Tag Archives: Computer

Top five strategies for combating modern computer security threats

Posted on by
Reply

Top five strategies for combating modern threats:

Is anti-virus dead?

Changing environment and threat

The corporate IT environment has changed irrevocably over the last few years.

Threats are no longer high-profile viruses that spread themselves obviously to millions of internet users for maximum publicity. Now they are highly targeted, silently infecting computers to steal data and make money for criminals. They are increasingly surreptitious and low profile, mutating in hours or even minutes to evade detection.

At the same time, today’s working environment is rapidly changing. The network perimeter has dissolved to such an extent that it is virtually unidentifiable. Yesterday’s “castle and moat” architecture – with its office-based desktops and servers protected by a gateway firewall – has crumbled. Remote working, the use of endpoint devices such as USB sticks, constant internet access and the rapid emergence of Web 2.0 technologies have redefined how employees interact with an organization’s systems. In addition, increasingly complex networks must accommodate not just employees, but also outside contractors, vendors and customers.

The need for all points protection

Cybercriminals exploit any vulnerability they can find to infect corporate networks. Their latest tricks use countless loopholes in web security to get malware onto a user’s computer in seconds. One new infected webpage is discovered every five seconds, and over 90 percent of these pages are on legitimate websites that have been compromised.

Users are duped into visiting these compromised websites, typically via links in spammed emails. There can be layers of complexity with the original website going to another site and that in turn going to a third, and so on, ending with a Trojan being downloaded onto the user’s computer – all of this happening in a matter of seconds.

The task of securing the network against this and other exploits – at the web, email and endpoint – is a daunting challenge for today’s IT departments who are being asked to do more and more with their constrained budgets.

Reducing the attack surface

Within this new threat environment, and as attitudes to work and information continue to evolve away from those of the past, organizations have become more aware of the acute need to control all points on the network to protect its data and systems from criminals. However, the speed with which new threats emerge and infect means that defenses are often inadequate and usually out of date.

Protection versus detection

While much can be achieved by user education and enforcement of acceptable use policies – for example, banning unencrypted laptops and USBs from being taken out of the office, or stipulating what can and cannot be sent by email1 – there is need to take a different approach to technology in order to reduce the attack surface and protect the network, systems and data from malware.

In addition to the ability to detect, there are several criteria that need to be taken into account to ensure ongoing manageable protection. The key strategies are highlighted below.

STRATEGY 1

Maintain traditional anti-virus protection

Totally reliable malware detection remains at the core of any security solution, and updates created by security vendors from samples of particular viruses still form the basis of efficient detection.

Issues of manageability and automation are important – anti-virus will only protect the network if it is correctly configured, deployed and updated across the whole network, and new computers logging on to the network need to have anti-virus software installed immediately and automatically.

So while organizations need to take other approaches into account too and use other technologies, powerful traditional anti-virus protection remains crucial. It is relying solely on the traditional reactive approach that is no longer adequate.

STRATEGY 2

Proactively protect the network

Traditionally, protection against malware and spam was created by security vendors collecting samples of particular viruses and spam, and then developing specific protection. Today this method is simply too slow and inadequate – there are too many targeted threats and they mutate too rapidly. For example, SophosLabs sees over 20,000 new malicious samples every day. Such large volumes of rapidly mutating malware require proactive, zero-day protection, to protect against threats that the vendor has not yet seen or analyzed.

Anatomy of a threat

Here is how a significant number of infections are achieved:

  • As part of a highly targeted spam campaign, a user gets an email from a hijacked computer.
  • The spammed email includes nothing more than a subject line and a link to an infected website.
  • This is a legitimate site so the user is not suspicious and clicks on the link.
  • Using a vulnerability to install, a Trojan is immediately downloaded onto their computer.
  • Their computer sends confidential data to the hacker.
  • The hacker also uses the newly hijacked computer to send out more spam campaigns.

