February 2009

Industry News

Data Breaches Are More Costly Than Ever
With all of these well–publicized data breaches, companies are finding out how expensive it is to repair things after the fact...
More >

IT security jobs largely untouched by economy
New reports say recession has yet to take a heavy toll on info security jobs, salaries.
More >

Offshoring – How Big Is the Threat?
This is a key question to ask your 3rd party provider: Do you use an international workforce and what precautions are you taking? The problem is that few companies have done proper due diligence on their 3rd party providers. The economy has the potential to derail many of these providers, and others may cut back on critical services that you are counting on.
More >

Monster Data Breach Underscores Larger Issue Of Failing Web Security
The most recent security breach at the popular job search site Monster.com, along with the recent hack of USAJobs.gov, which Monster's parent company, Monster Worldwide Inc., runs for the US government, highlights the growing problem of mismanaged Internet security.
More >

Corporations Are Inadvertently Becoming the No. 1 Security Threat to Their Own Customers, According to New IBM X–Force® Annual Report
Web Application Vulnerabilities Are the Achilles' Heel for Corporate IT Security as Browser Attacks Skyrocket.
More >

Unauthorized Web Use On The Rise, Sneaking By IT
New data shows businesses may be clueless about proxy abuse in their organizations.
More >

What could keep you up at night in the new year may not be what you expect — a look at some of the lesser–known threats predicted for 2009
You're probably gearing up for the well–known security risks you've watched emerge over the past year to go front burner in the new year — the insider threat, Web 2.0, and targeted attacks. But don't pop that champagne cork just yet: Some obscure potential threats that could be more difficult to prepare for and defend against also are looming for 2009.
More >

More than half of 2008 vulnerabilities affect Web applications, IBM ISS study says
If you're trying to find the weak spot in your security defenses, look no further than your Websites...
More >

Mobile tech 2010: Five trends that will change our lives
The next two years will bring a slew of advances for mobile workers. Here are five that will make life on the road more productive.
More >

Due Diligence – Is Your MSSP Secure?
Now is the time to perform due diligence on all your 3rd party providers and decide if you are doing business with the right ones.
More >

Where Is All The Malware Coming From?
Anti–virus vendors are getting more than 50,000 submissions of new malware per day now. How can the malware business be so productive? It turns out the numbers aren't really as big as all that.
More >

US government phishes its own employees
The US Department of Justice (DOJ) has admitted that it has been sending phishing emails to its own employees in order to test their security awareness.
More >

The Real Truth About Identity Theft
 More >

Can We Learn Anything From Cisco's Security Report?
Five actions to take based on Cisco's Annual Security Report.
More >

89.88% Of Email Was Spam In 2008
More >

Study: Airport Wi-Fi unprotected
Most airports offer wireless Internet access these days, but don't be lulled into a sense that you're somehow secure. A new study that shows just how vulnerable you can be if you don't take the right precautions.
More >

SPOTLIGHT ON HOSTED EMAIL

Award Winning Hotel Group Keeps Costs Low Using Hosted Technology Services
MTM Luxury Lodging isn't an ordinary hotel management group. This boutique hotel management team was awarded the 2008 Visionary Award by HT Magazine for their use of modern technology in their day–to–day operations. Read how their small IT team successfully supports the over 450 employees and thousands of guests across seven luxury properties by leveraging hosted services for their email, wireless services and collaboration services.
Read More >

January 2008 Statistics in Review

Top sources by country triggering IDS events in January

RFC 1918 represents a private IP. This is significant as most of our sensors monitor ingress/egress points, thus this data shows that primarily in January we triggered more IDS events on client internal traffic destined for the internet. Taking a look a the top ten ids signatures this actually matches our view into top sources triggering IDS events. "Undefined" in this group will be due to OS level logs via HIDS that have detected activity that is not likely tied to an IP address (underscoring layers of security).

1. RFC 1918
2. United States
3. Taiwan
4. Australia
5. Undefined

6.China
7. Korea
8. Germany
9. India
10. Russian Federation

Top IDS events in January

Type

ids.detect.svc.proxy
ids.detect.corrupt.ip
ids.detect.recon.pingscan
ids.detect.recon.portsweep
ids.detect.exploit.ip
ids.detect.exploit.web
ids.detect.corrupt.ip
ids.detect.auth.db.access.grant
ids.detect.exploit.email

ids.detect.svc.ip

Name

HTTP CONNECT Tunnel
IP Fragment Missing Initial Fragment
ICMP Network Sweep w/Echo
TCP SYN Host Sweep
SIP Long Header Field
"SQL ftp attempt"
ICMP.Bad.Checksum
Data Base TNS Connection
email:MS.Exchange.Mail.Calender.
Buffer.Overflow
tcp_reassembler: TCP.Bad.Flags,


Top Firewall Deny sources by country in January

This is not surprising, as most internal traffic tops the list. The top 2 dominated the firewall denied traffic in terms of raw numbers, this is of course expected for internal traffic (RFC 1918) and to a degree from the US, Brazil and China, who are usually respectively 3rd and 4th as both contribute to the bulk of all external country denied firewall traffic with all others having far fewer monthly totals. The others are just plain interesting.

Country of Origin

1. RFC 1918
2. United States
3. Brazil
4. China
5. Japan

6. Ethiopia
7. Italy
8. Netherlands
9. Sweden
10. Australia

 SPECIAL OFFERS
Complimentary white paper – Download now!
Simplifying Network Security with a Single Source Provider
Download the Whitepaper Today

What are your peers doing?
Osterman Research conducted three surveys during November 2008 through January 2009 asking IT decision makers and influencers about the impact of the current economic situation on their IT and overall spending plans.
Download PDF
New to Perimeter? Schedule a personal demo of our services with one of our eSecurity Experts and be eligible for this month's special promotion.
Call today to set up your one–on–one demo – 800.234.2175
*Special offers may not be combined. Valid on new business only.


What comprises
a good vendor
management program
and what documentation
I should ask my vendors
to supply?
More >

COMPANY UPDATE

Visit our Blog, share your comments and experiences
Can't wait for the next news letter? Check out the blog to stay on top of today's changing network security landscape...
Data Breach Costs top 6.6 Million per Incident...
More >

Product UPDATEs

New Services / Enhancements Perimeter's Product team had an outstanding 2008! We made a number of upgrades, announced several brand new services, and continued with product enhancements... but that doesn't mean we are going to slow down anytime soon!
Read more about what the product team has been diligently working on since our last edition of The Edge.

SEcuRity Bulletin

Fraud Login Code Phishing Attack Warning
Perimeter eSecurity would like to notify customers of recent phishing activity targeting financial institutions using ITI Fiserv to host their ebanking sites. These sites contain generic URL strings that are common across all customers utilizing the service.
More >

Webcasts

February 17th, 2pm EST
The Perfect Storm: How the Current Recession is Threatening Your Network and What You Can Do

Upcoming Events

CUNA GAC
Washington D.C.
February 22nd–24th

Perimeter eSecurity • 440 Wheelers Farms Road • Suite 202 • Milford, CT 06461 • toll free. 800.234.2175
www.perimeterusa.com privacy policy

To unsubscribe to this publication, just reply to this message and put "unsubscribe" in the subject line
or click here to unsubscribe.

© Copyright 2009 Perimeter eSecurity