Advertisement
Promo

Security threats Toolkit

In association with HP

Talkback

Post a comment


Story: Gumblar attack worse than Conficker, experts warn

  • Previous comment

Posted by: lumension (Friday 29 May 2009, 2:24 PM)

  • Reply

Whitelisting provides a convenient way to manage critical risk.

A Whitelisting approach has gained prominence in recent years with hackers bypassing traditional perimeters to penetrate business critical data and systems.

As illustrated by the Gumblar attack, there is a new group of cybercriminals who are taking advantage of the weaknesses that arise from the dynamic threat environment. The reason why security incidents continue to rise is because the bad guys have evolved their attack methods to outwit our security defenses faster than we have responded to their attacks. They target organisations by making slight adjustments and tweaks to continually fool the signature based AV, firewalls and IPS technologies that most organisations have built their security defences around.

Previously, the prevailing thought was that it would be much easier to manage security at the gateway than individually locking down 1,000 endpoints. Today, security cannot be managed at the gateway because there are too many ways to get around these network-based defenses in this day and age. Organisations must secure the endpoint and manage what executables are running on that endpoint by adopting a whitelisting approach. More organisations will continue to look at alternative solutions outside of the traditional technologies such as AV and firewalls to manage critical risk.

View complete profile

Private message disabled

View all posts

lumension

lumension
LONDON, UK
Member since: October 2008

Site Activity Rating:

3

 


  • Previous comment

  • Reply to this comment
  • Return to story
  • Report this as offensive


Full Talkback thread

More In Security threats


Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Sentry Posts Blog

McKinnon lawyers seek judicial review

Lawyers seeking a judicial review for Nasa hacker Gary McKinnon lodged fresh evidence of his psychiatric state at the High Court on Thursday. Karen Todner, McKinnon's solicitor,... More

1 comment

Beware of keeping your head in the clo...

Information security professionals can look forward to a deepening appreciation for their skills as security continues to be recognised as an essential element for doing business in... More

1 comment

Civil liberties groups attack file-sha...

Civil liberties and digital rights organisations have strongly criticised Lord Mandelson's Digital Economy Bill. Liberty said in a position paper on Tuesday that the bill, part of... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters