Access "New ways to navigate advanced security threats"
This article is part of the February 2014 Vol. 16 / No. 1 issue of Cyberthreats: Know thy enemy
One month into 2014 and we have already faced landmark data breaches of major U.S. retailer Target Corp. and online search turned media company, Yahoo. The extent of both attacks is further reaching than first (publicly) thought in December. Target admits that it faced a malware attack that exposed the credit and debit card data of 40 million, make that 70 million, no wait, it's 110 million customers. The fallout continues as the public at large gives a collective shrug and considers returning to cash when they shop at the once-beloved retailer. Kathleen Richards These advanced threats will keep on coming in 2014. "Defending a network has never been harder," says Johannes B. Ullrich, dean of research at the SANS Technology Institute and the Internet Storm Center. Ullrich examines the advanced threat techniques to watch out for this year. High on his list, more watering hole attacks and sophisticated spear phishing, driven by social engineering and automation to produce mass customization of emails as malware lures. Meanwhile, global scanning services and ... Access >>>
Premium Content for Free.
Beyond the Page: Cyberthreats
by Johannes B. Ullrich
This February 2014 Information Security magazine supplement takes a deeper look into cyberthreats and examines advanced threat techniques including watering hole attacks and sophisticated spear phishing.
The changing face of advanced malware detection
by David Strom, Contributor
It's a new year of advanced threats, malicious code and holes to plug, but security teams are fighting back with help from global services.
- Beyond the Page: Cyberthreats by Johannes B. Ullrich
Cyberthreats: Know thy enemy in 2014
by Johannes B. Ullrich
There's no place to hide as new cyberthreats and tried-and-true hacking techniques test security teams.
Tor networks: Stop employees from touring the deep Web
by Adam Rice
Are employees using Tor to view blocked Web sites, or mining Bitcoins on corporate resources? Sinister or not, it needs to stop.
- Cyberthreats: Know thy enemy in 2014 by Johannes B. Ullrich
New ways to navigate advanced security threats
by Kathleen Richards, features editor
One month into the new year and we have already faced landmark data breaches. The advanced threats will keep on coming in 2014.
New devices, new threats: How to evaluate the devices we love
by Kevin Johnson
The influx of iPad and Android tablets and smartphones after the holidays can really challenge network security in organizations that support BYOD.
Mobile security report: Data on devices
by Kathleen Richards
New survey shows the battle between corporate-issued devices versus personally owned smartphones and tablets is too close to call.
Fixing the math in the wake of Snowden's NSA surveillance reveal
by Robert Richardson, Editorial Director
Throwing a curve: Is there a potential weakening of security products and services courtesy of the NSA and RSA BSafe?
- New ways to navigate advanced security threats by Kathleen Richards, features editor
More Premium Content Accessible For Free
Strategies for a successful data protection program
Deploying data protection technologies properly requires a lot of time and patience. While most firms can get started by using preconfigured policies...
Devices, data and how enterprise mobile management reconciles the two
The bring your own device (BYOD) movement, which has flooded the enterprise with employee-owned smartphones, tablets, phablets and purse-sized ...
Putting security on auto-pilot: What works, what doesn't
For so long penetration testing meant hiring an expert to use skill and savvy to try to infiltrate the company system. But, as with most ...