Cyberwars: how to fight back.Angela Cunvin, Appsense The current security threats to business IT infrastructures have increased dramatically. Most notable are the rising number of viruses and similar malicious programs that threaten serious financial loss. 'The numbers of viruses, worms, Trojans and other, malicious programs aimed at PC users has now surpassed 100,000' according to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. McAfee (Tuesday, 21 September, 2004). McAfee, and many other anti-virus firms, are seeing 25-50 new viruses or variants of old ones every day. For example, the current 'number one' on Trend Micro's list of top five security threats is the NetSky.P worm. The variants of NetSky have been prominent in IT and mainstream media for the majority of this year infecting networks through email attachments that, at first, appear to be official documents. NetSky, along with other worms, MyDoom, Sasser and SoBig, racked up an estimated 8 billion pounds in combined damages, worldwide in the last 2 years. Anti-virus software anti-virus software n → Antivirensoftware f is becoming more effective to fight the new strains of viruses and worms, but is still a reactive form of defense. Anti-virus soil-ware, in some circumstances, is used to resolve damage caused by a virus rather than prevent it in the first place. Although viruses are one of the most feared IT security threats, there are many other issues organizations must consider in today's evolutionary technological industries in order to keep their IT infrastructures safe. Know Your Enemy The 2003 CSUFBI Computer Crime & Security Survey results still conclude that over half of known IT security breaches occur from within organizations. Disgruntled dis·grun·tle tr.v. dis·grun·tled, dis·grun·tling, dis·grun·tles To make discontented. [dis- + gruntle, to grumble (from Middle English gruntelen; see or former employees pose a threat to any business and can gain access to internal systems relatively easily. Confidential company information can be used maliciously by employees either hacking into servers and files or by utilizing hacking tools readily available via the Internet and with a higher concentration of computer literate computer literacy n. The ability to operate a computer and to understand the language used in working with a specific system or systems. computer literate adj. workers these risks are threat to any business and can gain access to internal systems relatively easily. Confidential company information can be used maliciously by employees either hacking into servers and files or by utilizing hacking tools readily available via the Internet and with a higher concentration of computer literate workers these risks are even more significant. Even trusted employees can, unwittingly, cause major disruption to organizations. Security breaches that affect the financial bottom line are not just in the form of externally or internally introduced viruses that infiltrate and damage the network. Other factors to contemplate are legal threats and loss of productivity which could bring about consistent financial loss if not identified and addressed. Peer-to-peer file sharing Copying files from one computer to another. See peer-to-peer network, file sharing protocol and file and printer sharing. has become an extremely popular pass-time, especially during company working hours and with audio and video files having unlimited sizes, it is easy to understand the network bandwidth issues that may arise. The requirement to upgrade hardware to compensate for lack of storage or the threat of virus propagation on the network can be costly, as can the loss of productivity whilst engaged in this activity. Games and animations can also affect user productivity. These can easily be introduced onto the network and distributed between peers as the majority of standard operating system operating system (OS) Software that controls the operation of a computer, directs the input and output of data, keeps track of files, and controls the processing of computer programs. security measures Noun 1. security measures - measures taken as a precaution against theft or espionage or sabotage etc.; "military security has been stepped up since the recent uprising" security are weak. Internet access See how to access the Internet. is crucial to most businesses and the security threats that can be introduced by it are notorious. Emerging Internet threats include spyware and adware technologies, which have the ability to install themselves on machines without users 'knowledge. These types of programs can collect and transmit information, such as key-strokes and Web-surfing behavior, but more importantly can reveal passwords and other sensitive information. Inappropriate content is a controversial and worrying threat to today's enterprise. Through the Internet or peer-to-peer file-sharing, employees have the ability to download or share pornographic content. Not only can these cause detrimental effects on company reputation, but could leave the organisation liable to legal action. Both scenarios could result in financial losses. A major Internet security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. risk, in which a user could unknowingly incur substantial cost to the organization, is the downloading or introduction of unlicensed software to machines inside the network. Software piracy The illegal copying of software for distribution within the organization, or to friends, clubs and other groups, or for duplication and resale. The software industry loses billions of dollars each year to piracy, and although it may seem innocent enough to install an application on a continues to grow. More than one third of the software installed on the world's computers is pirated' according to the Business Software Alliance (BSA 1. BSA - Business Software Alliance. 2. BSA - Bidouilleurs Sans Argent. ). UK copyright laws Penalties include unlimited fines and up to two years imprisonment Imprisonment See also Isolation. Alcatraz Island former federal maximum security penitentiary, near San Francisco; “escapeproof.” [Am. Hist.: Flexner, 218] Altmark, the German prison ship in World War II. [Br. Hist. ) serve to deter unlicensed software being introduced onto company machines, but the issue is, how do organizations monitor, let alone, combat unlicensed software being introduced onto corporate systems by their users, via Internet downloads or removable media In computer storage, removable media refers to storage media which can be removed from its reader device, conferring portability on the data it carries. A removable drive is a reader device for such media. ? A BSA reward of 10,000 pounds for revealing companies who use unlicensed software has also made it an attractive proposition for some to turn in their organisations to the authorities. After all, it is the company Directors who pay the price not the employee! www.infosecroadshow.co.uk |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion