Information Security

Defending the digital infrastructure

In This Issue

iSTOCK/GETTY IMAGES

Evaluate

Beyond the Page: Cyberthreats

This February 2014 Information Security magazine supplement takes a deeper look into cyberthreats and examines advanced threat techniques including watering hole attacks and sophisticated spear phishing.

By

Johannes B. Ullrich

This February 2014 Information Security magazine (ISM) supplement goes Beyond the Pages of ISM to take a deeper look into cyberthreats and examines advanced threat techniques including watering hole attacks and sophisticated spear phishing.

Information Security feature: Cyberthreats: Know thy enemy in 2014
“Defending a network has never been harder,” says Johannes B. Ullrich, dean of research at the SANS Technology Institute and the Internet Storm Center. In this feature, Ullrich examines the advanced threat techniques to watch out for this year.

Beyond the Page is a multimedia supplement to Information Security magazine. This concise package of material -- feature article, webcast and practical technical tip from our experts and contributors -- provides security pros and decision makers the in-depth information they need for implementation, management or troubleshooting.

Video: New, sophisticated attacks evade detection
Enterprises must protect themselves from sophisticated attacks that can escape notice by host-based detection systems and steal millions. Ullrich shows you how.

Technical Tip: Improving security with DMARC email authentication
Johannes B. Ullrich demonstrates how domain-based messaging authentication, reporting and conformance, or DMARC, can enhance your email security.

About the Contributor
Johannes B. Ullrich, Ph.D., GIAC, GCIA and GWEB, is the dean of research at the SANS Technology Institute and head researcher at its Internet Storm Center. Follow him on twitter @johullrich.

Article 1 of 8Next Article

This was last published in February 2014

Dig Deeper on Emerging cyberattacks and threats

All
News
Get Started
Evaluate
Manage
Problem Solve

Start the conversation

Send me notifications when other members comment.

Get More Information Security

Access to all of our back issues View All

E-Zine | May 2002

Special report: Cyber menace
E-Zine | Apr 2002

Password pain relief
E-Zine | Mar 2002

Smart cards: Will security help the U.S. get on track with the rest of the world?
E-Zine | Feb 2002

Network forensics analysis: The future of real-time monitoring?

E-Zine | Dec 2003

Celebrating the best information security processes, people, policy and products
E-Zine | Nov 2003

Comeback kid: Sanjay Kumar on Computer Associates' security strategy
E-Zine | Oct 2003

Chain of command: Inside Prudential's security management program
E-Zine | Sep 2003

Women of vision: How 25 leaders are shaping the industry's future

E-Zine | Dec 2004

Products of the year 2004: Only the best win
E-Zine | Nov 2004

Delivering SSO: Postal Service simplifies passwords
E-Zine | Oct 2004

Help! Evaluating AV solutions and tech support
E-Zine | Sep 2004

Mission critical: Securing the critical national infrastructure

E-Zine | Dec 2005

Top forensics tools for tracking down cybercriminals
E-Zine | Nov 2005

Comparing five of the top network-based inline IPS appliances
E-Zine | Oct 2005

Security 7 Award winners unmasked
E-Zine | Sep 2005

What's the best IT security advice you've ever received?

E-Zine | Dec 2006

What's your biggest information security concern?
E-Zine | Nov 2006

Symantec 2.0: Evaluating their recent acquisitions
E-Zine | Oct 2006

Security 7 Award winners: Simply the best
E-Zine | Sep 2006

The power of SIMs for visibility and compliance

E-Zine | Jan 2008

Reflections on the impact of Sarbanes-Oxley
E-Zine | Nov 2007

Comparing seven top integrated endpoint security suites
E-Zine | Oct 2007

Tips from the 2007 Security 7 Awards
E-Zine | Sep 2007

How to dig out rootkits

E-Zine | Nov 2008

Security researchers on biometrics, insider threats, encryption and virtualization
E-Zine | Oct 2008

Security 7 Award winners sound off on key information security issues
E-Zine | Sep 2008

Lessons learned from good and bad NAC implementations
E-Zine | Aug 2008

Everything you need to know about today's information security trends

E-Zine | Dec 2009

Step-by-step guide to avoiding basic database security risks
E-Zine | Nov 2009

How to implement a change management that works and reduces security risks
E-Zine | Oct 2009

Winners of Information Security magazine's Security 7 Award
E-Zine | Sep 2009

2009 Security Readers' Choice Awards

E-Zine | Dec 2010

Inside the Data Accountability and Trust Act and what it means for security
E-Zine | Nov 2010

Meeting cloud computing compliance mandates
E-Zine | Oct 2010

Security 7 Award winners and the latest on effective security awareness
E-Zine | Sep 2010

2010 Security Readers' Choice Awards

E-Zine | Dec 2011

An insider look at the Windows Vista security review
E-Zine | Nov 2011

Effectively navigating the security risk assessment process
E-Zine | Oct 2011

Spotlight on top security trends of 2011 and Security 7 award winners
E-Zine | Sep 2011

The top 2011 security products: Information Security Readers' Choice Awards

E-Zine | Nov 2012

Market for vulnerability information grows
E-Zine | Oct 2012

Seven Outstanding Security Pros in 2012
E-Zine | Oct 2012

Security Readers' Choice Awards 2012: Your picks for the best security products
E-Zine | Sep 2012

