| Title | Date Added | Company | |
|---|---|---|---|
 |
A Lightweight Hypervisor for Malware Analysis | 2008-05-06 | University of Illinois |
| Malicious software is rampant on the Internet and is costing billions of dollars each year. Safe and thorough analysis of malware is key to protecting systems and cleaning those that have already been infected. This paper proposes a lightweight hardware-supported virtualization platform that is purpose-built for malware analysis. Hardware virtualization makes the VMM difficult to detect and reduces its size and complexity. They further simplify their VMM by not implementing virtualization features that are unnecessary for malware analysis (e.g., virtual device emulation). Their platform is more amenable to developing and deploying analysis techniques directly in the VMM than Xen or VMWare. This paper discusses their prototype design and implementation. They also discuss the effectiveness of various malware analysis techniques that they have developed to run on their platform.
Tags: Server Hardware |
|||
|
Learning and Classification of Malware Behavior | 2008-05-04 | University of Tubingen |
| Malicious software in form of Internet worms, computer viruses, and Trojan horses poses a major threat to the security of networked systems. The diversity and amount of its variants severely undermine the effectiveness of classical signature-based detection. Yet variants of malware families share typical behavioral patterns reflecting its origin and purpose. The paper aims to exploit these shared patterns for classification of malware and propose a method for learning and discrimination of malware behavior.
Tags: Intrusion - Tampering |
|||
|
Web Security SaaS: The Next Generation of Web Security | 2008-04-30 | Webroot Software |
| The Web is the new threat vector of choice for hackers and cybercriminals to distribute malware and perpetrate identity theft, financial fraud, and corporate espionage. This IDC paper outlines solutions for overall security effectiveness and reducing the burden on IT departments. It describes the challenges facing many SMBs today and identifies critical elements of lower-cost and easier-to-manage Web security solutions.
Tags: Intrusion - Tampering, Security Administration, Internet and Web, Intrusion - Tampering |
|||
|
Protecting the Web: Phishing, Malware, and Other Security Threats | 2008-04-25 | Association for Computing Machinery |
| Web site operators, Internet users, and online service providers are besieged by a growing array of abuses and threats. Spam leads users to online scams and phishing Web pages, which cyber-criminals use to steal users' financial data and passwords. Other criminals use Web sites to spread malware, which can steal personal data or take over users' computers into a botnet, which can be used to send spam or mount cyber-attacks against Web sites and other Internet services. Together, these abuses undermine user trust, hamper e-commerce, and cost the Internet community huge losses in money, service and support costs, and time.
Tags: Security Administration, Intrusion - Tampering |
|||
|
Tangled Web: Undercover Threats, Invisible Enemies | 2008-04-22 | Symantec |
| The best-known example of an undercover threat is spyware, which first appeared around five years ago. Essentially, spyware is software that gets onto a computer's hard drive without the user's explicit and knowing agreement. In some cases, "Permission" for spyware to install itself is buried deep in the small print of a licensing agreement. In other cases, permission is not given at all. Once installed, the spyware secretly tracks the computer user's web browsing behavior, logs websites visited and passes this information on to advertisers - all with the consummate skill of a professional pickpocket.
Tags: Intrusion - Tampering |
|||
|
Tangled Web: Undercover Threats, Invisible Enemies | 2008-04-21 | |
| Whether its spyware hidden amidst a seemingly harmless download or phishing emails in your inbox, Web and email-based security threats are more advanced and more covert than ever before. These attacks are aimed right at your business, threatening your network, your compliance with security regulations, your proprietary information and more. In this white paper from MessageLabs, you will learn more about the hidden dangers often lurking in non-threatening looking hyperlinks, and how you can protect yourself with MessageLabs integrated Web and email security services.
