The single largest factor for Security Breaches. By Felix Mohan, SecureSynergy

Home :: www.SecureSynergy.com

Monday, 12 May 2008

WE WALK THE TALK SecureSynergy is

STRATEGIC
PARTNERSHIP

SECURESYNERGY EMPANELLED BY CERT-IN

Read more: 1 2

Empanelled auditor for national certifying authorities, securing India's PKI

Business Process Industry Association
of India
(formerly CCAI)

The single largest factor for Security Breaches

Felix Mohan, CEO - SecureSynergy

Posted on 06 Feb 2003

Malicious code has emerged as the single largest factor for security breaches. According to the CSI/FBI Survey 2002 more than 94% of the large corporations have had sizeable downtime and financial losses due to malicious code attacks. As per the CII-PwC Survey 2002, in India 75% of the corporates have had serious incidences of malicious code attacks "forcing them to shut down external connections to the Internet, resulting in large losses due to downtime and lost business opportunities".

The recent SQLSlammer attack underlines the fact that businesses are not taking adequate measures to fortify their IT Infrastructures. Even those corporates that have implemented the latest anti-virus protection suffer attacks - raising a fundamental doubt about the ability of available anti-virus products to provide the requisite protection.

It is important to realize that an anti-virus software is only as effective as the last update. Today, the speed of malicious code proliferation across the Internet is mind-boggling. In 1990 the Form virus took a year to spread across the Internet, in 1995 the Concept Macro virus took 2 months, in 1999 Love Bug took 9 hours, in 2001 Code Red took 2 hours, and Nimda took a mere 30 minutes to spread. This narrow window has already paled in comparision to the 10 minutes it took SQLSlammer to spread across the Internet in Jan 2003.

What this effectively means is that today there is no longer any window for receiving anti-virus updates. The update has to be done in 'real time'. This is where conventional anti-virus software fail. For instance, Norton provides the 'Liveupdate' facility. Despite the name, this facility only updates your system on a weekly basis - every Wednesday, and when there is a major outbreak. What most users don't realize is that for daily updates, they have to use another utility - 'Intelligent Updater' which has to be downloaded and installed manually. Thus, for most users, effectively the update window is 7 days.

Along with 'real time' updates, today there is a critical need for 'malicious code management' - especially for controlling outbreaks. To provide 'real time' updates and centralized malicious code management, a next generation technology is required. This is where Network Associates* McAfee ASaP, based on patented Rumour Technology comes in. ASaP, provides continuous, online and real-time malicious code, and firewall/IDS protection. It also provides centralized enterprise-wide malicious code management. Subscribers receive continuous updates directly from AVERT Labs (world's foremost anti-virus Lab which discovered Code Red and Nimda), through SecureSynergy's NOC in Mumbai. The subscribers also receive comprehensive malicious-code management reports.

The ASaP model is particularly significant for mobile users. They receive continuous updates as soon as they connect to the Internet, wherever they are in the world.

*renamed McAfee, Inc. effective 01 July 2004

Posted on 06 Feb 2003

The single largest factor for Security Breaches
SEND FEEDBACK ON THIS ARTICLE

Feedback/Comments
Your name
E-mail

REPRINT INFORMATION
The above article may be reproduced in its entirety in any medium on the condition that the content remains unaltered (including author credit) and the following line is displayed prominently as a link —
"Content courtesy: www.securesynergy.com".

Please fill the 'Request for Reprint' form by clicking here.

Security News
Updated before 1200 hrs (IST) on weekdays

:: 12 May: Microsoft plans four security fixes for upcoming patch Tuesday

:: 12 May: Phishing campaign targets tax rebate checks

:: 12 May: Srizbi botnet sets new records for spam

:: 12 May: Hackers find a new place to hide rootkits

:: 12 May: Stolen data could fetch in the thousands

:: 12 May: Report says C-level execs more involved with security

:: 12 May: Google security tool goes beyond the network

:: 12 May: Online auction sites suffer downturn

Security News
Updated before 1200 hrs (IST) on weekdays

:: 09 May: Rare SCADA vulnerability discovered

:: 09 May: Website attacks continue

:: 09 May: HSBC in further data loss

:: 09 May: India and Belgium decry Chinese cyber attacks

:: 09 May: Facebook commits to stronger safety and privacy measures

:: 09 May: Windows Vista more vulnerable to malware than Windows 2000

:: 09 May: Cyber-crooks bank on free phishing kits

:: 09 May: Five year-olds get online safety lessons

Security News
Updated before 1200 hrs (IST) on weekdays

:: 08 May: Fake MP3 Trojan detected on 27% of PCs

:: 08 May: Mozilla: Firefox plugin shipped with malicious code

:: 08 May: Researcher hides IE attack on Web

:: 08 May: Belgium accuses China of cyber-crimes

:: 08 May: Pharming attack is a new security threat

Switch to static view

DOWNLOADS
Click here

Live Spotlight Chat

Feb 06, 2008

Guest: Ajit Pathak, Country Manager -
Sales Operations
SecureSynergy

LEADER IN MANAGED SERVICES

Upholding the
confidence of 275,000+ connected users

SecureSynergy receives

MARKET LEADERSHIP AWARD
for Managed Security Services 2007

TESTIMONIES

SecureSynergy -- client list

SecureSynergy protection for the nation's most critical infrastructures; the world's most complex infrastructures...

Partial client list

PARTNERING OPPORTUNITY

SecureSynergy
Solution Provider Program 2008-2009

© Copyright 2002-2008 SecureSynergy Private Limited

Copyright | Disclaimer | Privacy