ANX Corporate Blog: Posts tagged as managed security service
Showing 1 through 4 of 4 total posts
Mar 30th 2011, 12:13
Adobe Vulnerability Part 2 - Security Posturing
By now all of you are aware of the Adobe Zero-day vulnerability affecting both Adobe Flash and Reader. While patches have been released correcting this vulnerability, the question remains how do consumers (and by that I mean SMB, general consumers and Enterprises) protect themselves in the future. While we continue to state the obvious (and sometimes archaic) patches and malware protection, the reality is much more than that.
There continues to be an explosion of web applications in this rapidly expanding social web presence. The rush to deliver a product to market is more often over shadowed by good programming with a security focus.
Can the existing security technologies keep up with this explosion? Adobe is not the only vendor to deal with vulnerabilities, and they
There continues to be an explosion of web applications in this rapidly expanding social web presence. The rush to deliver a product to market is more often over shadowed by good programming with a security focus.
Can the existing security technologies keep up with this explosion? Adobe is not the only vendor to deal with vulnerabilities, and they
Mar 21st 2011, 09:05
New Adobe Vulnerabilities: Time to Revisit Security Policies
The latest Adobe Flash Player vulnerability reinforces just how challenging it is to safeguard your company against targeted attacks. On March 14, Adobe issued security advisory CVE-2011-0609 which warned of an attack that could cause a crash and potentially allow an attacker to take control of the affected system. This occurs when a malicious Flash (.swf) file is embedded in a Microsoft Excel (.xls) file and delivered as an email attachment. That’s an insidious method of attack! Check out the blog post by Jeong Wook Oh & Marian Radu for a thorough technical analysis of this vulnerability. Needless to say, it's easy to envision how such an attack could succeed. The evil doer just needs to obtain some
Feb 14th 2011, 18:33
Passwords Matter
Day 1 of RSA is in full swing, and I've already learned some great information. One of my favorite topics these days is best practices for passwords. Last year I was a victim of password theft. My personal Gmail account was hacked. After a day of having my friends and acquaintances bombed with spam from my account, I vowed to do a better job with my passwords.
During a session this morning, I heard a great suggestion for creating a complex password that's difficult to hack and easy to remember. There are three elements as follows:
1. Pick a unique phrase that's memorable to you only. Something like, "Bill's girlfriend is from Spain". Now, take the first letter from each
During a session this morning, I heard a great suggestion for creating a complex password that's difficult to hack and easy to remember. There are three elements as follows:
1. Pick a unique phrase that's memorable to you only. Something like, "Bill's girlfriend is from Spain". Now, take the first letter from each
Oct 19th 2010, 14:02
A firewall alone does not provide enough protection
I'm surprised by the number of business owners who believe their information is safe because it's behind a firewall. That's not the case anymore. Over the past decade, content-based threats have emerged as the thornier problem. A firewall without unified threat management (UTM) services enabled is like a car without an airbag. In both cases, you're just not protected enough. Cyber threats such as botnets, phishing scams and keystroke loggers are not prevented by simple firewall technology. In fairness, most firewall vendors do offer subscription UTM services for malware, spam and intrusion detection. However, turning these services on can result in performance issues such as