Security teams have a difficult task to perform, and it’s not getting any easier. IT environments are becoming more complex, threats are becoming more sophisticated, and the number of known vulnerabilities is dramatically increasing. In addition, there is a critical shortage of skilled IT security specialists, and...
Published: Aug 02, 2019
Take the stealth, creativity, and patience of Stuxnet. Add the commercialism, wide distribution, and easy-to-use toolkits of Zeus. Consider that despite more than years of activity, as of May 2011, neither of these cybercriminal teams has been exposed.
You now understand the recipe—and potency—of today’s...
Published: Jun 09, 2014
In this installment of a series of white papers about the true cost of DDoS attacks, StamSOC (Staminus Security Operation Center) will discuss the history of these attacks, the wide reaching impacts, and the true costs associated with DDoS attacks.
Business operators often overlook the repercussions of DDoS attacks....
Published: May 06, 2014
A whitepaper that assesses the security technology options that are essential for protecting your network, systems and data.
Published: Feb 14, 2014
The monthly intelligence report, provides the latest analysis of cyber security threats, trends, and insights from the Symantec intelligence team concerning malware, spam, and other potentially harmful business risks.
Published: Dec 17, 2013
Cybercrime certainly isn’t basketball — the stakes are higher, your jump shot doesn't matter — and yet the principle remains the same. As incident response (IR) teams and their vendors raise the defensive bar, adversaries adapt in kind.
According to the world’s leading IR professionals,...
Published: Aug 02, 2019
With cloud computing's paradigm of shared infrastructure, DDoS attacks on a specific target can quickly affect many or all tenants. In this Arbor Insight, we explain why availability should be the top priority for cloud operators, and outlines best current practices for preventing and mitigating attacks.
Published: Mar 13, 2014
NSS Labs performed an independent test of the McAfee NS9200 v7.1.5. The product was subjected to thorough testing at the NSS facility in Austin, Texas, based on the Network Intrusion Prevention methodology v7.2 available on www.nsslabs.com.
This test was conducted free of charge and NSS did not receive any compensation...
Published: May 14, 2013
SSH, Secure Shell protocol, is now nineteen years old and broadly deployed across almost every enterprise server and PC in your organization. Do you know how your SSH is being controlled? Here are some guidelines for a safer enterprise.
Published: Jun 25, 2014
As experts proclaimed in reaction to Firesheep, the best solution to the problem is to use TLS/SSL for all connections to web sites, including the home page.
Perhaps owing to the increased need for processing power it would entail, many large sites have been sparing in their use of TLS/SSL, but such frugality is increasingly...
Published: Sep 23, 2014
In a relatively short space of time the cloud has become the foundation upon which organisations build their digital infrastructure – and with that every business must confront security issues. As cyber attackers become more sophisticated and find inventive ways to navigate around traditional endpoint security, it’s...
Published: May 29, 2019
Over the past !ve years, applications—particularly web applications—have been increasingly leveraged as a top vector of attack.
With the trend toward mobile applications and cloud computing, SANS decided to conduct this !rst SANS survey on application security to focus on understanding what works in application...
Published: Apr 24, 2014
The numbers do not lie – whether internal or external, breaches are inevitable. In today’s environment, the core of any security strategy needs to shift from “breach prevention” to “breach acceptance.”
And, when one approaches security from a breach-acceptance viewpoint, the world...
Published: Jul 11, 2013
These emerging players deserve a hard look. They offer comprehensive, professionally delivered security services. Some are pioneering cloud-based delivery, and others resell their services through a growing MSSP reseller channel. All are growing at rates of 30% to 40% per year and have great technical depth and flexibility....
Published: Jun 12, 2014