Automated Malware Analysis Whitepaper [ Source: Norman ]

July 2012- The risks of malware analysis are easily surmountable through the use of an automated dynamic malware analysis platform such as Norman's Malware Analyzer G2 (MAG2). MAG2 provides additional benefits to analysts in their fight against a constantly growing and maturing malware threat landscape. To learn more about Norman?s Malware Analyzer G2 defense-in-depth strategy see the Norman Automated Malware Analysis Whitepaper.

Identity and Access Governance: Bringing Business and IT Together [ Source: NetIQ ]

June 2012- As different as IT and business needs might seem, in the case of identity-management and access-governance systems, you cannot meet the needs of one without meeting the needs of the other. It is imperative that both systems work together to meet and exceed business and IT objectives. While IT must support compliance efforts, provide access, keep systems secure and update technology and computing environment, business managers are concerned with staying compliant, passing security/regulatory audits, ...

Reduce Your Breach Risk: File Integrity Monitoring for PCI DSS Compliance and Data Security [ Source: NetIQ ]

June 2012- Despite growing protective security measures, data breaches continue to plague organizations. This paper discusses the importance of file integrity monitoring (FIM), which facilitates the detection of attacks by cybercriminals, as well as insider threats that may result in costly data breaches. It also discusses file integrity monitoring as a critical component of Payment Card Industry Data Security Standard (PCI DSS) compliance, and shows how NetIQ addresses both security and compliance challenges through the NetIQ Identity ...

Four Steps to Defeat a DDoS Attack [ Source: Imperva ]

June 2012- DDoS attacks, aided by off-the-shelf tool kits and simple automation techniques have become the weapon of choice for both financially-motivated cyber criminals and hyper-politicized "hacktivists." Organizations of all sizes must recognize that they are potential targets for the next massive DDoS barrage. Fortunately, there are some key counter-measures that can be employed to protect your organization.

Read this paper to understand the critical security techniques your organization needs to take in order to ...

Best Practices in System Security and Privacy [ Source: IBM ]

April 2012- IBM SmartCloud Notes helps to protect our customers' information through governance, tools, technology, techniques, and personnel. SmartCloud Notes is a full-featured email, calendar, contact management and instant messaging service in the IBM cloud. At IBM, we strive to implement security and privacy best practices. The SmartCloud Notes security controls provide a range of protection of e-mail while enabling business operations.

Neustar revamps SiteProtect DDoS strategy; targets service provider partners [ Source: Neustar UltraDNS ]

December 2011- "It may just seem like DDoS attacks don't exist at all." Find out why Tier1 Research gives the thumbs-up to SiteProtect - Neustar's cloud-based DDoS mitigation solution. Get a knowledgeable third party's take on the benefits of stopping attacks in the cloud, far away from key infrastructure.

Discover why T1R likes SiteProtect's cost-effectiveness, along with the flexibility its on-demand service affords. See what Tier1's expert analyst says about Neustar's 10+ years of ...

2011 Mid-Year Security Report [ Source: Blue Coat ]

November 2011- Innovation breeds opportunity, even for the underground. Web and mobility innovations focus on ease of use, availability, and building large user audiences, but they breed opportunity for cybercrime. Security typically comes later, after a period of breaches and security issues put the issue front and center. Halfway through 2011, we are in the midst of this security period.

The majority of web threats are now delivered from trusted and popular web sites that have ...

Best Practice Log Management: Correlation is Key [ Source: CorreLog ]

October 2011- Today, collecting email data is a necessity for compliance standards, forensic analysis and managing end-user performance and availability. But making sense of the data is a challenge within itself. Collecting the data is only part of the equation and research and many shops are turning towards correlation which helps bring meaning to the massive amount of data collected. This white paper explains how to establish a systematic approach to identifying relationships (correlating!) between log data ...

Ovum Technology Audit: Arbor Pravail DDoS Protection Solution [ Source: Arbor Networks ]

August 2011- As the size, frequency and complexity of distributed denial of service (DDoS) attacks increase, data center security and availability are quickly becoming top business concerns. Yet, traditional security products such as firewalls and intrusion prevention systems (IPS) are inadequate when it comes to stopping today's complex, multi-faceted DDoS attacks.

Arbor Networks, a leading network security company, recently introduced the Pravail - Availability Protection System (APS) - focused specifically on securing enterprises and the ...

Intelligent Layer 7 DoS and Brute Force Protection for Web Applications [ Source: F5 ]

August 2011- Both Denial-of-Service (DoS) and Brute Force Attacks have existed for many years, and many network devices tout the ability to withstand them. However, most of today's DoS attacks target layer 7 (L7) by overwhelming applications with seemingly valid requests and Brute Force programs can send more than one million attempts per second. This paper will discuss how to intelligently mitigate these types of attacks.

Anatomy of a Botnet [ Source: Arbor Networks ]

March 2011- As a wide-open environment, the Internet has allowed a large criminal element to thrive. For evidence, look no further than the escalating growth of botnets and distributed denial of service (DDoS) attacks that have been publicized in recent news. Download this paper to learn how emerging botnet and DDoS threats are identified, analyzed and mitigated to help protect organizations like yours from their impact.

Messaging and Web Security Best Practices for 2011 and Beyond [ Source: GFI ]

March 2011- In this white paper, Osterman Research discusses how the daily occurrence of malware within organizations has become decidedly worse over the past several years. The number of platforms from which threats enter organizations on a daily basis continue to grow and they include but are not limited to email, social media websites, smartphones, flash drives and direct hacker attacks.

Managed Compliance: Streamlining Multiple Compliance Mandates with Visibility, Intelligence and Auto [ Source: Tripwire ]

January 2011- A perfect storm is brewing, with increasingly complex, persistent cyber threats and more numerous and prescriptive compliance mandates to protect against them. In this white paper, learn how to ride out this storm with automated solutions that reduce threats, meet multi-compliance demands, and help pass audits.