Verizon Business Security Blog
You're new here, aren't you?
NetworkedBlogs allows you to stay up to date with blogs you love. Click the Follow button to follow updates from this blog.
NetworkedBlogs allows you to stay up to date with blogs you love. Click the Follow button to follow updates from this blog.
Information
| Blog Name: | Verizon Business Security Blog |
| Url: | http://securityblog.verizonbusiness.com/ |
| Language: | unknown |
| Topics: | security, information security, breach |
| Description: | Verizon Business Security Solutions, through its blog, seeks to encourage insightful discussion around security, whether involving risk, threats, research or ways to better secure data, users, end points, servers or networks. We will do this by regularly posting our own points-of-view, engaging in conversation with other posters who offer fact-based comments and reacting to the relevant ongoing blogosphere conversation. While no security subject is considered off-limits, we will focus on security issues that have implications for the greatest number of enterprise organizations and their users. |
| Popularity: | 8 Followers |
Blog Feed
Weekly Intelligence Summary: 2009 – 11 – 20
Availability failures dominate risk developments this week. The regional blackout in Brazil at the end of last week’s report occurred on Tuesday, 9 November. First reports pointed to a thunderstorm, but this week technical details emerged suggesting an electronic attack was at least possibly to blame. A router configuration error resulted in a nationwide disruption of air traffic in the US on 19 November. These events contribute to the crescendo of cyber warfare and cyber terrorism posturing contemporaneous to development of the US Federal fiscal year 2011 budget. Early reports of data breaches in the US and Spain indicate millions of records in multiple countries may have been
Availability failures dominate risk developments this week. The regional blackout in Brazil at the end of last week’s report occurred on Tuesday, 9 November. First reports pointed to a thunderstorm, but this week technical details emerged suggesting an electronic attack was at least possibly to blame. A router configuration error resulted in a nationwide disruption of air traffic in the US on 19 November. These events contribute to the crescendo of cyber warfare and cyber terrorism posturing contemporaneous to development of the US Federal fiscal year 2011 budget. Early reports of data breaches in the US and Spain indicate millions of records in multiple countries may have been
Verizon at SANS Incident Detection Summit
The SANS WhatWorks in Incident Detection Summit 2009 will be held on December 9-10 in Washington, D.C. It follows the 2008 and 2009 editions of the SANS WhatWorks in Forensics and Incident Response Summits. For this summit, SANS is teaming with Richard Bejtlich to create a practioner-focused event dedicated to incident detection operations. The SANS Incident Detection Summit will share tools, tactics, and techniques practiced by more than 40 of the world’s greatest incident detectors in two full days of content consisting of keynotes, expert briefings, and dynamic p
The SANS WhatWorks in Incident Detection Summit 2009 will be held on December 9-10 in Washington, D.C. It follows the 2008 and 2009 editions of the SANS WhatWorks in Forensics and Incident Response Summits. For this summit, SANS is teaming with Richard Bejtlich to create a practioner-focused event dedicated to incident detection operations. The SANS Incident Detection Summit will share tools, tactics, and techniques practiced by more than 40 of the world’s greatest incident detectors in two full days of content consisting of keynotes, expert briefings, and dynamic p
ICSA Labs Product Assurance Report
Today ICSA Labs (an independent division of Verizon Business) released a report based on testing results and observations taken during its 20-year history certifying security products. We mention it here because several members of this team worked with ICSA Labs to design the study, collect and analyze data (a non-trivial feat given the time span), and write the report. Although bookended by other information and recommendations, the bulk of the report hits on three main topics: how often product deficiencies occur during testing, which types occur most often, and what factors contribute to their occurrence. We hope readers will find the report helpful in their mission to protect infor
Today ICSA Labs (an independent division of Verizon Business) released a report based on testing results and observations taken during its 20-year history certifying security products. We mention it here because several members of this team worked with ICSA Labs to design the study, collect and analyze data (a non-trivial feat given the time span), and write the report. Although bookended by other information and recommendations, the bulk of the report hits on three main topics: how often product deficiencies occur during testing, which types occur most often, and what factors contribute to their occurrence. We hope readers will find the report helpful in their mission to protect infor
Weekly Intelligence Summary: 2009 – 11 – 13
The most significant impact on risk over the last week was November’s Microsoft Tuesday security bulletins, and most developments this week had a positive impact on risk. Kerfuffles over another SMB issue is of little consequence as was the news of SCADA hacking in Brazil. The US Congress has taken up data privacy and breach legislation, but it remains to be seen whether it will increase risk by costing business more to comply, or decrease it by better protecting data. Signing the DNS root zone will have a positive impact on risk, but use of non-Latin alphabet in domains will probably be looked back upon as negative.
The most significant impact on risk over the last week was November’s Microsoft Tuesday security bulletins, and most developments this week had a positive impact on risk. Kerfuffles over another SMB issue is of little consequence as was the news of SCADA hacking in Brazil. The US Congress has taken up data privacy and breach legislation, but it remains to be seen whether it will increase risk by costing business more to comply, or decrease it by better protecting data. Signing the DNS root zone will have a positive impact on risk, but use of non-Latin alphabet in domains will probably be looked back upon as negative.
Weekly Intelligence Summary: 2009 – 11 – 06
The most risk significant development this week was Microsoft’s Advance Notification for release of six security bulletins on 2009-11-10. Sun released an update to Java addressing seventeen vulnerabilities, but none are presently the target of attack. Historically, Java vulnerabilities are ignored by criminals or attacked months after patching. Social networks continue to be a primary target of criminal activity. Gumblar, the FTP-stealing trojan is now targeting Wordpress blogs. Bredolab, Virut and Zeus activity continues with malicious code disguised as shipping confirmations and money transfers. However, sending pharmaceut
The most risk significant development this week was Microsoft’s Advance Notification for release of six security bulletins on 2009-11-10. Sun released an update to Java addressing seventeen vulnerabilities, but none are presently the target of attack. Historically, Java vulnerabilities are ignored by criminals or attacked months after patching. Social networks continue to be a primary target of criminal activity. Gumblar, the FTP-stealing trojan is now targeting Wordpress blogs. Bredolab, Virut and Zeus activity continues with malicious code disguised as shipping confirmations and money transfers. However, sending pharmaceut
Followers
This blog has 8 followers.
Visit the
blog page on Facebook
to see who's following this blog.
Popular in:
Not enough data.
Calculated for blogs with 20+ followers.
Calculated for blogs with 20+ followers.
Related Blogs
Questions? contact: networkedblogs@ninua.com
Copyright (C) 2008, Ninua, Inc.