20 hot IT security issues

From malware on Google's Android phones to the U.S. Defense Advanced Research Projects Agency trying to understand how stories or narratives impact security and human behavior, the security world certainly is never boring.

1 2 Page 2
Page 2 of 2

Memory scraping malware goes after encrypted private information

What's "pervasive memory scraping" and why is it considered by SANS Institute security researchers to be among the most dangerous attack techniques likely to be used in the coming year? Simply put, pervasive memory scraping is used by attackers who have gained administrative privileges to successfully get hold of personally identifiable information (PII) and other sensitive data held encrypted in a file system, according to Ed Skoudis, senior security consultant at InGuardians who is also an instructor at SANS events. Evidence of this attack is coming up again and again in data-breach cases, he said.

Tablets, smartphones force Cisco to rethink how security works

Cisco has unveiled a self-described "complicated" security architecture dubbed SecureX that it says provides a context-aware way to safeguard networks increasingly overrun with smartphones, tablets and virtualization. SecureX, outlined at the RSA Conference in San Francisco last month, will initially give Cisco firewalls -- and eventually its switches, routers and other products -- the ability to dynamically scan and tag data related to a user's identity and application/device usage in order to have a real-time basis for enforcing identity-based security policies.

What is an 'Advanced Persistent Threat,' anyway?

"Beware the Advanced Persistent Threat"! is the security vendor mantra of the moment. But really, what is an APT? Depends who you ask ... Some claim the term "Advanced Persistent Threat" originated somewhere in the Defense Department and its contractors that face continual cyberattack espionage assaults. "I think it was the Air Force," says Eddie Schwartz, NetWitness chief security officer. "It's persistence of the adversary and the variety of techniques they're using, like malware or social engineering, against a nation's significant economic interests."

Is a next-generation firewall in your future?

The traditional port-based enterprise firewall, now looking less like a guard and more like a pit stop for Internet applications racing in through the often-open ports 80 and 443, is slowly losing out to a new generation of brawny, fast, intelligent firewalls. The so called next-generation firewall (NGFW) describes an enterprise firewall/VPN that has the muscle to efficiently perform intrusion prevention sweeps of traffic, as well as have awareness about the applications moving through it in order to enforce policies based on allowed identity-based application usage. It's supposed to have the brains to use information such as Internet reputation analysis to help with malware filtering or integrate with Active Directory.

Follow Michael Cooney on Twitter: nwwlayer8

Read more about wide area network in Network World's Wide Area Network section.

Copyright © 2011 IDG Communications, Inc.

1 2 Page 2
Page 2 of 2
Subscribe today! Get the best in cybersecurity, delivered to your inbox.