Dark Reading
Protect The Business - Enable Access
Find out how attackers can avoid intrusion prevention systems and gain access to your data. Download now!
Dark Reading's Advanced Threats Tech Center is your gateway to a deeper, more technical level of news and analysis on the newest and most sophisticated cybersecurity threats. Written for security and IT professionals, the Advanced Threats Tech Center is designed to provide in-depth information and perspective on next-generation attacks, exploits, and vulnerabilities, as well as recommendations on how to stop them.
Breaking News
How To Detect And Root Out Sophisticated Malware
New report offers insights on excising that hard-to-detect malware
Malware 'Licensing' Could Stymie Automated Analysis
The use of encryption and digital-rights management techniques by the authors of malicious code could make automated analysis of malware take longer and require human intervention more often
SCADA/Smart-Grid Vendor Adopts Microsoft's Secure Software Development Program
Meanwhile, utilities lag when it comes to cyberattack preparedness and risk management at the executive and board level
More Stories:
- Cyberspies Target Victims Via 'Strategic' Drive-by Website Attacks
- Targeted Attack Infiltrates At Least 20 Companies
- IBM Profiles The New CSO, Security Exec
- Advanced Attacks Call For New Defenses
- Iranian Cyberthreat To U.S. A Growing Concern
- Microsoft: Conficker Worm Remains 'Ongoing' Threat
- Security Teams Need Better Intel, More Offense
- Iran: Oil Industry Hit By Malware Attack
MORE NEWS >>>
By The Numbers
External Threats Dominate Attack Landscape
Only four percent of data breaches in 2011 had an internal threat component - nearly all came from external attackers.
Source: Verizon Data Breach Investigations Report 2011
Blog
2012 U.S. Election And Targeted Attack PredictionsApril 22, 2012
How the increased level and sophistication of of targeted attacks since 2008 may impact this year's U.S. Presidential election campaigns
Around The Web
CIO INSIGHT
Cyber-Criminals Change Tactics As Network Security Improves
IBM in its X-Force security report for 2011 said security efforts have cut spam and improved vulnerability patching, but attackers are now targeting mobile devices and the cloud
THE EPOCH TIMES
US Military Gearing Up For Cyberwar
The U.S. military is working overtime to secure its networks against cyber-attacks, while also developing new systems to strike back
NATIONAL JOURNAL
OMB: Growth In Federal Cyberattacks Slows
Cyberattacks on the federal government continue to increase, but most were "phishing" attempts and reports of threats largely leveled out in the past year, according to the Office of Management and Budget
CSO AUSTRALIA
Addressing The Security Risks Of BYO Devices
Bring your own device (BYOD) is a trend that will gain visibility at an accelerating pace and is inherently tied to the cloud. As such, there are many parallels when considering the implications
THE GUARDIAN UL
China Suspected Of Facebook Attack On NATO's Supreme Allied Commander
Beijing cyberspies accused of using fake social networking accounts in bid to steal military secrets from the West
GOVERNMENT COMPUTER NEWS
FISMA Guide Updated To Reflect APT, Mobile Threats
The set of security controls that form a foundation for compliance with the Federal Information Security Management Act is being updated to reflect the latest cybersecurity threats
PC WORLD
Threat Of A Bullet In The Face Keeps Cybercrooks Cautious
Sure, more sophisticated threats are on the way, but those in cybersecurity also have new opportunities to defend threats and even enable economic growth
WALL STREET JOURNAL
Watching And Waiting
Most cyberattacks are random. But some attackers know exactly whom they want, and how to strike
Advanced Threats Reports
Rooting Out Sophisticated Malware
As malware gets increasingly sophisticated, so, too, must the technology and strategies we use to detect and eradicate it (or, better yet, stop it before it ever makes it onto network systems). There is no one product or product category that can do the job alone. Instead, security professionals must become familiar with--and adept at using--a combination of technologies. Security pros must also become skilled at connecting the dots among sometimes innocuous-seeming events to root out trouble. In this report, we examine the tools, technologies and strategies that can ease some of the burden.
How Did They Get In? A Guide to Tracking Down The Source of an APT
If you think that your organization hasn't been affected by an advanced persistent threat, you probably haven't looked hard enough. Identifying that your organization is under attack is difficult enough; determining the scope of infiltration and damage presents a whole new level of challenge. To effectively protect against APTs, security pros will need to employ an arsenal of tools in a coordinated fashion, as well as develop new understandings of and approaches to system and data exploits. Here's a short and simple guide to this challenge.
Detecting and Defending Against Advanced Persistent Threats
APTs are a growing problem for enterprises big and small. Protecting your organization from these targeted threats
requires constant vigilance, ongoing employee training and a concerted effort to align security systems to address
every phase of an APT. Companies also need to develop a remediation and response plan if, despite best efforts, defenses are breached.
Other reports from the Advanced Threats Tech Center:
Related Content
| Sponsored by: |  |
MOBILE SECURITY - Mapping an Ecosystem of Risk
This white paper highlights the various considerations for defending mobile applications-from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
Software Security Delivered in the Cloud
This Solution Guide details the automated, turnkey service that requires no special security assessment expertise. It details HP's market-leading static and dynamic analysis technologies that help organizations worldwide gain insight into the security state of their essential business applications.
SANS Mobility/BYOD Security Survey
This survey, which includes input from more than 500 IT professionals, explores how organizations are managing risk around their end user mobile devices as well as what level of policies and controls enterprises have around mobile usage.
Expert Guide to Application Security - Real-time Hybrid Analysis
Explore the next generation of hybrid security analysis - what it is, how it works, and its benefits. This white paper details how hybrid application security enables organizations to resolve critical software security issues faster and at a lower cost than any other available technology.
A Mainstay Partners Study: Does Application Security Pay?
Measuring the Business Impact of Software Security Assurance Solutions: a study of 17 organizations that implemented solutions from Fortify Software, combining industry research and benchmark analysis to identify, qualify, and quantify the full range of benefits seen from their SSA investments.
Advanced Threats Newsfeed
- Lookingglass Announces New Cyber Threat Alert And Warning Capability, CyberHUD
- New Research From Fidelis Security Systems And IANS Shows Heightened Need For Advanced Threat Defense
- McAfee and Intel Announce Critical Infrastructure Protection
- Infrax Systems (IFXY) Launches Smart Grid's SPIDer
- DOD Announces Expansion Of Defense Industrial Base Voluntary Cybersecurity Information Sharing Activities
- Wurldtech Provides Testing Accreditation For Siemens CERT Lab
MORE NEWSFEED >>>
- Reduce Cost and Improve Manageability with IBM Windows Storage Server
- Creating an Agile, Flexible Cloud Computing Model
- Techniques for Next-Gen Data Protection using Next-Gen Computing
- Thriving in a Multi-Platform World: Integrating Mobile Device Management into Your Overall Security Strategy
- Collaborative DevOps: Bridging the gap between development and operations with automation
