February 2010 Archives

Why web security is best served in the cloud

| No Comments | No TrackBacks
| More

Most business today is conducted electronically, with the internet a prime communications mechanism and resource for finding and sharing information. Yet its importance makes it a prime vector of attack for hackers that are looking to steal information for commercial gain. Because of this, malware threats are actually on the rise after years of tailing off. The 2009 CSI computer crime and security survey recently reported that malware attacks had been experienced by more than 64% of respondents in 2009, up from 50% in 2008, and making this the most prevalent type of attack seen.
Not only are attacks rising in number, but they are also becoming more complex and sophisticated. The number of variants of particular samples of malware is increasing dramatically and hackers are increasingly using blended mechanisms to make their attacks more effective, for example, using a combination of email and web exploits to increase their chances of success.
Traditional malware defences struggle to cope. Vendors struggle to write fixes for new malware variants as they come to light and end-user machines need to be regularly updated so that they have the latest protection. That can be an administrative nightmare if an organisation tries to handle web security issues in-house.
A better strategy can be to outsource the service to experts--and especially those offering software-as-a-service offerings based in the cloud. Such services are backed up by resource centres staffed with researchers who are constantly looking for the latest threats and scanning websites for potential exploits. By using advanced techniques, such as heuristics that look for particular behaviour associated with malware, rather than trying to fix a problem with a signature, so that previously unseen threats can be stopped in their tracks.
And the use of a service based in the cloud means that those threats can be stopped at there point where they are emanating from--the web--so that no exploits actually reach an organisation's network. This not only has the benefit of better protection against web-based threats, but can also mean lowered costs for the organisation as the service is delivered on a subscription basis, meaning there is no capital expenditure required on software licences and the hardware needed to run them.
This subject is discussed in greater detail in a series of papers, of which this is the first: The realities of web security (http://www.silicon.com/white-papers/it-budgeting/2010/02/16/the-realities-of-web-security-61008214/).

Conficker grounds police checks

| No Comments | No TrackBacks
| More
According to this article Greater Manchester Police (GMP) have been struck down by an instance of the Conficker virus. The effect has been immediate, with systems taken off line preventing GMP officers undertaking checks on the police national computer (PNC).

The PNC is a vital tool and contains all types of data ranging from criminal records, stolen vehicles and missing people. Apparently access has been maintained via neighbouring forces. As anyone that has had cause to use the PNC facility will know this will only cause a delay during investigations.

So if you are stuck by the roadside whilst a police officer in GMP undertakes some checks remember that the delay has been caused by a virus that was discovered in August 2008 and had a patch released by Microsoft in November 2008 (MS08-067)...

By Nigel Stanley
Practice Leader - Security, Bloor Research




Find recent content on the main index or look in the archives to find all content.

-- Advertisement --