Much has already been written about the impact of Operation Aurora on the threat landscape. The international attacks on some of the world’s leading Internet companies reminded us once again of the vulnerabilities within interconnected networks that can be accessed from virtually anywhere in the world.
These attacks also illustrate the growing need for, and strength of, application whitelisting solutions. As Aurora first gained access by attacking an endpoint within Google’s network to trick a user into installing malware, even leading antivirus software designed to detect such viruses and malicious code couldn’t stop it from running within the network. Continue reading this post…
For years, antivirus engines have been the primary defense against viruses, worms, Trojans, bots, and all other forms of malware designed to gain access to our emails, social networking sites, and corporate networks. While collecting their signatures from honeypots and gathering self-propagating threats has been useful in detecting malicious behavior in the past, things have changed. Today’s threats aren’t propagating. They’re using social engineering to lure their victims instead, thus breaking the traditional AV model. 
With industrialized hacking on the rise, organizations serious about protecting their data must take proactive measures if they expect to win the war against cybercriminals. That’s Imperva CTO Amichai Shulman’s straight-forward message to applications owners everywhere and lists some real trends that are threatening businesses everywhere. My take, this is a good list, but while proactive is good, protective is better.