Tags: Security Administration, Security Administration, Intrusion - Tampering, Intrusion - Tampering |
|||
|
Considerations for Anti-Spyware Product Testing | 2008-04-07 | ANTI-SPYWARE COALITION |
| This paper outlines some of the considerations that should be taken into account when tests on anti-spyware products are conducted and reviewed. Tests conforming to the suggestions in this paper are more likely to produce results that are scientifically valid, independently reproducible, and meaningful. It is the hope of the Anti?>Spyware Coalition that this paper will help testers design and perform reliable tests, and help reviewers and users interpret published test results. | |||
|
Ghost Turns Zombie: Exploring the Life Cycle of Web-Based Malware | 2008-04-05 | |
| While the web provides information and services that enrich their lives in many ways, it has also become the primary vehicle for delivering malware. Once infected with web-based malware, an unsuspecting user's machine is converted into a productive member of the Internet underground. This paper explores the life cycle of web-based malware by employing light-weight responders to capture the network profile of infected machines. Their results indicate that web-based malware provides a cornerstone for large scale electronic fraud. It is used to exfiltrate address books of compromised machines creating databases of hundred millions of email addresses, to form spamming botnets responsible for a significant fraction of spam currently seen on the Internet, and also to steal login credentials that can be directly monetized or leveraged to turn more web servers into malware delivery vectors.
Tags: Intrusion - Tampering |
|||
 |
IronPort Web Security Technology Protects a Leading Health Care Provider | 2008-04-01 | Cisco Systems |
| To ensure satisfaction without compromising its network, Four Seasons Health Care looked for a new appliance-based Web security solution that required little daily maintenance or management time and could be operated with minimal disruption for users. The system needed to respond rapidly to malware and virus threats, effectively filter suspicious traffic, and fully integrate with Active Directory. The IronPort S-Series Web security appliance delivered maximum protection against increasingly complex spyware and Web-based malware attacks at the perimeter of Four Seasons' network. By blending URL Filtering, Web Reputation Filters, Malware scanning and blocking and Web content acceleration on a single, integrated appliance, IronPort meets the challenges of securing and controlling Web traffic head-on.
Tags: Security Administration, Intrusion - Tampering |
|||
|
Integrated Web Security for an Integrated Creative Services Provider | 2008-04-01 | Cisco Systems |
| Creative services provider Proximity London has prospered by supplying its discerning client-base with effective strategies to reach their target audiences. Proximity London had tried other solutions for its Web security needs, but was unimpressed with the results. The solutions' shortcomings made them insufficient to deal with the increasing speed, variety and danger of evolving Web-based malware - which is estimated to infect 75 percent of today's corporate PCs. On the complex Web landscape, the IronPort S-Series appliance provided Proximity London with advanced protection at the network perimeter. This integrated, on-box solution delivers advanced URL, malware and reputation filtering - demanding little supervision so that IT administrators can focus their time and energy elsewhere.
Tags: Security Administration, Intrusion - Tampering |
|
|
Cutting-edge technology from premium sponsors
Adaptive Threat Management
More resources to optimize the security of your enterprise »
More Tech Showcases:
IDC's Powering the Enterprise Cloud Event 2009
12 Nov - 17 Dec 2009
Grand Copthorne Waterfront Hotel, Singapore
ZDNet Asia Top Tech 50 Index
AT&T- Asustek
- Canon
- Convergys
- Ericsson
- Hewlett-Packard
- Infosys
- LogicaCMG
- NTT
- Samsung
- SingTel Group
- Toshiba
- Xerox
- Accenture
- Atos Origin
- Capgemini
- Dell
- France Telecom
- Hitachi
- Intel
- Microsoft
- Nokia
- Satyam Computer Services
- Sony
- Verizon Communications
- ZTE
The Roots for a Greener World
Discover Hitachi's Environmental Vision 2025 and featured Eco-Products
The Desktop Virtualization Revolution is here!
Find our more with Citrix Simplicity is Power
Master in Organisational Leadership
Part-time masters program from Monash University. Find out more.
Lack of visibility into network issues and performance?
Find out today. Download SolarWinds FREE 30-Day Trial Software here.
IT Salary & Skills Report 2009
Join activeTechPros for free access to the report
- ZDNet.com |
- ZDNet Japan |
- ZDNet.de |
- CNET UK |
- CNET.de |
- Tech Republic |
- BNET |
- MP3.com |
- activeTechPros |
- ZDNet UK |
- ZDNet Korea |
- ZDNet France |
- CNET Australia |
- CNET France |
- Download.com |
- Builder |
- GameSpot
- ZDNet Australia |
- ZDNet Taiwan |
- CNET |
- CNET Taiwan |
- News.com |
- Silicon.com |
- TV.com |
- GameSpot Korea
News |
Insight |
Reviews |
TechGuides |
Jobs |
Blogs |
Videos |
Community |
Downloads |
IT Library |
