Email Alerts
-
Maltego user guide part 2: Infrastructural reconnaissance
This part of our Maltego tutorial details how you can use the multi-faceted tool for infrastructural aspects of information gathering. Tutorial
-
Airtel’s DLP technology rollout makes data egress a thing of the past
Airtel’s DLP technology implementation, India’s largest, went live in December 2010. Join us in exploring its inner workings, even as it is poised for bigger things. Feature
-
UTM buying essentials for India Inc.
With capabilities like antivirus, IPS and anti-malware, a UTM can be handy for the SMB and branch offices. So how do we select the right UTM? Buyer's Guide
-
Chained Exploits: How to prevent phishing attacks from corporate spies
Ever wonder if someone is monitoring everywhere you go on the Internet? In this chapter excerpt from Chained Exploits: Advanced Hacking Attacks from Start to Finish, learn how to keep corporate spies at bay. Book Chapter
-
Voice over IP Security: VoIP Threat Taxonomy
In an excerpt from Voice over IP Security, author Patrick Park reviews VoIP threats, including spam, phishing and other threats against social context. Book Chapter
-
Indian companies must increase phishing awareness
Businesses are being targeted for phishing attacks. These attacks are increasingly turning into a corporate concern, with much at stake -- such as reputation damage. News | 25 Apr 2013
-
Study finds most antivirus products ineffective
Slow updates to signature databases cause some antivirus products to be ineffective against known threats, according to a study by security firm Imperva. News | 27 Nov 2012
-
Strong passwords are no use against social-engineering iHack
CIOs try to stop hackers through security best practices such as two-factor authentication, but social engineering fueled a massive iHack. CIO Matters | 09 Aug 2012
-
Botnet infections in the enterprise have experts advocating less automation
Having skilled IT pros closely monitoring intrusion prevention systems to investigate network traffic anomalies can reduce infections, experts say. News | 02 Jul 2012
-
Spear phishing attacks target defense contractors, security firms
A spear phishing campaign contains a message about industrial control systems security and a malicious .pdf file that downloads malware to steal data. News | 14 Jun 2012
-
LinkedIn investigating user account password breach
More than 6 million passwords may have been stolen from the servers of social network LinkedIn and posted to a Russian hacking forum. News | 06 Jun 2012
-
Spear phishing attacks likely key in U.S. Chamber of Commerce breach, experts say
Spear phishing attacks via China were likely what led to the lengthy U.S. Chamber of Commerce breach, experts say. News | 21 Dec 2011
-
Massive Epsilon email breach could lead to email attacks, spam
At least 50 banks, retailers and other firms are affected by a major email breach at a Texas-based data management firm that provided marketing email services. News | 06 Apr 2011
-
IBM predicts rising mobile threats, critical infrastructure attacks in 2011
Big Blue anticipates organizations struggling to manage smartphone security and predicts that critical infrastructure will be among the top targets of cybercriminals in 2011. News | 04 Jan 2011
-
PDF distiller exploit lets hackers attack BlackBerry smartphones
Attackers can exploit PDF distiller for BlackBerry Attachment Service and execute malicious code. RIM issues security update. Security Alert | 17 Dec 2010
- See more News on Email and instant messaging threat defenses
-
Mitigate phishing attacks in the cloud: A how-to
As Indian enterprises increasingly move to the cloud, so are phishing attempts. Here are some ways to mitigate the risks of phishing in the cloud. Tip
-
Five data classification mistakes you must avoid at all costs
Optimal data classification is a robust foundation to ensure efficacy of infosec initiatives. Here’s the Indian organizations’ checklist on what not to do. Tip
-
The case for using anomaly-based monitoring in zero-day detection
Expert Char Sample explains how anomaly-based monitoring may be a key step forward in uncovering zero-day vulnerabilities. Tip
-
IPS/IDS technologies: Innovations and changes
Haven’t shopped for an IDS/IPS in a while? Karen Scarfone details important recent innovations to IDS/IPS technologies. Tip
-
How can you prevent LinkedIn type of attacks on your business?
Blackhats recently made 6.5 Million LinkedIn password hashes public. A look at what went wrong, and defense options like salted hashes and key stretching. Tip
-
Boost advanced persistent threat (APT) security levels in six steps
Advanced persistent threats (APT) can prove to be deadly for businesses. Here are six best practices to improve your company’s APT security mechanisms. Tip
-
Maltego tutorial - Part 1: Information gathering
Maltego is a powerful OSINT information gathering tool. Our Maltego tutorial teaches you how to use Maltego for personal reconnaissance of a target. Tip
-
Information systems audits must evolve to become information audits
We have some way to go before information systems audits evolve to borderless information audits, covering the entire lifecycle of all types of information. Tip
-
A social networking policy template for information awareness training
Regardless of whether your organisation allows social networking, you must have a policy to address inappropriate employee postings. Expert Michael Cobb lays out a checklist of what you should be sure to include in your policy and employee training. Tip
-
How to build a toolset to avoid Web 2.0 security issues
An enterprise defense-in-depth strategy should include security tools that monitor, prevent, alert, encrypt and quarantine data from leaving your network, as well as processes put in place to monitor the Web for sensitive data that may have leaked. Tip
- See more Tips on Email and instant messaging threat defenses
-
How to prevent brute force webmail attacks
Expert Sherri Davidoff explains why brute-force attacks on webmail accounts are such a popular hacking technique. Ask the Expert
-
How can 419 scam emails and backscatter spam be stopped?