This proactive protection can be achieved through behavioral analysis, a HIPS-like* technology that aims to stop malware before a specific detection update is released, by monitoring the behavior of code – not just when code is run, but also beforehand:

Pre-execution analysis – examines the behavior and characteristics of files before the file is run to find traits commonly found in malware.

Runtime protection – analyzes the behavior of files and processes as they are running, checking for suspicious activity.

An added advantage of strong proactive protection is that the number of individual threats that a research lab needs to analyze is reduced, enabling the rapid creation of new updates and protection where necessary.

STRATEGY 3

Use preventive protection

Network access control

A key weapon in exercising control to ensure security and productivity, is the assessment and management of network access. Finely controlled network access reduces the risk of infection by ensuring security policy is being complied with by all computers – not just those owned and managed routinely by the company but also those unmanaged guest computers connecting to the network.

By assessing and certifying systems before and after they connect to the network, network access control software can ensure compliance with policies, such as requiring all computers to have security software in place and properly configured, and operating system and application patches up to date. In this way organizations can enable safe access to the network, rather than simply blocking guests or maintain hugely inefficient pools of computers for contractors and partners to use.

Safe, effective web browsing

The need to control unauthorized endpoint access to the network is matched by the need to enable safe web browsing while preventing access to infected or inappropriate sites. Although the web has now become the key vector for online hacking attacks, as well as representing a drain on productivity for many businesses, the vast majority of businesses are unprotected against today’s modern web-based malware.

Solutions that offer reputation filtering, that is, that block websites known to be “bad”, provide some protection, but this is inadequate against “good” sites that have been hacked. Today’s threats require that the content itself is also checked – and all this without adversely impacting speed and efficiency.

STRATEGY 4

Control legitimate applications and behavior

Application control

Employees installing and using legitimate but unauthorized applications – such as Instant Messaging, VoIP, games, peer-to-peer file-sharing software, virtualization software, and unapproved browsers – are a real and growing threat. Not only can they introduce malware to the corporate network but they also seriously impact network and employee productivity and cause unnecessary support issues, and further security (and legal) risk if sensitive company or personal data is sent outside the company.

Restricting the use of these non-business-critical software applications narrows the threat vectors and is an increasingly important facet of an overall security policy. For maximum efficiency and return on investment it needs to be incorporated into the management and control features of an organization’s anti-malware solution.

Application whitelisting

Application whitelisting has been suggested as the modern solution to the challenge of protecting computers from unauthorized and malicious software. In this approach, known “good” applications form a whitelist and only this authorized software is allowed to run, in contrast to the traditional approach where “bad” applications (malware) are prevented from running.

The theory is that with application whitelisting, organizations do not need to rely on anti-virus companies to keep up with all the new malware released every day. While the approach has some merit, in reality it is just one of many technologies – such as anti-virus, HIPS and application control that need to be used to ensure comprehensive endpoint security.

STRATEGY 5

Control and encrypt devices and data

The protection of sensitive corporate data, especially in mobile computing, is more important than ever. The news is filled seemingly daily with reports of company laptops, CDs and USB keys packed with confidential information falling into the wrong hands. By using device control you can prevent data being copied and stored on devices like these. However, the problem is that modern business practice often requires the use of such devices. An effective solution to this obvious security weak spot is encryption to ensure that, though the medium might be lost, the data itself is protected and that no unauthorized person can access it or the rest of their IT infrastructure.

By encrypting the entire contents of a hard drive, organizations can complement the operating system’s own mechanisms and safeguard the computer’s operating system along with its data, ensuring that no changes or unauthorized access can be made.

Is application whitelisting the magic bullet?

Application whitelisting – allowing only known “good” applications to run has both strengths and weaknesses as a solution to the problem of today’s threats.

Encryption software can also help avoid statutory public disclosure requirements and limit the liability associated with a data leakage incident as many data protection laws have been updated to accept appropriate encryption as an acceptable safeguard.

