ScareWare Infects Tens of Millions Yearly

October 26, 2009 by ADMIN · 1 Comment

By Simon Heron, CISSP Internet Security Analyst

There is still a lot of scareware out there, and many people still falling for it. Forty-three million in the last year according to Symantec. Put simply, scareware programs are designed to frighten people into running malicious software by popping up when the user is online and declaring that viruses have been detected…

Microsoft Security Essentials Only First Step

October 8, 2009 by ADMIN · Leave a Comment

By Simon Heron, CISSP Internet Security Analyst

Whilst the recent news that Microsoft has released a free computer security package to the public is reassuring, it does not detract from the fact that the world’s most popular operating system still has serious security flaws.

Forgotten Security Defenses Pose Threat

September 29, 2009 by ADMIN · Leave a Comment

By Simon Heron, CISSP Internet Security Analyst

Companies are protecting themselves from high-profile threats such as malware attacks, but are often leaving themselves vulnerable from the forgotten security defenses. In the first of our advisory notices on forgotten security, we advise companies to examine their applications, hardware and security systems to protect against vulnerabilities resulting from insufficient monitoring.

Securing Your Email and Controlling IM Risks

August 30, 2009 by ADMIN · Leave a Comment

By Simon Heron, CISSP Internet Security Analyst

Currently, people rely on obscurity to keep their data safe. But with progressively more intelligent search engines available that can churn through vast amounts of data and make sense of it – even your email – security is something that needs to be addressed.

P2P File Sharing Puts Companies at Risk

August 19, 2009 by ADMIN · Leave a Comment

By Simon Heron, CISSP Internet Security Analyst

We’ve just published the latest guide in our ‘Securing Social Media’ series. We advise companies to block the use of P2P on the corporate network where not related to business use, and implement security guidelines to limit future risk.

Securing Against SQL Injection Attacks

August 12, 2009 by ADMIN · Leave a Comment

By Simon Heron, CISSP Internet Security Analyst

Security firms, like Network Box, operate sophisticated Intrusion Detection and Prevention systems that can block many exploits, (such as public web applications), but even these type of systems can only offer a limited amount of protection in the case of private, internal applications.

Why Not Leave Security to the Experts?

August 6, 2009 by ADMIN · 1 Comment

By Simon Heron, CISSP Internet Security Analyst

IT is widely seen as a strategic, not a tactical, function of the business. The job of the IT team is to set and implement an IT strategy to meet a business need, rather than developing the tactical technology to support the business need – which, more and more, is left to specialist experts. Nowhere have we seen this more than in security.

Breakthroughs in the Battle Against Spam

July 9, 2009 by ADMIN · Leave a Comment

By Simon Heron, CISSP Internet Security Analyst

We’ve been developing a way of detecting and blocking spam that analyses not just content and IP address, but by applying learning from email user behaviour and relationships, to understand which emails the recipient actually wants, and which are spam.