Endpoint Security

Marketers should strategize for data loss prevention.

2007-10-26T03:12:00.001-07:00

As data loss continues to grow, prevention is a serious issue for companies, according to a new report by e-mail services firm Ironport Systems Inc. In a new report titled “Data Loss Prevention Best Practices, Managing Sensitive Data in the Enterprise,” IronPort Systems, a business unit of Cisco, delineates best practices that companies can use to prevent leaks and to be compliant. “We are

BotNet - one day in the life.

2007-10-22T23:01:00.001-07:00

A bot network tends to fluctuate such that the number of members of the network wax and wane over time. I base this understanding on my regular observation of modern botnets and the observations of my peers (please see pg. 41 of ISTR Volume X). In the past, IRC protocol-based botnets fell victim to an “Achilles Heel” situation if the single central server being used to control the network was

6 hot items on the hacker's holiday shopping list

2007-10-18T23:36:00.001-07:00

Here, according to Jackson and Schipka, are some the items likely to be in high demand by hackers shopping in this underground marketplace this coming holiday season: 1. Build A Storm Botnet: This new and uniquely crafted malware tool has been designed with the really high-end hacker in mind and is likely to be one of the hottest items this season, according to Jackson. For prices starting at

Symantec ships next-gen SRM software

2007-10-18T23:26:00.001-07:00

Symantec recently released the next generation of its Veritas CommandCentral storage resource management (SRM) software, with added support for both physical and virtual environments, advanced process automation and reporting features, and increased scalability. Version 5.0 of Veritas CommandCentral enables administrators to peer into physical and virtual server and storage environments and

You’ve Got MP3 Mail! Be carefull!

2007-10-18T23:18:00.001-07:00

McAfee Avert Labs has observed a new wave of pump-and-dump spam today that we believe to be originating from the Storm worm botnet. The spammed .mp3 attachments promote a company enjoying huge success in Canada and expecting amazing results in the USA. These audio files are of very poor quality and one has to literally strain one’s ears to hear what’s being announced. The spammed .mp3 files have

New way for virus

2007-10-18T06:04:00.001-07:00

My girlfriend recently bought an mp3 player through eBay. The slim 8GB player, dubbed ”MP3 Player“ by the no-name brand vendor, reminded me of some other well known player – I… I… I just can’t remember the name. But, since it was offered at half the price of an iPod, we though it wasn’t a bad deal and ordered it. Last week it was finally delivered and while checking it out I connected it through

5 steps for E-mail Security Assurance. CONCLUSION

2007-10-12T03:04:00.003-07:00

Email security is an ongoing endeavor. Because spam, viruses and fraud are a profitable business, the resources and tactics employed by those who generate this scourge are ever changing. As a result, your email security vendor needs to be committed to innovation. IronPort Systems leads the industry in technical innovation—with the largest research and development team in the industry and the

5 steps for E-mail Security Assurance. Step 5: FIXING MAIL

2007-10-12T03:04:00.001-07:00

Spam, viruses and fraudulent email have put a massive stress on email infrastructure. The root cause behind this scourge lies in the email protocol itself, SMTP. SMTP was developed in the late 1980’s when the Internet was primarily a tool used for technical people, such as university professors, to collaborate and share information over unreliable data links. To facilitate this, SMTP has

5 steps for E-mail Security Assurance. Step 4: PROTECTING YOUR IDENTITY

2007-10-12T03:02:00.001-07:00

There are two major email pitfalls that every IT manager needs to be aware of—bounce handling and outbound commercial mail. Bounce handling refers to how a mail gateway responds to incoming mail that has an invalid address. There are two modes of response—conversational bounces and delayed bounces. A conversational bounce occurs during the SMTP conversation. This means that before the receiving

5 steps for E-mail Security Assurance. Step 3: OUTBOUND SCANNING

2007-10-12T03:00:00.001-07:00

There are two factors at work that are driving interest in outbound scanning —regulatory compliance and protection of intellectual property. Regulatory compliance can be put into three basic buckets—the Health Insurance Portability and Accountability Act (HIPAA), the Gramm-Leach-Bliley Act (GLB) and the Sarbanes-Oxley Act (SOX). HIPAA requires that any entity dealing with personal healthcare

5 steps for E-mail Security Assurance. Step 2: STOPPING VIRUS

2007-10-12T02:58:00.001-07:00

It may not be common knowledge, but spam and viruses are originated by the same people. 90 percent of the viruses in the past year have been designed to leave behind a small SMTP engine that is used to hijack an unsuspecting consumer PC and send out spam. So it’s ironic that the biggest sources of spam on the Internet might be the PC your mom or dad have connected to a cable modem, spewing out

5 steps for E-mail Security Assurance. Step 1: STOPPING SPAM

2007-10-12T02:54:00.001-07:00

The first generation of email security solutions used a simple approach to stopping spam—keyword analysis. These early filters would look for words typically found in spam (words like “free”, “Viagra”, or other more spicy language). The filters would typically use a scoring algorithm—if the word “free” occurs next to “Viagra” than it’s probably spam. The problem with this approach was twofold.

5 steps for E-mail Security Assurance - Introduction

2007-10-12T02:46:00.001-07:00

It almost goes without saying that email is the most critical application in use by organizations large and small. Email is used in virtually every organization by at least some, if not all, employees—and its use is growing at a rapid pace. Organizations increasingly use email as the primary method for communicating with employees, managers, customers and prospects. Four out of five organizations

Symantec Endpoint Security

2007-10-11T04:04:00.000-07:00

Symantec Endpoint Protection 11.0 combines Symantec AntiVirus with advanced threat prevention to deliver unmatched defense against malware for laptops, desktops and servers. It seamlessly integrates essential security technologies in a single agent and management console, increasing protection and helping lower total cost of ownership.Key Features * Seamlessly integrates essential technologies