Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Advanced Attacks Are The New Norm, Study Says
Threaded  |  Newest First  |  Oldest First
Randy Naramore
50%
50%
Randy Naramore,
User Rank: Ninja
4/4/2014 | 12:34:42 PM
Advanced Attacks Are The New Norm, Study Says
Gone are the days when malware simply consisted of annoying popups now you have to worry about phishing sites, keyloggers recording your every stroke. Users have to be ever vigilent concerning their every day internet habits, the seemingly simple banking transaction may be recorded and sent to an attacker who in turn ruins your financial stability and your life. Very sad but this makes the security professional's talents worth more.
securityaffairs
50%
50%
securityaffairs,
User Rank: Ninja
4/5/2014 | 8:41:57 AM
Re: Advanced Attacks Are The New Norm, Study Says
Hi Tim,

it's normal evolution of time, attacks are becoming events even more sophisticated, APTs are adopting evasion technique very efficient and economies behind each attack advantage the offenders.
A very alarming scenarios.
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
4/4/2014 | 4:26:19 PM
Zero Day Protection
I recently attended a lunch and learn for a vendor pushing out a Endpoint Intrusion Detection System. They intend to have prevention built in by May I believe, but I thought the software was clever and should be prevalent in this conversation. As we know many IDS/IPS systems are signature based which is great once someone detects the signature but for zero days, the signature approach has little effect. This solution focused on individual execution entries and monitored them in real time. Every change made was monitored and analyzed for type, activity, involvement, etc. The GUI was very intuitive and the data provided was extensive. The main point of my story here is that its good to see that defense is making preparations that are not the norm to try and combat attacks of the same nature. If anyone wants to know more because I don't believe one post can cover a software that expansive, please ask and I will elaborate. Anyone see anything similar or another method of trying to successfully block/detect these attacks?
macker490
50%
50%
macker490,
User Rank: Ninja
4/9/2014 | 8:40:32 AM
exploits
we would do well to displose of the terms "advanced" and "sophisticated".    many attacks are simple exploits,   generally of an error in programming.

our focus should be on Quality Control with the object being a standard of Zero Defects in the software development and deployment process.

all the attacker has to do is put the target software into a debugger in then poke it until he finds an error he can make an advantage of.   it is not sophisticated to those whose work this trade. it is something the original authors should have done.  It's called debugging.

not just regression testing.   all branch (structured) testing is required for critical communication components and a good idea for software, generally.
Thomas Claburn
50%
50%
Thomas Claburn,
User Rank: Ninja
4/9/2014 | 6:44:34 PM
Re: exploits
But how will the industry market security products without hyperbolic terms like "advanced persistent threat"?


Why Cyber-Risk Is a C-Suite Issue
Marc Wilczek, Digital Strategist & CIO Advisor,  11/12/2019
Unreasonable Security Best Practices vs. Good Risk Management
Jack Freund, Director, Risk Science at RiskLens,  11/13/2019
6 Small-Business Password Managers
Curtis Franklin Jr., Senior Editor at Dark Reading,  11/8/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-18987
PUBLISHED: 2019-11-15
An issue was discovered in the AbuseFilter extension through 1.34 for MediaWiki. Once a specific abuse filter has (accidentally or otherwise) been made public, its previous versions can be exposed, thus potentially disclosing private or sensitive information within the filter's definition.
CVE-2019-18986
PUBLISHED: 2019-11-15
Pimcore before 6.2.2 allow attackers to brute-force (guess) valid usernames by using the 'forgot password' functionality as it returns distinct messages for invalid password and non-existing users.
CVE-2019-18981
PUBLISHED: 2019-11-15
Pimcore before 6.2.2 lacks an Access Denied outcome for a certain scenario of an incorrect recipient ID of a notification.
CVE-2019-18982
PUBLISHED: 2019-11-15
bundles/AdminBundle/Controller/Admin/EmailController.php in Pimcore before 6.3.0 allows script execution in the Email Log preview window because of the lack of a Content-Security-Policy header.
CVE-2019-18985
PUBLISHED: 2019-11-15
Pimcore before 6.2.2 lacks brute force protection for the 2FA token.