Setting up for BYOD success with enterprise mobile management and mobile application security

E-Zine | Dec 2013

2013 Security 7 award winners revealed
E-Zine | Nov 2013

Virtualization security dynamics get old, changes ahead
E-Zine | Oct 2013

Insider edition: Layering mobile security for greater control
E-Zine | Oct 2013

Security Readers' Choice Awards 2013

E-Zine | Dec 2014

2014 Security 7 Award Winners
E-Zine | Nov 2014

Security Readers' Choice Awards 2014
E-Zine | Oct 2014

Devices, data and how enterprise mobile management reconciles the two
E-Zine | Oct 2014

Continuous monitoring program demystified

E-Zine | Oct 2015

Emerging security threats from every which way
E-Zine | Sep 2015

Five ways CIOs build hybrid cloud security
E-Zine | Aug 2015

Is third-party vendor management the next IAM frontier?
E-Zine | Jul 2015

Insider Edition: Advanced security monitoring scrubs networks clean

E-Zine | Dec 2016

Dedicated CISO job still open to debate
E-Zine | Nov 2016

Insider Edition: Improved threat detection and incident response
E-Zine | Oct 2016

Identity of things moves beyond manufacturing
E-Zine | Sep 2016

Cloud governance model still behind services

E-Zine | Dec 2017

Will it last? The marriage between UBA tools and SIEM
E-Zine | Nov 2017

Next-gen SOC: What's on your automation roadmap?
E-Zine | Oct 2017

What does a CISO do now? It's a changing, increasingly vital role
E-Zine | Oct 2017

Growing data protection risks and how to manage them

E-Zine | Dec 2018

Allure of the threat hunter draws companies large and small
E-Zine | Oct 2018

User behavior analytics tackles cloud, hybrid environments
E-Zine | Aug 2018

Security data scientists on how to make your data useful
E-Zine | Jun 2018

CISOs face the IoT security risks of stranger things

E-Zine | Aug 2019

Managing identity and access well unlocks strong security
E-Zine | May 2019

Conquering cloud security threats with awareness and tools
E-Zine | Feb 2019

CISOs build cybersecurity business case amid attack onslaught

-ADS BY GOOGLE

SearchCloudSecurity

Defining and evaluating SOC as a service

As cloud use increases, many enterprises outsource some security operations center functions. Evaluate if SOCaaS is the best ...
How to beef up S3 bucket security to prevent a breach

Security teams have plenty of tools at their disposal to help their organizations achieve and maintain S3 bucket security. Learn ...
How security teams benefit from traffic mirroring in the cloud

Enterprises with the resources to deploy traffic mirroring are gaining security benefits. Frank Siemons explains how traffic ...

SearchNetworking

3 potential multi-cloud challenges that could go unnoticed

Disaster recovery, vendor lock-in and cost are major factors as organizations evaluate multi-cloud strategies. However, these ...
After ransomware virus, Merck's medicine was network automation

After a ransomware attack, Merck decided the best remedy was to deploy network automation tools designed to transform how it ...
Prep for SD-WAN challenges, and you'll reap its rewards

Reap SD-WAN's multiple benefits by knowing ahead of time what the likely issues will be and the options available at the ...

SearchCIO

Adobe, Uber on the challenges of digital transformation

Digital transformation initiatives may be all the rage in the enterprise, but they also pose significant challenges to CIOs and ...
Cloud migration failures and how to prevent them

Companies are moving more applications than ever to the cloud, but many of these initiatives fail. Learn how to avoid making your...
Achieving business value from cognitive collaboration

CIOs can take advantage of AI to improve employee and customer collaboration with cognitive capabilities that are now available ...

SearchEnterpriseDesktop

Troubleshoot Bluetooth connection problems in Windows 10

Bluetooth connection problems in Windows 10 are fairly common. Fortunately, there are a variety of troubleshooting steps that IT ...
HP Inc. laying off up to 9,000 workers in latest reorg plan

With its printer and printing supplies business fortunes continuing to slide, HP Inc. is undergoing a major reorganization that ...
AI sharpens unified endpoint management tools and apps

Endpoint management is never simple, but AI can help. In this handbook, learn how AI in UEM tools can significantly improve ...

SearchCloudComputing

6 long-term plans to add to cloud cost optimization strategies

Short-term cost management tools are one way to improve cost efficiencies in the cloud, but to stay on track, you also need ...
IaaS vs. PaaS options on AWS, Azure and Google Cloud Platform

Looking to shift your workloads to the cloud? Understand and compare the IaaS and PaaS options on AWS, Azure and Google Cloud ...
5 best practices for choosing cloud developer tools

Enterprises are pushing cloud app development as a way to stay up to date on the latest IT trends. Find out how to pick the right...

ComputerWeekly.com

Commvault adds Metallic SaaS backup and Hedvig features

Backup software maker adds software-as-a-service Metallic, which can protect on-premise, cloud and hybrid platforms. Meanwhile, ...
Huawei defies US ban with rising revenues in third quarter

Chinese telecoms equipment giant attributes 24.4% revenue growth to maintaining its focus on ICT infrastructure and smart devices
5G awareness and interest high but consumers struggle to see benefits

The ramp-up of 5G networks would seem only a matter of time, but research suggests consumers are not yet seeing the light

Close