Risk
10/1/2012
07:43 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Cyber Security Awareness Month Kicks Off Today -- Steps to Stay Protected Online

ThreatMetrix identified the following steps for users to prevent cybersecurity attacks

San Jose, CA – October 1, 2012 – ThreatMetrix&trade, the fastest-growing provider of integrated cybercrime prevention solutions, today announced several online threats and preventative tips to kick off National Cyber Security Awareness Month. October was designated National Cyber Security Awareness Month nine years ago by the U.S. Department of Homeland Security because as connectivity rapidly increases online, so does the risk for cyberattacks and security breaches.

Online technology continuously evolves and cybercriminals always find new ways to attack undetected. According to Julie Conroy McNelley, research director, Aite Group, each day, there are 111,111 unique new strands of malware and 10,000 new malicious domains displayed online so it is extremely important for users to keep cyber security top-of-mind.

ThreatMetrix identified the following steps for users to prevent cyber security attacks:

· Take stock of your online identity – know where your personal information is stored online and how this information is protected

· Create a unique password for each online account – if one account is hacked or infected, this makes it trickier for cybercriminals to attack multiple accounts

· Keep your computer up-to-date – security software providers do their best to stay one step ahead of cybercriminals so updated software helps to better protect online identities

· Educate others – As Generation Y teaches their grandparents to use computers or parents teach their children, cyber security awareness should be a top priority

"Cybersecurity is only as strong as the weakest link in the chain and if one account – such as Facebook or Google – is attacked, this can put an individual or company's entire online identity at risk," said Alisdair Faulkner, chief products officer, ThreatMetrix. "Just as people with the flu are isolated to stop the spread of disease, users need to keep their online identities isolated by using unique passwords and security questions for all of their accounts."

Today's advanced technology enables consumers to trade millions of dollars, conduct online banking, access entertainment, and do countless other activities at the click of a button. Unfortunately, this also means cybercriminals can attack an account, a website, sensitive government information and more in a matter of seconds.

"Fraudsters go where the money is," said Andreas Baumhof, chief technology officer, ThreatMetrix. "Just as criminals have robbed banks for years, cybercriminals increasingly target online financial services and retailers, putting consumers at risk if these enterprises do not take proper cybersecurity steps."

About ThreatMetrix

ThreatMetrix is the fastest-growing provider of integrated cybercrime prevention solutions. The ThreatMetrix&trade Cybercrime Defender Platform helps companies protect customer data and secure transactions against fraud, malware, data breaches, as well as man-in-the browser (MitB) and Trojan attacks. The Platform consists of advanced cybersecurity technologies, including TrustDefender&trade ID, which is cloud-based, real-time device identification, malware protection with TrustDefender&trade Cloud and TrustDefender&trade Client, as well as TrustDefender&trade Mobile for smartphone applications. Recently named to Wall Street Journal's "Next Big Thing" list of the top 50 start-ups in the U.S., ThreatMetrix serves a rapidly growing global customer base across a variety of industries, including financial services, e-commerce, payments, social networks, government, and healthcare.

For more information, visit www.threatmetrix.com or call 1-408-200-5755.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
Partner Perspectives
What's This?
In a digital world inundated with advanced security threats, Intel Security seeks to transform how we live and work to keep our information secure. Through hardware and software development, Intel Security delivers robust solutions that integrate security into every layer of every digital device. In combining the security expertise of McAfee with the innovation, performance, and trust of Intel, this vision becomes a reality.

As we rely on technology to enhance our everyday and business life, we must too consider the security of the intellectual property and confidential data that is housed on these devices. As we increase the number of devices we use, we increase the number of gateways and opportunity for security threats. Intel Security takes the “security connected” approach to ensure that every device is secure, and that all security solutions are seamlessly integrated.
Featured Writers
White Papers
Cartoon
Current Issue
Dark Reading's October Tech Digest
Fast data analysis can stymie attacks and strengthen enterprise security. Does your team have the data smarts?
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-4594
Published: 2014-10-25
The Payment for Webform module 7.x-1.x before 7.x-1.5 for Drupal does not restrict access by anonymous users, which allows remote anonymous users to use the payment of other anonymous users when submitting a form that requires payment.

CVE-2014-0476
Published: 2014-10-25
The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerability when /tmp is not mounted with the noexec option.

CVE-2014-1927
Published: 2014-10-25
The shell_quote function in python-gnupg 0.3.5 does not properly quote strings, which allows context-dependent attackers to execute arbitrary code via shell metacharacters in unspecified vectors, as demonstrated using "$(" command-substitution sequences, a different vulnerability than CVE-2014-1928....

CVE-2014-1928
Published: 2014-10-25
The shell_quote function in python-gnupg 0.3.5 does not properly escape characters, which allows context-dependent attackers to execute arbitrary code via shell metacharacters in unspecified vectors, as demonstrated using "\" (backslash) characters to form multi-command sequences, a different vulner...

CVE-2014-1929
Published: 2014-10-25
python-gnupg 0.3.5 and 0.3.6 allows context-dependent attackers to have an unspecified impact via vectors related to "option injection through positional arguments." NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7323.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Follow Dark Reading editors into the field as they talk with noted experts from the security world.