If you haven’t already come across Symantec’s new Internet Security Threat Report (ISTR), ponder this — in 2009, the world’s largest security software maker blocked an average of 100 potential attacks per second. In the article, “Cybercrime’s Financial and Geographic Growth Shows No Slowdown during the Global Economic Crisis,” last year hackers were more active than ever. According to Stephen Trilling, senior VP of Symantec’s Security Technology and Response Division, the continuing growth of more sophisticated cyber threats has become an international problem that we can no longer afford to ignore. Continue reading this post…
Targeted cyberattacks that use sophisticated social engineering techniques to exploit network vulnerabilities are creating advanced persistent threats (APT) to enterprise security models like never before. According to the article, “Targeted cyberattacks test enterprise security controls,” these threats pose a more immediate danger to sensitive data of U.S. commercial entities than a full-fledged cyberwar. George Kurtz, a long time colleague of mine and CTO of McAfee, expects these types of attacks to continue.
“These attacks have demonstrated that companies of all sectors are very lucrative targets. [APTs are] the equivalent of the modern drone on the battlefield. With pinpoint accuracy, they deliver their deadly payload, and once discovered — it is too late.”
One of the methods the article suggests to protect systems from targeted attacks is using a whitelist to allow specific traffic over its networks while excluding everything else. Continue reading this post…