Jan
Today I want to inform you about advanced persistent threat. All security standards and company Governance Compliance Policies like PCI DSS, GCSx CoCo, SOX (Sarbanes Oxley), NERC CIP, HIPAA, HITECH, GLBA, ISO27000 and FISMA need devices like PCs, Windows Servers, Unix Servers, network devices like firewalls, Intrusion Protection Systems (IPS) and routers to be secure so as that they defend confidential knowledge secure. Hardening is needed equally for servers, workstations and network devices like firewalls, switches and routers. A Vulnerability scan or external Penetration check can report on all vulnerabilities applicable to your systems and applications. Vulnerability Scanning services got to be delivered in situ on-site.
What regarding internal threats? Firewalling, Intrusion Protection Systems, AntiVirus software and totally implemented device hardening measures can still not stop or perhaps detect a rogue employee who works as an ‘inside man’. Similarly, with the arrival of advanced persistent threat (APT) like the publicized ‘Aurora’ hacks that use social engineering to dupe staff into introducing ‘Zero-Day’ malware. ‘Zero-Day’ threats exploit previously unknown vulnerabilities – a hacker discovers a brand new vulnerability and formulates an attack method to take advantage of it. “All the firewalls, Intrusion Protection Systems, Anti-virus and method Whitelisting technology within the world will not prevent from a well-orchestrated internal hack where the perpetrator has admin rights to key servers or legitimate access to application code – file integrity monitoring employed in conjunction with tight amendment management is that the solely thanks to properly govern sensitive payment card systems” Phil Snell, CTO, NNT
All servers, workstations and network devices got to be hardened via a mixture of configuration settings and software patch deployment – Any amendment to a tool could adversely have an effect on its hardened state and render your organization exposed to security threats – file-integrity monitoring should even be utilized to mitigate ‘zero-day’ threats and therefore the threat from the ‘inside man’ – vulnerability checklists can amendment often as new threats are identified. You should read about browser protection too.






