Alternative Search Engine

Security Think Tank: Strategies for blocking malware comms

https://www.computerweekly.com/opinion/Security-Think-Tank-Strategies-for-blocking-malware-comms
See More From: computerweekly.com   ( Internet & Websites )

Dec 13, 2018 11:12 PM 4+ mon ago

Security Think Tank: Strategies for blocking malware comms

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent.

From a cyber adversary standpoint, an attacker will often maintain access and persistence in a network by using a technique known as command and control (C&C), which allows an adversary - or their piece of malware - to "call back" to another command server to receive additional instructions or execute certain actions by the adversary, for instance install additional software/malware that can be further used to accomplish the goals of the attacker.

To combat this, there are many ways that network defenders can prevent command and control traffic within their network. To start, a robust security system should always take into account how to restrict access to only those who need it (authorised) for both physical and ...

Read More

Security Think Tank: Three steps to detect malware comms

computerweekly.com     4+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. We are accustomed to clicking on something, triggering a response, and activating t...

Security Think Tank: Basic steps to countering malware comms

computerweekly.com     4+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. Often, malicious software, irrespective of how it got into the company's IT, will n...

Security Think Tank: Prevention and detection key to disrupting malware comms

computerweekly.com     4+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. Identifying these types of attack requires a two-pronged approach of prevention and...

Security Think Tank: How to tool up to catch evasive malware comms

computerweekly.com     4+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. These typically beacon out to the attacker from the point where the malware is inst...

Security Think Tank: Combine tech, process and people to block malware comms

computerweekly.com     4+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. The cyber kill chain (developed by Lockheed Martin) models the process that attacke...

Security Think Tank: Smart botnets resist attempts to cut comms

computerweekly.com     4+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. This is especially true in the case of botnets. What is a botnet? A botnet is an ar...

Security Think Tank: Severing C&C comms is key, but complex

computerweekly.com     4+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. To interact with a compromised system, communication channels are established betwe...

Security Think Tank: Situational awareness underpins effective security

computerweekly.com     4+ mon ago

Security Think Tank: Situational awareness underpins effective security As attackers begin to use multiple command and control systems to communicate with backdoors and oth...

Security Think Tank: Outsource security operations, not control

computerweekly.com     8+ mon ago

This email address doesn t appear to be valid. This email address is already registered. Please login. ...

Security Think Tank: Key considerations for determining cyber risk

computerweekly.com     1+ mon ago

...

Security Think Tank: Focus on security before app deployment

computerweekly.com     5+ mon ago

In the rush to deploy applications, security becomes an afterthought and is largely ignored when it really matters most - during the software development process. From a purely financial point of vie...

Security Think Tank: Put collaboration on 2019 security agenda

computerweekly.com     4+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. In the 12 years that Threat Horizon has been published, many of the predicted threa...

Security Think Tank: Align security strategy to business objectives

computerweekly.com     4+ mon ago

Security Think Tank: Align security strategy to business objectives At the close of 2018, we asked CW Security Think Tank contributors to name one thing predicted for 2018 ...

Security Think Tank: Approach UTM with caution

computerweekly.com     2+ mon ago

Security Think Tank: Approach UTM with caution How can organisations best use unified threat management tools to help stem the tide of data breaches? Share thi...

Security Think Tank: Some basic password guidelines

computerweekly.com     9+ mon ago

Security Think Tank: Some basic password guidelines In light of the fact that complex passwords are not as strong as most people think and that most password strategies inevitably lead to people follo...

Security Think Tank: Walk before you run

computerweekly.com     3+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. Having said that, the paradigm of zero-trust networks, software-defined datacentres...

Security Think Tank: Outsource responsibility, not accountability

computerweekly.com     8+ mon ago

Security Think Tank: Outsource responsibility, not accountability What critical security controls can be outsourced and how do organisations, SMEs in particular, maintain confidence that they are bein...

