.

Very interesting article

<<

alucian

User avatar

Full Member
Full Member

Posts: 228

Joined: Mon Dec 29, 2008 2:01 pm

Location: Montreal, Canada

Post Tue Mar 22, 2011 10:52 am

Very interesting article

http://www.infoworld.com/d/security/pre ... 0?page=0,0

I have the same feeling about my company. I think we are in a deep s..t, and that we have to find the whole. Our alerts are too clean, and that's not normal.
Being and insurnace company and haveing a lot of confidential data we should be more searched.

But... they are very comfortable they way things are, and are hoping that the tools will solve the problems (Arcsight, IDS, Firewalls, soon DLP)  ???

I hope I will be able to convince them.
CISSP ISSAP, CISM/A, GWAPT, GCIH, GREM, GMOB, OSWP
<<

R3B005t

Newbie
Newbie

Posts: 43

Joined: Wed Mar 09, 2011 9:03 am

Location: NVA/D.C.

Post Tue Mar 22, 2011 11:46 am

Re: Very interesting article

My company recognized the criticalality of APT's last year so we had Mandiant come by for some APT training and we picked up a Mir controller box, best security investment in years!  We can easily identify any suspicious activity on client machines looking for signs of APT's.  I would highly recommend anyone interested in APT's reach out to mandiant those guys practically wrote the book on identification and remediation of APT's they also do some kick ass unknown binary analysis and offer up free versions of most of their tools.
<<

sil

User avatar

Hero Member
Hero Member

Posts: 551

Joined: Thu Mar 20, 2008 8:01 am

Location: ::1

Post Tue Mar 22, 2011 12:11 pm

Re: Very interesting article

Yawn at APT. I advise you read the following two articles I wrote surrounding failures...

Cyber Warfare Analysis - You're Doing It Wrong
https://www.infosecisland.com/blogview/ ... Wrong.html

Security Vendors Vow to Defend Against Cyber Boogeyman
https://www.infosecisland.com/blogview/ ... eyman.html
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1661

Joined: Mon Jan 29, 2007 2:59 pm

Post Tue Mar 22, 2011 2:09 pm

Re: Very interesting article

<nod>
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

alucian

User avatar

Full Member
Full Member

Posts: 228

Joined: Mon Dec 29, 2008 2:01 pm

Location: Montreal, Canada

Post Fri Mar 25, 2011 7:34 pm

Re: Very interesting article

@R3B005t 
I will look further at what you propose.

@sil
As always, you are a great help. I will look deeper at your articles and I will try to adapt your advices.
My only obstacle is the mentality of others, but I will beat them  :)

Thanks again!
CISSP ISSAP, CISM/A, GWAPT, GCIH, GREM, GMOB, OSWP

Return to Mass Media

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software