Access "More Than Meets the Eye"
This article is part of the November 2006 issue of Symantec 2.0: Evaluating their recent acquisitions
You may think you're guarding your assets, but malicious insiders are using steganography to slip closely guarded company secrets out of your organization. You're confident a trusted employee can't steal research information on your company's new anti-cancer drug or plans for its next acquisition. Physical and logical controls monitor just about everything that leaves the building or the network, even encrypted messages sent to unauthorized recipients. But what about the message hidden in the family vacation photo he emailed to his "cousin"? Steganography has just bypassed all your defenses. Steganography (from the Greek root "staganos," meaning covered or secret), or stego, is the technique of hiding data in a host file. Historically, it's been within the purview of the military, criminals and researchers. In recent years, however, it's drawn a lot of interest from the business community, and with good reason. Leaks hidden using stego often go undetected or unreported, making losses hard to quantify; many of the investigated cases are kept secret under NDAs... Access >>>
Premium Content for Free.
New business opportunities feed appetite for managed VPN services
Neil Roiter explores secure remote access possibilities.
- Viewpoint: Three cheers for free and open source software
- Events: Information security conferences for November 2006
SPI Dynamics' WebInspect 6.1 Product Review
Defend against Web application attacks and improve security. Learn about SPI Dynamics' WebInspect 6.1 product installation, configuration and reporting.
Security information management review: Network Intelligence's enVision
A review of SIM product: Network Intelligence's enVision
Recent Releases: Security product briefs, November 2006
Read about security products released in November 2006.
Consul Risk Management's InSight Suite v7
Business Survival 101: How to Perform a Business Impact Analysis
by Ed Moyle, Contributor
A business impact analysis can be a manual that helps your company weather disasters.
by Dennis Fisher
John Thompson and Symantec are staking their claim as one of Silicon Valley's leading innovators. Will they succeed?
- New business opportunities feed appetite for managed VPN services
Intrusion Detection: Arbor Networks' Peakflow X 3.6
Arbor Networks' Peakflow X 3.6
Digital Rights Management: SealedMedia's Enterprise DRM 5.0
SealedMedia's Enterprise Digital Rights Management 5.0
More Than Meets the Eye
You may think you're guarding your assets, but malicious insiders are using steganography to slip closely guarded company secrets out of your organization.
Voltage SecureMail Desktop product review
Product review of Voltage Security SecureMail Desktop email encryption security tool pricing, cost, setup, configuration and password policy features.
Symantec unveils Security 2.0 initiative
by Bill Brenner, Senior News Writer
As part of Security 2.0, Symantec unveiled new products and partnerships with VeriSign and Accenture to help customers secure their databases, manage risk and fight ID theft.
Security Service Provider Product Review: MessageLabs, Postini
Get the latest news on managed security service providers MessageLabs and Postini products. Pricing information, URL filtering, malware protection and other features are discussed.
Secure Reads: The Security Risk Assessment Handbook
Read a quick review of The Security Risk Assessment Handbook.
Optical network security: Inside a fiber-optic hack
Fiber-optic networks aren't hack-proof: A savvy attacker can crack them with ease.
- Intrusion Detection: Arbor Networks' Peakflow X 3.6
Editor's Desk: The ultimate insider threat
Walk the Line
Perspectives: Pandemic planning for remote access
Shared infrastructure, such as power and water, must be operating, otherwise, enterprise business continuity plans in the event of a pandemic are useless.
Ping: Avi Rubin
Face-Off: Schneier, Ranum debate security regulations
Do federal security regulations help?
- Editor's Desk: The ultimate insider threat
More Premium Content Accessible For Free
Cloud and mobility in the enterprise has caused a heightened need for organizations to take a closer look at next generation authentication ...
Virtualization and cloud computing are part and parcel of enterprise networks today. Virtualization security, however, is still a bolt-on affair ...
Mobile device security is one of the biggest nightmares InfoSec pros face in the era of bring your own everything (BYOE). Simply banning employees ...