Home > How to assess and mitigate information security threats
Book Chapter:
EMAIL THIS LICENSING & REPRINTS

How to assess and mitigate information security threats

26 Jan 2007 | SearchSecurity.com

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

Excerpted from Chapter 3: The Life Cycle of Internet Access Protection Systems, from the eBook The Shortcut Guide to Protecting Business Internet Usage, by Dan Sullivan, this seven-tip collection provides an in-depth look at the information security threat types with which enterprise security professionals must contend.

Various information security threats -- worms, rootkits, Trojans, denial-of -service attacks -- and how they operate are all reviewed. Hacking tools and tactics, like social engineering, are also covered.

Once you're up-to-speed on the myriad information security threats and ways to mitigate them, you can review guidelines for determining which cost-effective countermeasures will best suit your enterprise needs.


How to assess and mitigate information security threats
  Introduction
  Malware: The ever-evolving threat
  Network-based attacks
  Information theft and cryptographic attacks
  Attacks targeted to specific applications
  Social engineering
  Threats to physical security
  Balancing the cost and benefits of countermeasures


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Viruses, Worms and Other Malware
New defenses for automated SQL injection attacks
Information security book excerpts and reviews
Yahoo, McAfee to warn users of dangerous websites
Botnets and ethics
Interview: Jim Kirkhope of NCR
Trojan downloaders, droppers skyrocket, Microsoft says
New phishing, Zeus Trojan technique spreads crimeware
Researchers uncover tool used to infect websites, spread malware
RSA 2008: Defeating botnets
Malware found on HP ProLiant server USB keys

Spyware, Adware and Trojans
Stolen data ending up in Google cache, say researchers
Information security book excerpts and reviews
Yahoo, McAfee to warn users of dangerous websites
Botnets and ethics
Security Services: Webroot Email Security SaaS
Interview: Jim Kirkhope of NCR
Trojan downloaders, droppers skyrocket, Microsoft says
Kraken botnet balloons to dangerous levels
New Storm attack exploits April Fool's Day
Panda latest AV firm trying to adapt with the times
Spyware, Adware and Trojans Research

Application Attacks (Buffer Overflows, Cross-Site Scripting)
Tips for SQL injection protection
Microsoft addresses XSS in Internet Explorer
Internet Explorer open to spoofing, scripting attacks
Software still plagued with security holes, researcher says
Microsoft tools won't be quick fix for SQL injection attacks
Microsoft identifies tools to address SQL injection attacks
New defenses for automated SQL injection attacks
Alarming SQL injection attacks
Adobe Flash Player flaw previously patched, Symantec says
Adobe zero day flaw being actively exploited in wild
Application Attacks (Buffer Overflows, Cross-Site Scripting) Research

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
bot worm  (SearchSecurity.com)
directory traversal  (SearchSecurity.com)
Kraken  (SearchSecurity.com)
man in the browser  (SearchSecurity.com)
Mytob  (SearchSecurity.com)
polymorphic malware  (SearchSecurity.com)
RavMonE virus  (SearchSecurity.com)
RFID virus  (SearchSecurity.com)
Rock Phish  (SearchSecurity.com)
Zotob  (SearchSecurity.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary


TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineWebcastsWhite PapersLearningAdviceTopicsEventsAbout Us

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2003 - 2008, TechTarget | Read our Privacy Policy
  TechTarget - The IT Media ROI Experts