Experts Available to Discuss Study Claiming Hackers Find Targets Outside of Microsoft.ExpertSource: TOPIC: The SANS Institute The SANS Institute (SysAdmin, Audit, Networking, and Security) is a trade name owned by the for-profit Escal Institute of Advanced Technologies. SANS provides computer security training, professional certification, and a research archive. and a team of experts from industry and government uncovered more than 600 new Internet See Web 2.0 and Internet2. security vulnerabilities in the first quarter of 2005 and that hackers have increasingly targeted antivirus software See antivirus program. (tool) antivirus software - Programs to detect and remove computer viruses. The simplest kind scans executable files and boot blocks for a list of known viruses. and media players, according to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. an article by Reuters. Experts believe hackers are focusing on software programs, other than Microsoft's, because many Windows users have opted for the automatic security upgrades and assume their computers are always updated. The hackers penetrate security holes to distribute spam and to steal credit card information from the computer user. EXPERTS: ExpertSource can offer several highly qualified experts to comment on this story: Alan Paller is co-founder and director of research at the SANS Institute, the cooperative research and education organization whose 45,000 alumni are responsible for securing computer networks and systems in organizations throughout the world. SANS also operates the Internet Storm Center, the Internet's early warning system, and compiles the definitive weekly, quarterly, and annual lists of the most critical security vulnerabilities that must be fixed. As an Internet leader, Alan has been called to the White House, Congress, and courts of law as an expert and authority. In 2001 he was appointed by the President to the US National Infrastructure Advisory Council (NIAC NIAC National Iranian American Council (Washington, DC) NIAC National Infrastructure Advisory Council NIAC NASA Institute for Advanced Concepts NIAC Nonprofits' Insurance Alliance of California NIAC National Internet Advisory Committee ), and in 2005, the Federal CIO CIO: see American Federation of Labor and Congress of Industrial Organizations. (Chief Information Officer) The executive officer in charge of information processing in an organization. Council selected him as the Industry Leader of the Year, recognizing "vision and outstanding service to the federal information technology community." Alan has degrees from Cornell University Cornell University, mainly at Ithaca, N.Y.; with land-grant, state, and private support; coeducational; chartered 1865, opened 1868. It was named for Ezra Cornell, who donated $500,000 and a tract of land. With the help of state senator Andrew D. and the Massachusetts Institute of Technology Massachusetts Institute of Technology, at Cambridge; coeducational; chartered 1861, opened 1865 in Boston, moved 1916. It has long been recognized as an outstanding technological institute and its Sloan School of Management has notable programs in business, . David Perry is Trend Micro's media- and story-savvy spokesperson on viruses and anti-virus strategy. He is an invaluable and highly objective source who has a range of entertaining and informative perspectives on a variety of security topics: computer viruses, taxonomy, terminology, lifecycle and trends in viruses and other malware, cybersecurity and the current state of the industry, the recent proliferation of computer viruses and denial-of-service attacks against computer systems, the future of anti-virus, what will future computer viruses look like and how will they behave? He can discuss Trend Micro's unique approach to anti-virus. The company recognizes the fact that no one can ever prevent all viruses, so their approach is to alleviate the costs associated with security by focusing on the most expensive piece of the lifecycle and minimizing outbreaks and reducing assessment and cleanup costs after an attack. Recognized as a leading authority on computer virus prevention, Perry has more than 25 years of experience in the technology sector, which includes working with industry-leading antivirus vendors and educating the public about virus prevention. He speaks regularly at security events and with the media, and has co-chaired a conference at the White House on the topic of public education and critical system security. At Trend Micro, Perry works to educate network administrators, computer users and the public at large about computer viruses and how to protect against them. Alan Simpkins is the practice director of security at Equant. In this role, he is responsible for Practice Director of Security. Alan has more than eight years of experience in network design, network security, policy definition, intrusion detection, and information security. This experience transverses the civilian and military marketplace. Beginning his career at the U.S. Defense Department and the U.S. Navy, Alan spent six years performing a variety of military duties. These include serving as a terminal area security officer and maintaining secure databases for the U.S. Navy Radiation Health Program at the U.S. Naval Units in Oakland, Calif., and Annapolis, Md. Alan began his civilian employment at Data Systems Marketing, where he served as a senior systems engineer. This was followed by employment with two consulting startups, where provided a variety of billable services to customers and served as a valued contributor to the product development teams. In these positions, Alan led numerous security initiatives, ranging from designing a multinational network for a large U.S. Stock Exchange to developing security policies for companies in a variety of markets. Alan has formulated tools and operational consulting procedures for use in the security policy, firewall pre-deployment, security auditing, and Internet scanning spaces. In addition, he has designed firewall architectures for companies in a number of market sectors, including financial, manufacturing, research, and government. Glenn Watt, President and CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. of Backbone Security, is a board-certified, 25-year veteran of cyber warfare who received numerous awards from the Department of Defense for his leadership in defending our nation's computer networks. Watt is an accredited accredited recognition by an appropriate authority that the performance of a particular institution has satisfied a prestated set of criteria. accredited herds cattle herds which have achieved a low level of reactors to, e.g. Certified Information Systems Security Professional Certified Information Systems Security Professional (CISSP) is a vendor-neutral certification governed by the non-profit International Information Systems Security Certification Consortium (commonly known as (ISC)²). (CISSP (Certified Information Systems Security Professional) The award for successful completion of an examination in computer security administered by the International Information Systems Security Certification Consortium (ISC)2. ) as well as a Certified Information Security Manager Certified Information Security Manager (CISM) is a designation awarded by the Information Systems Audit and Control Association to individuals who pass a written examination and have at least five years of information security experience with a minimum three years of (CISM (Certified Information Security Manager) The award for successful completion of an examination in information security management from the Information Security Audit and Control Association. See ISACA. ). A leader in the computer security industry, he has published dozens of information assurance articles, and is currently authoring a textbook on security engineering. Backbone Security conducts thorough vulnerability assessments of computer networks including penetrations testing and scanning. The company acts as an attacker to locate any potential threats within the system. In this way, their clients can be properly protected against hackers and cyber crime. Backbone Security also specializes in secure communications and helps prevent sensitive internal information from escaping. Backbone Security is one of only seven companies in the nation recognized by the National Security Agency (NSA NSA abbr. National Security Agency Noun 1. NSA - the United States cryptologic organization that coordinates and directs highly specialized activities to protect United States information systems and to produce foreign ) to facilitate the transfer of government-developed INFOSEC Assessment Methodologies (IAM IAM - Interactive Algebraic Manipulation. Interactive symbolic mathematics for PDP-10. ["IAM, A System for Interactive Algebraic Manipulation", C. Christensen et al, Proc Second Symp Symb Alg Manip, ACM Mar 1971]. ) into the private sector. The NSA has specialized knowledge in providing information systems security assessments and training computer professionals in comprehensive computer security methodology and practices. Backbone Security also specializes in computer security products. ExpertSource cannot guarantee the immediate availability of these experts or their familiarity with this specific issue. Journalists seeking to interview any of these experts can obtain contact information by visiting http://www.businesswire.com/. ExpertSource provides academic and industry experts to the media at no charge. Journalists are encouraged to submit queries to ExpertSource when seeking experts on specific subjects. An online registration form is available at the above web address. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion