Toto, I have a feeling we’re not in Kansas anymore
July 29, 2014 By Christopher George advanced persistent threats, apt, cisco, Cisco Cloud Web Security, Cisco Security Intelligence Operations, cyber, exploit
Cyber threats and attacks used to be about fame, politics, boredom and personal challenge. Now, it’s about ROI. Criminals have evolved and become more strategic – advanced persistent threats (APTs) are here and antivirus protection and traditional firewall port security are no longer enough. Criminals using APTs want data, so the more valuable an organization’s data, the more likely it is to be targeted.
Government agencies and organizations in industries such as finance, energy, healthcare, aerospace and defense are the most likely targets of APT infections. Users and organizations with access to valuable data through business relationships, such as smaller vendors and contractors, are also being targeted.
So, what is an APT? Although the term first referred to nation-states engaging in cyber espionage, APTs are now in use by cyber criminals everywhere to steal data from businesses for financial gain. What distinguishes an APT from other threats? Simply put, they are targeted. Unlike most malware, which randomly infects any computer susceptible to a given exploit, APTs target specific organizations with the purpose of stealing specific data, or causing specific damage.
Another important differentiating characteristic between most malware and an APT is its ability to evade detection by network security controls while still mining and collecting data. The many ingenious methods in use, such as unknown zero-day exploits, rarely have antivirus signatures available to provide adequate protection and response.
To achieve their objectives, those utilizing APTs must still find vulnerabilities within a target’s infrastructure, assess the security controls in place, determine how to distribute the attack and exploit the weaknesses, compromise the perimeter, gain access to privileged hosts, identify the target data and then extract it. This requires extensive research and the process could take several months, or even years. But once an APT has successfully compromised the network, the complexity and evasiveness of the threat make early detection nearly impossible by most perimeter defense mechanisms. If your organization’s technological defenses and strategies are dated, it is very likely that your bottom line will discover the damage well before your technology does.
Enter the Cisco X-Series Next-Generation Firewall. While a layered defense strategy is still required, the Cisco X-Series protects networks against many types of malware, including web-based threats, vulnerabilities, and advanced persistent threats (APTs) via Cisco Cloud Web Security and Cisco Security Intelligence Operations (SIO). Cisco Cloud Web Security provides centralized, cloud-based integration with Cisco ASA firewalls and integrated services routers, delivering localized network security, comprehensive malware protection, visibility and control of web applications. Cisco SIO is a cloud-based service that performs real-time analysis of telemetry from nearly two million security devices and more than 150 million mobile endpoints throughout the world. Continuous updates on Internet threats, network vulnerabilities, and host site reputation are sent to Cisco security devices every three to five minutes, providing near real-time protection from zero-day threats. Cisco customers can use this information to develop and enforce more granular, robust security policies to proactively protect their networks months ahead of a specific threat.
Recent Posts
Archives
- August 2020 (1)
- July 2020 (1)
- June 2020 (1)
- May 2020 (1)
- April 2020 (1)
- March 2020 (1)
- February 2020 (1)
- January 2020 (1)
- December 2019 (1)
- November 2019 (1)
- October 2019 (1)
- September 2019 (2)
- July 2019 (1)
- June 2019 (3)
- April 2019 (1)
- March 2019 (1)
- February 2019 (1)
- January 2019 (1)
- December 2018 (1)
- November 2018 (1)
- October 2018 (1)
- September 2018 (1)
- August 2018 (1)
- May 2018 (1)
- March 2018 (1)
- February 2018 (1)
- January 2018 (2)
- December 2017 (2)
- November 2017 (3)
- October 2017 (3)
- September 2017 (2)
- August 2017 (3)
- July 2017 (2)
- June 2017 (5)
- May 2017 (7)
- April 2017 (5)
- March 2017 (5)
- February 2017 (1)
- January 2017 (5)
- December 2016 (1)
- October 2016 (4)
- September 2016 (1)
- August 2016 (3)
- July 2016 (1)
- June 2016 (1)
- May 2016 (1)
- April 2016 (1)
- November 2014 (1)
- July 2014 (2)
- June 2014 (1)
- May 2014 (3)
- April 2014 (3)
- March 2014 (1)
- February 2014 (2)
- January 2014 (3)
- December 2013 (1)
- November 2013 (4)
Categories
- Community (19)
- Cloud (18)
- IT (16)
- cloud backup (16)
- cybersecurity (15)
- cloud backup data recovery (9)
- cloud computing (8)
- clouddr (8)
- it security (8)
- cloud storage (7)
- data security (7)
- AWS (6)
- Education (6)
- cloud services (6)
- Giving Back (3)
- cloud restoration (3)
- compliance (3)
- data (3)
- assessment (2)
- business (2)
- chief information officer (2)
- client satisfaction (2)
- cloud data recover (2)
- cloud dr (2)
- critical power exchange (2)
- cyber (2)
- cyber responsibility (2)
- data recover (2)
- datacenter (2)
- duo security (2)
- end-to-end encryption (2)
- hackers (2)
- holiday season (2)
- internet (2)
- storage (2)
- 2019 goals (1)
- Android (1)
- Arts (1)
- Business Continuity (1)
- CASBO (1)
- Cisco Cloud Web Security (1)
- Cisco Security Intelligence Operations (1)
- Custom Design (1)
- Graphics (1)
- Protelligent (1)
- Virus (1)
- account protection (1)
- advanced persistent threats (1)
- alien vault technology (1)
- alienvault technology (1)
- antivirus program (1)
- antivirus software (1)
- apis (1)
- apt (1)
- attachment (1)
- attack (1)
- automatic updates (1)
- awareness (1)
- backup (1)
- benefits (1)
- best practices (1)
- bot-driven attacks (1)
- bring your own device (1)
- bug (1)
- business growth (1)
- byod (1)
- california joint powers insurance authority (1)
- california jpia (1)
- check cashing (1)
- cisco (1)
- cjpia (1)
- client testimonial (1)
- cloud backup vs cloud storage (1)
- cloud computing services (1)
- cloud conversion (1)
- cloud migration (1)
- cloud recovery (1)
- community link consulting (1)
- compliance program (1)
- compliance regulations (1)
- computer science (1)
- computer security (1)
- computers (1)
- contain attacks (1)
- cost of cybercrime (1)
- cost of data breach study (1)
- critical power (1)
- critical power products & services (1)
- customer testimonial (1)
- customer testimonial video (1)
- cyber liability (1)
- cyber-threat (1)
- cybercrimes (1)
- cybercriminals (1)
- cybersecurity program (1)
- data access (1)
- data breach (1)
- data breach protection (1)
- data center (1)
- data encryption (1)