased awareness of the need for infrastructure protection against all attacks including cyber attacks. Continue reading this post…