Entries filed under 'Advanced Persistent Threat'
Threat Research Blog
FireEye posts blog entries under threat research to present and discuss cyber attacks and threat intelligence from a technical perspective. These blog posts cover everything from exploits and vulnerabilities, to advanced malware and targeted attacks.
July 5, 2012 4:58 PM By Richard Bejtlich
Earlier this spring Robert Westervelt wrote a story about a panel he attended at the InfoSec World Conference and Expo. The session featured three security pundits who, according to Mr. Westervelt, chided the audience for focusing on compliance, buying appliances, and automating security processes. Instead, the trio recommended identifying core company assets, hiring and training talented people, and analyzing logs to identify intruders. While delivering their message, they apparently offended a decent number of attendees. I read several accounts of the event and these points seem core to what happened at the panel.Read more...
July 2, 2012 6:30 AM By Abhishek Singh
June 22, 2012 9:33 PM By Lucas Zaichkowsky
For the last two years, I've observed the information security industry buzzing about the Advanced Persistent Threat (APT), highly sophisticated malware, and 0 day exploits. There are many reasons why these topics are often misunderstood, but I believe there's an incorrect assumption that underlies them all. It causes the wrong questions to be asked and irrelevant answers to be received. It makes executives believe prevention is the key to security, when in fact security breaches are inevitable. The myth that there's a certain level to which the "bar of security" can be raised that will keep attackers out must be dispelled.Read more...
June 15, 2012 10:40 AM By Bob Bigman