Tag Archives: AV

What to do about Flame malware

Posted on by
Reply
The biggest cyber security related news story this week has been about the Flame/Wiper malware. The event has gotten high profile coverage by several media outlets (included below). So far, there have been no strong indicators that the Flame virus is tied to anything ICS or SCADA related. There has been plenty of speculation in the media coverage that Flame does target ICS environments based on its apparent sophistication and the countries in which infected machines were detected. After reading << More >>

What’s The Best Piece of Security Advice You’ve Ever Received?

Posted on by
Reply
The security industry is unpredictable. After being in the space for almost 10 years, the experts at Industrial Defender have seen their share of changes and lessons learned. Whether you are updating company systems, training employees or maintaining networks, sustaining security is of critical importance to any organization. Jacob Kitchel recently shared his tips and advice about working in security with David Spark of the State of Security Blog. In Jacob’s role as senior manager of security << More >>

In Defense of Defense in Depth

Posted on by
Reply
I would like to respond to Bruce Schneier’s post “Should the Government Stop Outsourcing Code Development?” I think Bruce is close to the mark in his answer, but misses the point on both defense in depth and critical infrastructure. Fundamentally, most security flaws are no more than bugs – sometimes in requirements, sometimes in design, and often in implementation, but bugs nonetheless. Continue reading → << More >>

Application Whitelisting and Control Systems

Posted on by
Reply
I just got back from the Digital Bond SCADA Security Scientific Symposium (S4) where I presented on whitelisting. Whitelisting is the “hot new” host intrusion prevention system (HIPS) technology that some tout as the end of the anti-virus (AV) era. Anti-virus of course works by producing a “black list” of virus signatures. If data or a file matches a signature, the AV technology takes some sort of action to protect your system – anything from a popup alert to blocki << More >>