Hacker Detection

SCADA-driven systems are found in all components of Critical National Infrastructure including energy power plants, electricity supply grids, chemical plants and other industrial systems. Where years ago these systems were connected via dial-up modem – with password security that at the time was highly resistant to attack – the current trend is to plug these devices into the Internet using a standard Ethernet connection – or worse yet, by WIFI or some other wireless protocol that lacks the encryption and authentication needed to prevent tampering. Thousands of SCADA-based systems accessible from the Internet have weak default privileged passwords “defending” them. Download this whitepaper to learn how to secure SCADA systems from cyber attacks.

Big Data techniques are seen as increasingly valuable by organizations seeking to maximize their security intelligence. Discover how RSA can help you analyze big data, protect your company, and save your organization time, money and its reputation.

The old proverb states, revenge is a dish best served cold. Because of this, WikiLeaks or other sites of hactivism, while for the time being, seem to have died down in activity, should never be disregarded or viewed as a medium that has lost its effectiveness. In this white paper Dr. Dan Geer explains a scope of value on protecting data and the severity of insider threat and how to combat this potential threat, which surprisingly includes sharing data.

PowerBroker Databases provides a core database log reading technology which provides a level of visibility into changes to data assets. Capabilities include credential discovery, management, fine-grained privilege delegation, privileged user activity monitoring, closed loop activity reconciliation, and automated compliance reporting.

PowerBroker Password Safe is an enterprise password management solution for access control, manageability and audit of all types of privileged accounts, such as shared administrative accounts, application accounts, and local administrative accounts.

PowerBroker Auditor for File System is a real-time auditing, interactive analysis, alert¬ing, and compliance reporting solution for File System. Providing the monitoring, auditing and reporting required to mitigate the risks associated with delegated administration in regulated settings.

PowerBroker Auditor for Exchange is a real-time auditing, interactive analysis, alerting, and compliance reporting solution for Microsoft Exchange. It provides a centralized, real-time audit database for reporting and alerting against all Exchange activity including administrators, users and non-owner mailbox access.

PowerBroker Privilege Explorer for Active Directory and File Systems is a privilege management solution that offers a centralized view and management of enterprise wide Active Directory access. Administrators see access points to resources and exposure of intellectual property.

Advanced persistent threats (APTs) – most often taking the form of cyber criminal campaigns out for financial gain or trade secrets – have impacted some of the largest organizations and government agencies in the world. This addendum to our first in a series of Security Briefs on APTs, examines how miscreants exploit vulnerabilities in the most popular applications – such as Microsoft Word, Adobe Reader, Flash and Java – to gain entry to computer networks, which then allows them to siphon off valuable data. SC Magazine gets to the truth of the potential impacts these threats could cause to victimized organizations – and the best strategies and tools to put in place to thwart them.

As cloud services, SaaS applications, and the Bring Your Own Device (BYOD) trend become more and more common in the workplace, organizations are struggling to keep IT in control of the enterprise. Consult this comprehensive white paper to discover the security and integration challenges that often accompany SaaS adoption and learn how you can prepare to meet the new demands of the mobile enterprise by deploying a cloud-based SSO solution. Click through now to get started.

The IBM X-Force Trend and Risk Report is produced twice per year: once at mid-year and once at year-end. This report provides statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, web-based threats, and general cyber criminal activity. They are intended to help customers, fellow researchers, and the public at large understand the changing nature of the threat landscape and what might be done to mitigate it.

A criminal industry develops. This paper explores bot evolution, it’s global prevalence, who’s at risk, a look forward and combating bots using Global Threat Intelligence.

The Guarding against a data breach survey for 2013 is the sixth in our annual efforts to obtain statistical information on how our readers’ organizations are dealing with the growing number of data breaches. And, this time we extended our reach beyond North American shores to query security professionals in the U.K. and Australia. While cybercrooks have been stealing customers’ personally identifiable information stored by a slew of companies, these thefts have worsened in recent years – both in scope and cost. Based on research we conducted, this special editorial section, sponsored by Vormetric, reveals how many companies have suffered information breaches, the costs behind these data losses, the drivers behind their strides to protect their customer and corporate data, the types of IT security tools they’re enlisting to help them in these efforts, the potential areas of attacks they’re most concerned about, the legislative and industry mandates they’re most concerned about complying with, and much more.

