Latest Network Security News

Alert from Amit Klein, Trusteer's CTO on new SpyEye Trojan post transaction fraud schemes that criminals are using to attack UK and US bank customers
posted on 06/01/2012

Just before the recent holiday season, Trusteer came across a SpyEye configuration which attacks banks in the USA and UK. Instead of intercepting, or diverting, email messages the attack automatically manipulates the bank account transaction webpage the customer views. The attack unfolds over through three major steps: 1. First a man-in-the-browser attack is launched on an online banking session and debit card data is captured; 2. Then the debit card data is used to commit fraud; 3. The next time the customer logs into their online banking site a post transaction attack is launched that hides fraudulent transactions from the victim Amit Klein comments : Many of us tend to spend a little more than we intend during the holiday season and, with all the transactions hitting our accounts, it can be hard to keep track. During the final few weeks of 2011, Trusteer saw fraudsters take advantage of this trend with their latest fraud scheme. Before I go on, let’s just make sure we’... [more]

top nine cyber security trends for 2012 : Imperva predictions
posted on 06/01/2012

Rise in Big Data and Application DDoS Attacks Among Key Concerns Imperva, a pioneer and leader of a new category of data security solutions for high-value business data in the data center, announced yesterday its predictions for the top cyber security trends for 2012. The analysis, compiled by Imperva’s Application Defense Center (ADC), is designed to help companies shield themselves from the threat of hackers and insiders. “Hacking, by nature, is a discipline that relies on innovation,” explained Imperva CTO Amichai Shulman. “Knowing future, potential threats helps security teams fight against the bad guys.” • A detailed white paper is available. • Imperva will host a webinar with CTO Amichai Shulman and registration is available here. Imperva predicts that the top nine cyber security trends for 2012 are: Trend #9: SSL gets hit in the crossfire - Currently, attackers are exploiting vulnerabilities in the various implementations of the SSL protocol. Furthermore, we are se... [more]

SunGard Offers CIOs Cloud Proof of Concept
posted on 05/01/2012

SunGard Availability Services, the pioneer and leading provider of Information Availability and business continuity services, is offering an initiative for CIOs to test the benefits of a cloud computing environment in its most resilient and flexible form. Available to enterprises for a limited time, organisations can access SunGard’s fully managed enterprise-class shared cloud in Europe for 60 days with no commitment to any long term contract. This initiative has been designed to allow those businesses thinking of making the move to cloud-based Infrastructure as a Service (IaaS), or even those that are unsure about the benefits such services offer, the chance to trial SunGard’s highly resilient infrastructure – built from over a decade’s experience in working with enterprise customers to deliver tailored managed service solutions. There continues to be countless promises that IaaS will deliver lower costs, increased flexibility and capital expenditure free computing, all of which hav... [more]

Lanner Combines Control, Management and Data Processing in One Network Appliance
posted on 22/12/2011

Lanner Electronics Inc., today released a network appliance platform unlike any other released before. The information security industry is experiencing increasingly sophisticated niche solutions for specific needs such as WAN optimization, email security, application delivery, and intrusion prevention systems. Lanner’s FX-7210 was designed to combine these different requirements into one single network appliance using two motherboards. “The FX-7210 has been in development for a few years” said Jesse Chiang, product planner at Lanner Electronics. “Two of our clients have already used this hardware platform to deploy their new IPS and application delivery appliances. The FIPS and NEBS compliant IPS based on FX-7210 is now used in the datacenters of two Fortune 50 telecom companies, so we are very confident in the platform and are now offering it to other clients. At these datacenters, this appliance is handling 20 Gbps IPS throughput and 100+ Gbps firewall throughput, so this hardware was... [more]

Confident Technologies gives its 2012 Authentication Predictions
posted on 22/12/2011

As we quickly approach the end of the year, here are some Confident Technologies’ top 5 authentication predications for 2012. They include authentication trends that we think will emerge next year, as well as some predictions about some specific attacks that could happen next year. 1. BYOMD (bring your own mobile device) will spell big trouble for businesses in terms of data loss in 2012. Employees and contractors are increasingly bringing their personal smartphones and tablets to work and using the devices for a blend of personal and business related activities. 2012 will bring even more of this and we’ll see a few high-profile incidents of enterprise data loss resulting from allowing employees to connect their personal mobile devices to the company network without proper security protocols in place. The end result will be more businesses enforcing stricter authentication and security policies, particularly in regards to what information can be accessed, used and stored on mobile dev... [more]

Other Security news and resources