Security Management Strategies for the CIOAccess "Preventing spyware and third-party attacks"
This article is part of the October 2004 issue of Help! Evaluating AV solutions and tech support
About a year ago, Ben Stein, VP of IT infrastructure at online trader OptionsXpress, concluded that spyware was more than just a nuisance--it had emerged as a significant security threat. "There was nothing huge and new; it reached a critical mass," says Stein. "These are potentially installed on machines where customer service people are logging into customer accounts using internal applications." Spyware is an umbrella term for two primary applications: annoying but legitimate adware programs, and clearly malicious tools like keystroke loggers, backdoors and sophisticated Trojans. "Basically, it's anything installed without the user's knowledge, anything with no known benefit to the user, just to a third party," Stein says. The common characteristic among these programs is that they give third parties unauthorized access to a company's PCs and, by extension, its network. Most home users would be alarmed to find a keystroke-logger like ISpyNow or a malicious Trojan like NetBus on their PC. But the same users may be indifferent -- or even appreciative -- ... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Antivirus vendor review 2004: Is AV customer support dying?
by Ed Skoudis, CISSP
Ed Skoudis subjects five of the leading antivirus vendors to customer support scenarios. Learn how well each of the AV vendors responded to its customers' needs.
-
The self-defending network: Is it real technology or market speak?
by Eric Cole, Contributor
Cisco and other security vendors are touting the "self-defending" network. Is it real technology or market-speak?
-
Antivirus vendor review 2004: Is AV customer support dying?
by Ed Skoudis, CISSP
-
-
The downside of cybercrime investigation and prosecution
by Carole Fennelly, Contributing Writer
Prosecuting cybercrime puts your organization -- and your security -- on the hot seat.
-
Preventing spyware and third-party attacks
by David Geer, Contributor
Is your IT infrastructure prepared for spyware? In this feature, learn how to prepare your enterprise for spyware and how best to avoid these third-party attacks.
-
The downside of cybercrime investigation and prosecution
by Carole Fennelly, Contributing Writer
-
Columns
-
Buying security software: The devil's in the details
by Lawrence Walsh
When purchasing new security software, be sure to check references and quality controls first. You don't want to be stuck if something goes wrong.
-
Identifying VoIP phone security risks, attacks
by Marcus Ranum, Contributor
If the VoIP phone keeps ringing, it's probably spam.
-
The security appliance market: Just a myth?
by Pete Lindstrom, Contributor
Vendors often package their appliances to sell through their company, it makes no sense for them to stock pile into a marketplace. Pete Lindstrom explains.
-
Benefits of encryption: Improving your enterprise IT security structure
by Jay Beale, Contributor
Learn the benefits of encryption and how it can be one of the only true secure ways to protect your enterprise.
-
Application Vulnerability Development Language: Why is it important for security?
by Andrew Briney
Network security is like a U.N. meeting without the upside-down headphones, writes Editorial Director Andy Briney in this column.
-
Buying security software: The devil's in the details
by Lawrence Walsh
More Premium Content Accessible For Free
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...
Emerging threat detection techniques and products
E-Handbook
Advanced persistent threat (APT) has been a used and abused term in the security industry, but security experts say targeted attacks are a growing ...
The rapid evolution of MDM solutions
E-Zine
Mobile device management (MDM) continues to grow at a feverish pace, both in terms of adoption and mobile security features. BYOD policies, and the ...