January 01, 2005 — CSO — Year Vulnerability Description Protection Recovery
20,000 B.C. FIRE!!! rrrrnnnhh! HOT!! rrnh! arnnh!
WHITE LIGHT! SKY! BLIND! rrrnh!
GROUND DANCE ORANGE! rnnh!
TREES DANCE ORANGE! arrrrnh!
MAN! WOMAN! arrnh! ALL! RUN! rrnnh! RUN! RAIN! HOPE SKY RAIN! arrrnh!
400 B.C. Beverages easily poisoned with hemlock Paralysis begins in feet, ascends, with mind remaining clear until the end. Death arrives calmly and peacefully. Do not anger gods with dialectical arguments over concepts of piety and virtue. This will corrupt youths and interfere with state religion. None. You must rebuild philosophy with unpoisoned teachers.
1773 A.D. Holes in port security open perimeter to attack
Allows tea-based DDOS (Distributed Denial of Sovereignty) attack. Patriots disguised as Mohawks infiltrate King's ships; destroy tax-free payload; incite widespread revolt. Similar effects noted as far away as France. Try ceasing taxation without representation. (Might be too late.) Annex India.
1912 A.D. Weak hulls Design flaws make large ocean liners susceptible to Iceberg Attack (Hubris variant). Patching is impracticable, so build contingency plans despite "unsinkable" marketing claims; even if you're not sure whether you're affected, wake up captain; increase lifeboat budget. Telegraph SOS; fill lifeboats; wait for emergency backup.
2004 A.D.* Witty-A worm Sends UDP packet from port 4000 to random ports at random IP addresses; attempts to write 64KB of data to a random location on physical disks, destroying them; repeats indefinitely. Block port 4000; download patch. None.
2019 A.D. "InternetEnd" multimodal airborne bacterial worm Infects and destroys every computer within a mile. Attack vectors include wireless access points, power lines, cat-5 cable, DVDs, cell phones, satellite dishes, radio transmissions and light breezes. RUN! rrnnh! RUN! RAIN! HOPE SKY RAIN! arrrnh!
*Real vulnerability, details courtesy of sophos.com
Read more about data protection in CSOonline's Data Protection section.
Other stories by Scott Berinato
The challenge of true data protection spans databases, internal and external networks, physical and offsite storage, business partners and more. These resources offer expert perspective from the basics through specific key elements of data protection strategies.
Network security basics
Protection, detection, and reaction—those are the three underlying principles your security program must embody
Computer incident detection, response, forensics
Richard Bejtlich shows how to measure and improve the maturity of your incident response
A few good IT security metrics
Stop counting blocked malware attachments and measure things that can contribute to meaningful change
5 key cloud security trends
Cloud security is evolving rapidly—stay on top of it
IT risk assessment frameworks
How to do end-to-end encryption
How to compare and use enterprise antivirus
Also find sample data protection policies in CSO's tools, templates and policies library
- Introduction to VMware vCenter Site Recovery Manager 5
- Introduction to Virtualization
- Preventing Unplanned Downtime with Server Virtualization
- Secure Cloud Infrastructure and Next-Generation Data Centers - An Interactive Panel for Decision Makers
- Gartner Next Generation Network IPS Webcast
- Understand Your Data: The Future of Backup and Archiving
- Overcome Top 7 Admin Challenges of Active Directory
- Insiders Can Ruin Your Company. Take Action.
- Top Solutions and Tools to Prevent Devastating Malware
- X-Ray of the PCI Process-4 Proactive Steps
- Streamline Compliance and Increase ROI
- Beyond SFTP: Five Ways Secure Managed File Transfer Can Improve Your Business
CSO Corporate Partners
- Patch Tuesday preview, February 2012
Microsoft published its Patch Tuesday Preview for February of 2012 a few minutes ago. IT admins can expect nine bulletins to address 21 security vulnerabilities.
It looks like four bulletins will be rated critical while the rest are designated as important.
Affected Microsoft products are:
- M86 report proves water is wet
- Actor, banker, soldier, spy: Suits and Spooks Anti-Conference aims to redefine security
More Salted Hash with Bill Brenner