Strengths

A strategy which allows only good code to run is a very appealing concept.

Whitelisting is a valuable approach for locked-down parts of organizations, where there are already strong restrictions on what applications can be used and where those applications rarely change, for example Point of Sale (POS) terminals in retail outlets, or servers performing a limited, core set of functions.

Weaknesses

Application whitelisting does not deal with types of malware protection needs that depend on subverting known good applications, including script malware running in browsers, macro viruses in Office, buffer overflows.

If malware evades detection by a whitelisting solution, cleaning up the infection is a major task.

The whitelisting vendor has to keep up with every release of a good application, as well as custom applications.

Administrators need to know exactly what they want to allow in order to define policy and have to maintain at least some of the whitelist themselves.

When the policy is defined, there is still a major challenge in identifying and maintaining the list of authorized applications, without impacting user or IT staff productivity.

Strategy support through vendor expertise

Underpinning the technology of any security software solution is the vendor’s expertise, experience and understanding of the threat environment. The beginning of this paper demonstrated the complexity and blended nature of today’s threats. A vendor with truly integrated visibility of spam, virus and web-based threats will be able to ensure the rapid response needed to combat new threats. In addition, just as analysis needs to reach across all threat types and technologies, so does the support offered by help teams.

Conclusion

Although traditional antivirus protection remains the cornerstone of reliable security, modern threats require solutions that go beyond this, providing proactive protection against fast-moving, zero-day malware. The wider issues of controlling network access, web browsing and applications need to be addressed by organizations as a matter of urgency, and the importance of encryption in securing corporate data needs to be understood and acted upon. Finally, organizations need to ensure that their vendor has the cross-threat expertise both in its labs and in its support teams, to make the solution cost-effective and successful.

This article was provided by Sophos and is reproduced here with their full permission. Trusted by 100 million users and endorsed by industry analysts as a leader, Sophos provides a full range of endpoint, antivirus, encryption software, email, web and NAC solutions that are simple to deploy, manage and use.

Computer Network Management

Posted on by
Reply

Today it is almost inconceivable for a business not to have computers, whether it is a construction company or a high technology firm. When a business has more than one computer, they are almost always connected together in a local area network. These networks may be more or less advanced and therefore more or less costly.


Companies invest so much (in terms of both money and time) in a local area networks because there are many advantages that a local area network brings to a business and how it is administered.


Some businesses use a local area network in such a way they are highly dependent on it always working. If the company’s network fails, then you may see all the employees chatting away in the corridors because they can’t do their work. This means big losses for the company and causes stresses on the employees. All companies must consider their local area networks a vital asset and downtime must be avoided. This imposes huge demands on the network staff to keep such networks running almost 100% of the time.


The advantages of Computer Network Management


One of the main advantages of installing and maintaining LANs is the opportunity they create for better communication and cooperation between employees and customers.


Security considerations: Local Area Network security can be both a help and hindrance. Comprehensive security is beneficial because it provides a central and safe strategy for data access and disaster recovery. All information is protected by the design and implementation of the network security solution. On the other hand, interconnecting computers in local area networks creates a security risk, since doing so makes it technically possible for intruders to access many machines on the network at once.


Cost considerations: Installing a local area network is a relatively expensive project. Servers, cabling, switches, routers and software can all be expensive and should never be purchased without expert advice. Keeping the network operating and secure also requires a lot of resources and can be costly.


Surprisingly, a local area network can bring a number of cost savings. Sharing resources avoids the need to purchase equipment for each individual. Even more important is the security that a local area network can provide. Data loss could cost a business a great deal of money and in some cases, cause the business to shutdown altogether. Computer Network Management should require a consistent routine for data backups with regular checkups of data quality – a practice that will save a company huge sums in the event of a mishap.


