IT Infrastructure- Network Security Solutions
|
||
|
Activity:
0 comments
99 views
last activity : 07 06 2010 20:18:04 +0000
|
||
|
|
Malware uses many different methods to try and replicate among computers. The following table lists common malware threats to organizations and provides examples of tools that you can use to mitigate them.
Table 1: Malware Threats and Mitigations
|
Threat |
Description |
Mitigation |
||||||||
|
|
E-mail is the transport mechanism of choice for many malware attacks. |
|
||||||||
|
Phishing |
Phishing attacks try to trick people into revealing personal details such as credit card numbers or other financial or personal information. Although these attacks are rarely used to deliver malware, they are a major security concern because of the information that may be disclosed. |
|
||||||||
|
Removable media |
This threat includes floppy disks, CD-ROM or DVD-ROM discs, Zip drives, USB drives, and memory (media) cards, such as those used in digital cameras and mobile devices. |
|
||||||||
|
Internet downloads |
Malware can be downloaded directly from Internet Web sites such as social networking sites. |
|
||||||||
|
Instant messaging |
Most instant messaging programs let users share files with members of their contact list, which provides a means for malware to spread. In addition, a number of malware attacks have targeted these programs directly. |
|
||||||||
|
Peer-to-peer (P2P) networks |
To start file sharing, the user first installs a client component of the P2P program through an approved network port, such as port 80. Numerous P2P programs are readily available on the Internet. |
|
||||||||
|
File shares |
A computer that is configured to allow files to be shared through a network share provides another transport mechanism for malicious code. |
|
||||||||
|
Rogue Web sites |
Malicious Web site developers can use the features of a Web site to attempt to distribute malware or inappropriate material. |
|
||||||||
|
Remote exploit |
Malware might attempt to exploit a particular vulnerability in a service or application to replicate itself. Internet worms often use this technique. |
|
||||||||
|
Network scanning |
Malware writers use this mechanism to scan networks for vulnerable computers that have open ports or to randomly attack IP addresses. |
|
||||||||
|
Dictionary attack |
Malware writers use this method of guessing a user's password by trying every word in the dictionary until they are successful. |
|
From a security perspective, it would seem best to block all these malware transport methods, but this would significantly limit the usefulness of the computers in your organization. It is more likely that you will need to allow some or all of these methods, but also to restrict them. There is no single anti-malware solution that will fit all organizations, so evaluate the computer requirements and risks for your organization, and then decide how best to defend against malware that attempts to exploit them.
|
|
what has really changed in search today? We still go to the same text boxes, enter expressions... |
|
|
1382 referals
32 arguments,
381 views
|
|
|
Yes vs No |
|
|
0 referals
7 arguments,
156 views
|
|
|
One of the important elements of best construction practices is selecting the most capable among... |
|
|
205 referals
13 arguments,
414 views
|
|
|
|
|
|
|
|
|
Online DOCTOR- Informative too.... This site is very informative, which ever diseases you... |
|
|
103 referals
10 comments,
237 views
|
|
|
Grown in the lab: Artificial implants (Cornea) that restore sight in partially blind patients... |
|
|
935 referals
14 comments,
245 views
|
|
|
India is a free nation. People have rights but still women are struggling to come up. There is a... |
|
|
0 referals
6 comments,
73 views
|
|
|
|
|
|
|
Try Linux Learning Center |
If they are creating a competitive environment - then why not? After all, it is business. |
A new metric system :) "YES" |