Security Management Strategies for the CIOAccess "Rootkit detection and removal know-how"
This article is part of the September 2007 issue of How to dig out rootkits
Difficult to detect and nearly impossible to remove, rootkits may already own your systems. Rootkit is a scary word to a CIO. It conjures visions of worms eating through the network, backdoors opened to sensitive or proprietary information, users unaware of their credit card numbers being stolen, and the stifling cost of incident response. Rootkits are discussed in hushed tones, as if the mere word will summon one from the ether. At the end of the day, rootkits are like any other malware, but tougher to detect and remove. Competitive corporations, organized crime and terrorists are using these tools to attack networks and steal data. While customer data theft can cost a company millions, insider threats are the major problem. More than 70 percent of a company's value may be held in its intellectual property assets, a prime target for competitive intelligence gathering. Rootkits can be used to steal information without detection, which is what makes them so dangerous. Bad guys design rootkits to stay hidden for years, so they have continued access to ... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Database Security: Oracle Database Vault
Oracle Database Vault
-
At Your Service: Atlas Vigilar
Vigilar's Atlas
-
What CISOs need to know about computer forensics
With computer forensics needed for civil litigation, human resources investigations and criminal cases, organizations need to ensure they're prepared and evidence is preserved. This feature details steps involved in computer forensics, common missteps, and forensics resources.
-
Consolidation's impact on best-of-breed security
Standalone security vendors are attractive targets for large infrastructure players such as EMC. This feature looks at the consolidation in the security market and the potential for best-of-breed security to eventually disolve into a mashup of suites and services by big vendors like EMC, IBM, Microsoft, and HP.
-
Intrusion Prevention: Stonesoft's SGI-2000S IPS
SGI-2000S IPS
-
HIPS
CA Host-Based Intrusion Prevention System
-
Database Security: Oracle Database Vault
-
-
Malware Analysis
Norman SandBox Analyzer Pro
-
Rootkit detection and removal know-how
Get advice on how to detect malware and rootkits and the best ways to achieve rootkit removal and prevent hacker attacks.
-
Logical, physical security integration challenges
Integrating physical and IT security can reap considerable benefits for an organization, including enhanced efficiency and compliance plus improved security. But convergence isn't easy. Challenges include bringing the physical and IT security teams together, combining heterogenous systems, and upgrading a patchwork of physical access systems.
-
SIM and NBA product combination is powerful
The recent announcement that Mazu Networks, a provider of network-based analysis (NBA) tools, and eIQnetworks, a supplier of SIM products, underscores the trend towards convergence in the NBA and SIM markets. The value proposition is clear: two useful network/security data analysis tools in one integrated package.
-
Virtualization
BufferZone Enterprise
-
Malware Analysis
-
Columns
-
Bruce Schneier, Marcus Ranum debate home users and security
by Marcus J. Ranum, Contributor
Bruce Schneier and Marcus Ranum debate how to deal with the security problems posed by home computer users. Both dismiss user education, but Schneier believes ISPs should be forced to become IT departments while Ranum argues that building simpler systems is not the answer.
-
Ping: Nate Lawson
Nate Lawson
-
Perspectives: The Lesson of Estonia
Prof. Dorothy Denning writes the cyberattacks on Estonia and how they took activism to a new level.
-
Time to take cyberterrorism talk seriously
With the power of botnets, SCADA systems becoming less proprietary and the recent attacks on Estonia, have we reached an inflection point where we need to take the likelihood of cyberterrorism?
- Viewpoint: Correlate SIMs and log management
-
Bruce Schneier, Marcus Ranum debate home users and security
by Marcus J. Ranum, Contributor
More Premium Content Accessible For Free
Next-generation firewalls play by new rules
E-Zine
Firewalls started their journey to the next generation at about the same time as the Star Trek TV series. While the products have advanced with ...
Developing your endpoint security management transition plan
E-Handbook
This TechGuide will help you develop your endpoint security management transition plan. Articles focus on overcoming the challenges of Web-based ...
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...