Computer Network Management: preliminary analysis phases


The first phase of computer network management is to determine the source of the problem (a preliminary study that looks into several options of differing scope may be useful here) and defining it in a specification of requirements. Examples of what should be evaluated are different network operating systems, mail systems, and other applications. The choice of hardware components should also be evaluated. This phase is generally aimed at establishing what the system should do, not how it should do it.


Computer Network Management: design phase


The purpose of design phase is to determine how the requirements of the specification are to be met. The current approach to large, complex projects is to break them down into smaller, more manageable subprojects.


Computer Network Management: implementation phase


This phase involves the physical installation of the local area network. Cables are run, software is installed, and computers and other hardware are put in place.


Computer Network Management: integration and system testing phase


In this phase, commissioning of the network begins, and routines are adapted to users and the operating personnel. The system must be tested, both to ensure that the network meets the requirements set out in the specification and that it is stable enough to perform the central function it has in the organization.


Computer Network Management: operation and maintenance


Local area networks have complex operating routines. This is because there may be serious consequences when faults occur or unauthorized persons gain access to the system. Many companies have employees devoted solely to take care of running and maintaining computer networks. These system administrators may deal with network issues such as performance, reliability and security of both hardware and software.


Computer Network Management: tools


Although an organization may have computer administrators on site, they must also monitor the network more than eight hours a day. In fact, some of the worst trouble that arises with networks can happen during the night hours when nobody is using the network. With the right computer network management tools, your organization can receive the security of knowing that problems will be foreseen, prevented, and taken care of – and that your network administrator can be notified at a moment’s notice, should anything go exceptionally wrong.

Frank Hughes is the Vice President of Technical Solutions at SecureMyCompany, Inc. Mr. Hughes has over 14 years experience in the IT industry, with the last 10 serving as the Senior Solutions Consultant for BellSoutions.net. Get more information on network management tools.


Frank Hughes hold several vendor certifications including Microsoft, Dell, Cisco, Sonicwall and many more. Mr. Hughes is a recognized expert in managed services including remote desktop managment, network monitoring and help desk software.

Computer Network Overview

Posted on by
Reply

Computer networking or data communication is a most important part of the information technology. Today every business in the world needs a computer network for smooth operations, flexibly, instant communication and data access. Just imagine if there is no network communication in the university campuses, hospitals, multinational organizations and educational institutes then how difficult are to communicate with each other. In this article you will learn the basic overview of a computer network. The targeted audience of this article is the people who want to know about the network communication system, network standards and types.

A computer network is comprised of connectivity devices and components. To share data and resources between two or more computers is known as networking. There are different types of a computer network such as LAN, MAN, WAN and wireless network. The key devices involved that make the infrastructure of a computer network are Hub, Switch, Router, Modem, Access point, LAN card and network cables.

LAN stands for local area network and a network in a room, in a building or a network over small distance is known as a LAN. MAN stands for Metropolitan area network and it covers the networking between two offices within the city. WAN stands for wide area network and it cover the networking between two or more computers between two cities, two countries or two continents.

There are different topologies of a computer network. A topology defines the physical layout or a design of a network. These topologies are star topology, bus topology, mesh topology, star bus topology etc. In a star topology each computer in a network is directly connected with a centralized device known as hub or switch. If any computer gets problematic in star topology then it does not affect the other computers in a network.

There are different standards and devices in computer network. The most commonly used standard for a local area network is Ethernet. Key devices in a computer network are hub, switch, router, modem and access point etc. A router is used to connect two logically and physical different networks. All the communication on the internet is based on the router. Hub/Switch is used to connect the computers in local area network.

Hopefully, in this article you may have learnt that what a computer network is, how important it is in our lives, what are different network devices, standards, topologies and communication types.

B. Bashir manages Networking Tutorials and regularly writes articles on various topics such as Computer Networking, IP Address NetworkWireless Networking, Computer Hardware, Certifications, How Tos, Network Glossary Overviewand Computer tips.

Computer Network Solutions

Posted on by
Reply

-Computer network solutions

What is a Computer Network?