Security breaches are expensive. An IT organization that better understands the risks associated with all layers of security is more certain that its threat assessment is accurate and that its defenses against data breaches are appropriate. HP delivers on the vision of full context and intelligence for monitoring and managing security risk in applications, operations, and even business process.

The multitude of devices, users, and generated traffic all combine to create a proliferation of data that is being created with incredible volume, velocity, and variety. As a result, organizations need a way to protect, utilize, and gain real-time insight from “big data.” So, how do you get started?

By building in comprehensive security measures at the design and architectural phase of NGDC build outs, organizations can preemptively optimize business-critical service availability by minimizing potential downtime through greater resiliency. Forward-thinking enterprises that take this route are in a much better position to deploy new on-demand business services more quickly and safely while maintaining efficiencies.

The evidence is clear: traditional security methods are insufficient for dealing with the complexity of today’s threats, so a new way of thinking about security is needed to fully protect against the ever-evolving threat landscape.

Application whitelisting used in conjunction with existing antivirus solutions provides a strong defense against emerging threats like APT and targeted malware, and also contributes to reduced operational costs by controlling the sprawl of unauthorized applications.

Many organizations still rely on security solutions with inherent limitations. Given the complexities of today’s database platforms and the sophistication of today’s cybercriminals, deploying a comprehensive and dedicated database security solution is a must. Here are five reasons why.

As networks continue to grow in size, complexity and level of business importance, the potential for malicious attacks grows right along with them. Today, there are hackers working around the clock, plotting threats through spyware, worms, botnets and shell-code to exploit new vulnerabilities. Responding to these challenges, IBM Security offers a comprehensive portfolio of intrusion prevention solutions that go beyond traditional intrusion prevention to provide multilayered, end-to-end security that can actually protect networks from attacks before they occur.

The ability to share services and information with various departments, partners, customers and other parts of the business ecosystem is a major advantage of cloud computing. As a result, successful cloud deployments hinge on securely and efficiently managing individuals’ access to resources, and protecting data from loss or corruption. From a legal and regulatory perspective, you must be able to control, monitor and report on who is accessing what cloud-based resources, and for what purpose. But the management of thousands, even millions, of individual IDs overwhelms most IT departments. IBM can help. IBM solutions enable clients to federate and centrally manage fine-grained access policies, and enforce them with security services in the cloud. In addition to enhancing cloud security, IBM solutions help reduce administration costs, ensure compliance and increase productive collaboration across the business environment.

IBM Security zSecure™ Compliance and Administration provides security personnel with the tools to efficiently administer IBM Resource Access Control Facility (RACF®) through simplified security administra-tion. It helps security staff measure and verify the effectiveness of their mainframe security settings and policies. It also automates audit reporting and monitors security events to help detect threats.

In this paper, ENTERPRISE MANAGEMENT ASSOCIATES® (EMA™) analysts examine today’s security challenges in light of the opportunity to build security directly into information systems, and the role of today’s finely grained technologies for identity and access management that make this more proactive approach possible.

Managing user identities and user-access privileges is a cornerstone of effective security for organizations. It is vitally important to verify that only the right people can access protected resources and that their activi-ties are sufficiently monitored. However, in order to effectively compete and meet customer expectations, organizations are increasing the number of users—including customers, employees, citizens, partners and suppliers—who are allowed to access information across the web, the cloud and federated environments. This trend makes identity and access management even more challenging and exposes organizations to many potential risks.

IBM Security and IBM Information Management solutions for security work with the IBM System z platform to allow the mainframe to serve as an enterprise security hub, providing comprehensive, centralized security capabilities for organizations with distributed, multiplatform IT environments.