Security Think Tank: Defend application layer with good security hygiene

computerweekly.com     5+ mon ago

As soon as you allow an application through your firewall, there is a possibility of a layer attack on it. Of course, we have to let applications through firewalls to do business - to allow remote use...

Security Think Tank: A risk-based approach to security outsourcing

computerweekly.com     8+ mon ago

...

Security Think Tank: A three-pronged approach to application security

computerweekly.com     5+ mon ago

In October 2018, an article in Computer Weekly noted that "Most organisations (67%) believe hackers can still penetrate their network and 89% say they have had an application layer attack in the past ...

Security Think Tank: Top things to consider in security outsourcing

computerweekly.com     8+ mon ago

Security Think Tank: Top things to consider in security outsourcing What critical security controls can be outsourced, and how do organisations SMEs in particular maintain confidence that they...

Security Think Tank: Enable outcomes-based security in software development

computerweekly.com     6+ mon ago

Front-line operational security will always require a tick box element to ensure everyone is synchronised and singing from the same cyber security hymn sheet. Those on the front line cannot afford to ...

Security Think Tank: Firms neglect DNS security at their peril

computerweekly.com     4+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. Enter command and control (C&C) communications, the mechanism by which malware can ...

Security Think Tank: Aim for integrated resilience, continuity and recovery

computerweekly.com     1+ week ago

Up to recent time, perhaps the past couple of years, when I talked about the possibility of an extinction event from a cyber attack, the perspectives of the vast majority of people were still entirely...

Security Think Tank: Arguments for and against unified threat management

computerweekly.com     2+ mon ago

Security Think Tank: Arguments for and against unified threat management How can organisations best use unified threat management tools to help stem the tide of data breach...

Security Think Tank: How to manage software vulnerabilities

computerweekly.com     7+ mon ago

Follow: Software vulnerabilities continue to be discovered on a daily basis, and it can often be a race against the hacker to apply relevant updates and remediate a vulnerability bef...

Security Think Tank: How to achieve software hygiene

computerweekly.com     7+ mon ago

This email address doesn t appear to be valid. This email address is already registered. Please login. ...

Security Think Tank: Surviving the existential cyber punch

computerweekly.com     6+ day ago

Every good chief information security officer (CISO) knows that a potentially existential cyber attack, whether from an external or internal source, looms ahead. There is no "if" for the CISO. Rather...

Security Think Tank: Prioritise multifactor authentication in 2019

computerweekly.com     4+ mon ago

One thing predicted for 2018 that did not happen We predicted that attackers might target cyber insurance firms to learn who had pay-out policy coverage in order to...

Security Think Tank: C-suite needs to drive outcomes-based security

computerweekly.com     6+ mon ago

Everywhere you look, there are articles saying that security is a c-suite issue. Sadly, it seems the only people who do not realise that are members of the c-suite. The upper echelon of businesses nee...

Security Think Tank: Complex passwords provide a false sense of security

computerweekly.com     9+ mon ago

Security Think Tank: Complex passwords provide a false sense of security In the light of the fact that complex passwords are not as strong as most people think, and that most password strategies inevi...

Security Think Tank: Creative thinking key to meeting emerging security challenges

computerweekly.com     3+ mon ago

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent. Other developments, such as cloud computing, have hastened the displacement of netw...

Search Builder

(Click to add to search box)
email spear phishing  network defender analyses  layers security controls  malware tool providers  network traffic  malware tools  communications ports  South America  network defender  network protocols  security capabilities  Many tools  analyse packets  consolidation points  security practices  website drive  security system  command server  network defenders  control traffic  speed bumps  control server  hole attack  
**Content contained on this site is provided on an “as is” basis. 4Internet, LLC makes no commitments regarding the content and does not review it, so don't assume that it's been reviewed. What you see here may not be accurate and should not be relied upon. The content does not necessarily represent the views and opinions of 4Internet, LLC. You use this service and everything you see here at your own risk. Content displayed may be subject to copyright. Content is removed on a case by case basis. To request that content be removed, contact us using the following form: Contact Us.