Categories
- Arts & Entertainment
- Business
- Advertising
- Bookkeeping
- Branding
- Careers
- Careers Employment
- Change Management
- Communication
- Corporate
- Customer Service
- Entrepreneurialism
- Ethics
- Financing
- Franchise
- Fundraising
- Human Resources
- Management
- Marketing
- Marketing Direct
- Negotiation
- Networking
- Outsourcing
- Partnerships
- PR
- Presentation
- Public Relations
- Resumes Cover Letters
- Sales
- Sales Management
- Sales Teleselling
- Sales Training
- Small Business
- Strategic Planning
- Team Building
- Top7 or 10 Tips
- Venture Capital
- Workplace Communication
- Communications
- Computers
- Culture & Society
- Disease & Illness
- Fashion
- Finance
- Food & Beverage
- Health & Fitness
- Hobbies
- Home & Family
- Home Based Business
- Internet Business
- Legal
- Pets & Animals
- Politics
- Product Reviews
- Recreation & Sports
- Reference & Education
- Religion
- Self Improvement
- Shopping
- Travel & Leisure
- Vehicles
- Writing & Speaking
Information
Emerging Corporate Information Security Threats
Submitted: 2007-01-17 12:43:20
Print this article | Tell a friend | For publisher |
The time when worms and viruses were a top priority of IT are long behind us. Botnets and phishing attacks now dominate the webscape and new variations are emerging daily.
Botnets:
To give you an idea on how prevalent this threat is becoming, Zombie Master Jeanson Ancheta pleaded guilty to seizing control of hundreds of thousands of Internet-connected computers and renting the zombie network to people who used it to send out spam. Keep in mind that this "Zombie Network" included computers at the Weapons Division of the U.S. Naval Air Warfare Center in China Lake, California, and at the U.S. Department of Defense.
Ancheta admitted that the scam netted him over $60,000 over 14 months before it was detected. This mindset, motivated by money and working in the background, is typical of the new generation of Internet criminals. The spyware they surreptitiously plant on an unsuspecting user's computer leaves a very small footprint (barely detectable) and worka as a "Slave" to a remote "Master". The End user usually isn't aware that their personal computer or workstation has been "hijacked" as the computer continues to function, perhaps a little slower.
"Botnets", also known as Bot Networks, are masses of hijacked computers, sometimes numbering in the hundreds of thousands as was the case with Ancheta who admitted to directing more than 400,000 computers. Industry research indicates that almost 200,000 computers become zombies EVERYDAY and that figure is steadily rising (Source: CipherTrust).
Historically, Botnets were used to launch DDoS (Distributed Denial of Service attacks) on websites. A disturbing new trend developed by this generation of Internet criminals is to rent their networks to those who want to launch cheap mass email campaigns (also known as Spam) or to extortionists to launch DDoS attacks on legitimate websites. Botnets pose an even more insidious threat. According to Dave Rand, Chief Technologist at Trend Micro, their combined computing power could be used to decrypt Internet traffic. If that were to happen (and thankfully there is no sign of it yet), it could bring e-commerce to a grinding halt.
Phishing Expeditions:
Industry experts state that phishing attacks will grow in frequency and sophistication over time. This trend is already developing at a fast pace as pointed by David Sancho, an antivirus engineer at security company Trend Micro. David pointed out an attack in Germany which claimed to be from a power company and asked the recipients to click on an attached file that appeared to be a PDF document, which is a file type that the power company uses for paperless billing. In actuality, the file had a .pdf.exe extension and installed a Trojan on the user's computer when it was executed.
The Trojan then monitored the user's Internet activity (Web pages and online banking access), and sent this information to the Trojan's creator. "It is smarter, because they (the Internet criminals) don't have to set up a fake server,", said David.
According to Mikko Hypponen, Chief Research Officer at F-Secure. "The bad boys are getting more professional and doing more targeted attacks."
Though Windows PCs remain the primary target for attacks, prepare to see more sophisticated Botnets and phishing attacks, as well as attacks targeting cell phones and RSS News Feeds.
The Solution
These attacks are major problems that cannot be easily resolved, because the target PCs are primarily home computers and corporate networks connected to an ADSL line. According to Hypponen "It takes a lot of end-user support to explain to a grandmother how to configure the computer. So most ISPs are not doing anything about it".
For networked environments, there are several alternatives that can be implemented at your network's perimeter to mitigate the security risk. If you believe your personal computer or organization's network may be at risk, please consult a PC expert or corporate information security consulting firm for immediate assistance.
Ray Fuller is the Founder, and a Principal, of http://www.ZoneCast.com. ZoneCast, Incorporated provides Corporate Information Security and Business Continuity Services. Ray has over twenty-one years of experience in a variety of technology fields related to corporate information security, disaster recovery planning and business continuity management.
Since its inception, ZoneCast has successfully completed numerous consulting engagements in corporate information security, business continuity management and disaster recovery planning for companies representing a diverse array of industries in several countries.
Article source: Expert Articles
Most Recent Articles in Corporate category
- Conference Venues in Sydney - By: Rianne de Leon
Sydney is one of the prime travel destinations in the world of business. Because of its modern culture of trade and industry, Sydney has maintained its reputation of being an attraction for investments. - How to Choose an Effective Diesel Generator - By: Christine Layug
What appliances will be used while on back-up power, and how many of those appliances will be used at once? In the end, it is still unreasonable to expect a portable generator to supply power to a house that is being used as though it were still receiving power from the city. - NeoSynergy Falters - By: Mitchell Redstone
NeoSynergy in big money trouble. Continues to lose partnerships amidst staff cutbacks and product stalls. - For What Applications is 17-4 pH Stainless Steel a Good Choice? - By: Yvonne M
This article is about the uses for 17-4 pH Stainless Steel. - Business Consulting Services - By: Matthew Hopman
Business Consulting Services provides platform for any entrepreneurs to turn a small-scale business into a high quality business with world-class standards. - Corporate Business Gifts As Promotional Tools - By: Angel Cruz
Corporate gifts are important in the business world. They can even be used as promotional tools for your business. - Corporate Gift Baskets for better Businesses - By: BasketWomen Young
There are a number of ways to let your corporate clients know that you appreciate them. Corporate Gift Baskets are known to sooth your clients over, even before they are officially "your client"! - Corporate Event Planning - By: Natisha Nel
Corporate events can be held on a large scale or may be a small time affair, it may be formal or informal, and can be exclusive or open to the public. - Fundraisers Events - By: Natisha Nel
It is important to plan your budget well when planning a fundraiser event as costs can often eat into your revenues collected and your supporters' donations. Another important point to remember in organising a fundraising event is to keep in mind on what works best for your audience, organization and location. - Atlanta Corporate Apartments - By: Max Bellamy
Corporate apartments are temporary lodging facilities for corporate travelers. These are situated in usual apartment complexes or complexes owned by a lessor and structurally similar to other apartments regarding the number of bedrooms available and indoor or outdoor facilities. Atlanta, a world-class business center, has a number of renowned corporate apartments in its downtown and suburb areas.