A 419 scam is just one example of backscatter spam. John Strand explains which long-term solutions can help combat these particular kinds of unwanted messages. Ask the Expert
-
Can mutual authentication beat phishing or man-in-the-middle attacks?
What's the best way to prevent phishing and man-in-the-middle attacks? IAM expert David Griffeth explains the benefits of mutual authentication over one-way SSL. Ask the Expert
-
What are effective ways to stop instant messaging (IM) spam?
In this expert Q&A, Michael Cobb reveals what techniques and tools can be used to stop instant messaing spam, or spim, in the enterprise. Ask the Expert
-
Why is backscatter spam so difficult to block?
When an email address is comandeered by a malicious hacker to send spam, the backscatter can quickly fill an inbox and clog bandwidth. Is there any way to prevent this? Expert Michael Cobb gives advice. Ask the Expert
-
crimeware kit (attack kit)
A crimeware kit, also called an infection, exploit or DIY attack kit, is a programming tool that allows someone who does not have any experience writing software code to create, customize and distribute malware. Definition
-
knowledge process outsourcing (KPO)
Knowledge process outsourcing (KPO) is the allocation of relatively high-level tasks to an outside organization or a different group within the same organization. Definition
-
Malware and email authentication for financial services
Malware and fighting phishing with email authentication are major security topics for financial services firms. In part two of this video, Paul Smocer discusses the threats and mitigation options. Video
-
Next generation spam: New threats and new technologies
This video examines the evolution of the content security gateway as it evolves beyond just blocking spam and Web filtering, emphasizing the techniques and technologies used to ensure data doesn't leave your organization. Video
-
Economy fuels malware, spam
Dave Marcus of McAfee's Avert Labs, breaks down the threat landscape and explains why spam numbers are rising and malware writers are taking advantage of the down economy. Video
-
Gary McGraw on secure software development
Gary McGraw of Cigital Inc. explains why better secure coding could help thwart future Web 2.0 attacks. He says the industry is making progress. Video
-
Indian companies must increase phishing awareness
Businesses are being targeted for phishing attacks. These attacks are increasingly turning into a corporate concern, with much at stake -- such as reputation damage. News
-
Mitigate phishing attacks in the cloud: A how-to
As Indian enterprises increasingly move to the cloud, so are phishing attempts. Here are some ways to mitigate the risks of phishing in the cloud. Tip
-
Study finds most antivirus products ineffective
Slow updates to signature databases cause some antivirus products to be ineffective against known threats, according to a study by security firm Imperva. News
-
Five data classification mistakes you must avoid at all costs
Optimal data classification is a robust foundation to ensure efficacy of infosec initiatives. Here’s the Indian organizations’ checklist on what not to do. Tip
-
The case for using anomaly-based monitoring in zero-day detection
Expert Char Sample explains how anomaly-based monitoring may be a key step forward in uncovering zero-day vulnerabilities. Tip
-
Strong passwords are no use against social-engineering iHack
CIOs try to stop hackers through security best practices such as two-factor authentication, but social engineering fueled a massive iHack. CIO Matters
-
IPS/IDS technologies: Innovations and changes
Haven’t shopped for an IDS/IPS in a while? Karen Scarfone details important recent innovations to IDS/IPS technologies. Tip
-
Botnet infections in the enterprise have experts advocating less automation
Having skilled IT pros closely monitoring intrusion prevention systems to investigate network traffic anomalies can reduce infections, experts say. News
-
Spear phishing attacks target defense contractors, security firms
A spear phishing campaign contains a message about industrial control systems security and a malicious .pdf file that downloads malware to steal data. News
-
Maltego user guide part 2: Infrastructural reconnaissance
This part of our Maltego tutorial details how you can use the multi-faceted tool for infrastructural aspects of information gathering. Tutorial
- See more All on Email and instant messaging threat defenses
About Email and instant messaging threat defenses
Harness email and instant messaging threat defenses with in-depth insights. Learn about the latest email security threats and deploy suitable threat management mechanisms. Draft email and instant messaging policies. Utilize the power of instant messaging with data security and privacy protection.