Learn Best Practices and Ideas about Defense-In-Depth You Can Implement Today!
The physical disasters of 2012 will go down in history books as a vivid example of how devastating these events can be for both businesses and individuals. But other disasters are looming from Cyber Criminals who are after your data, bank accounts and resources and we need to be prepared with layered Defense-In-Depth and security Best Practices.
Key Take-Away: The majority of malware--67 percent--is not detected by the majority of anti-virus or anti-malware software, and roughly 30 percent of the samples were traced back to JavaScript malware variants used for redirection, obfuscation, and encryption.
Learn Ideas and Best Defense-In-Depth Practices you can implement today!
A new study by Solutionary's Security Engineering Research Team (SERT) sheds light on the sorry state of computer security. Don’t despair, I listed some defenses further down in this article and also at this two-part article about The Top 10 Most Effective Defense-In-Depth Strategies.
Rob Kraus, SERT's director of research, said: "The fact that cyber criminals are able to penetrate network defenses by targeting aging vulnerabilities and using old techniques, demonstrates that many organizations are still playing catch-up when it comes to cyber security. Tight budgets, inability to convince stakeholders at all levels that security should be a priority, and a shortage of research resources could be among the reasons why many security and risk teams are continuing to operate in reactive mode."
Many businesses, especially small to medium sized businesses are not patching security flaws properly, the report found. A lack of updates means that some of the oldest exploit code found in kits--dating back to 2004 in some cases--can still be used to wreak havoc. However, the security team also found that the popular BlackHole 2.0 kit exploits fewer vulnerabilities in comparison to a number of other kits that are openly available. Phoenix, for example, is the most versatile, being able to exploit 16 percent of all bugs.
In addition, SERT said that the majority of malware--67 percent--is not detected by the majority of anti-virus or anti-malware software, and roughly 30 percent of the samples were traced back to JavaScript malware variants used for redirection, obfuscation, and encryption, which are all used with the BlackHole exploit kit.
Update virus definitions immediately and automatically
Apply a defense-in-depth methodology layering protection elements
Patch your systems immediately including OS, browsers, Adobe and so on
Educate, educate, educate end users
Conclusion
What if a major storm such as hurricane Sandy, a freak snow storm, flood, or fire destroyed your office and all of your files? Or if a virus wiped out your server… do you have an emergency disaster recovery plan in place that you feel confident in? How quickly do you think you could recover, if at all? Implement the recommended Ideas and Defense-In-Depth Best Practices in your business network today with the help of IT Tech Support Specialist Computer Systems Support & Design, LLC in Connecticut.