A computer network refers to an interconnected group of computers. The networks may be classified according to the network layer at which they function depending upon the basic reference models. The reference models may differ from industry to industry, just like the five-layer Internet Protocol Suite model. Computer Networks are classified on the basis of various factors like scale, connection method, network relationships and protocol.

Type of Computer Networking: The common types of computer networks are:

  • Personal Area Network (PAN)

  • Local Area Network (LAN)

  • Campus Area Network (CAN)

  • Metropolitan Area Network (MAN)

  • Wide Area Network (WAN)

  • Global Area Network (GAN)

  • Internet work – intranet, extranet and internet

 

Importance of Computer Network Solutions in Organizations:

With the boom of technology and e-commerce, most of the small and large businesses today are driven by the use of internet. The Internet and the influence that it has on e-commerce and business has in more than one ways become the “great equalizer” of small business and the larger corporate giants.

Especially in the case of small business, it is very important to maintain their computer network solutions so as to keep working properly and efficiently. A whole package of computer networking solutions complete with routine maintenance, regular updates, upgrades and support can help an organization ensure that its investment is well protected and that it can survive and thrive online.

Here are some of the important computer network solutions and services that can help your organization runs smoothly and efficiently:

  • Updating and upgrading software – This helps in ensuring the longevity and integrity of the online portion of your business. By installing regular software updates, you can ensure that you have the newest, safest and most efficient software for your organization’s needs.

 

  • Maintenance of systems using computer network support – It is advisable to find a trusted technician in your area whom you can call in to save valuable time in the event of an unexpected technical problem.

 

  • Routine maintenance – This helps in protecting your computers and networks from viruses and spy ware. Installing an effective virus protection software program in your system can ensure the longevity of your computer network by helping to keep it free from dangerous viruses that can threaten your information and software. Moreover the spy ware prevention software can also help keep unwanted hackers out of your systems to ensure that your sensitive information is kept secure.

 

E -Computer Network Solutions Providers:

There are many organizations that provide online computer network solutions for small, medium and large organizations. They provide cost effective and high performance computer networking solutions to build Local Area Network, Wide Area Network and Wireless LAN to access internet and share data between the computers. Some of the companies providing computer Networking Solutions online are:

  • CSS Infotech Ltd.

  • JMPro Networking Solutions

  • VIP PowerNet

  • The Computer Company

 

 

 

Hatteras Networks provides broadband Ethernet solutions over existing copper facilities to enable service providers to deliver transparent Metro Ethernet services and address the growing demand for high bandwidth mobile wireless and DSLAM backhaul transport

Only Proper Computer Hardware and Networking Products Can Make a Difference to Your Business

Posted on by
Reply

 Networking is an important aspect for firms all over. No matter what type of firm is, there is a prompt need for them to maintain apt network. Firms need small and large business networking solutions to effectively run their business. There are specific firms for network installation service, and such firms also take account of network security & support services. Thus, no firm can get away with proper computer hardware and networking products to have long term gains. There is a network monitoring software to help you keep better track of network security and support services.

This specific software helps firms gauge all their critical network elements like mail servers, WAN links, business applications etc. It also assists firms to make out their whole LAN infrastructure that has been made up of wireless routers, load balancers, non-standard devices, printers, and switches. The network monitoring software is of immense help and can also check for viruses and virus attacks. Moreover, it also checks for server downtimes and uptimes. You also get the backing-up of your significant folders and files besides having a synopsis of your bandwidth usage through other versions.

Firms also get the collective package of asset management, Local Area Network (LAN), Wide Area Network (WAN), WAN traffic analysis function and server with the help of the majority of Network monitor software. With such software, the monitoring of computer network has become almost an easy task.

As soon as there is some problem, Network monitor software automatically alerts network administrator and has got the ability to monitor and notify almost everything linked with the network related issues. Identifying future and present problems, monitoring LAN and all network equipment components and troubleshooting almost all network linked issues are tasks that the software does with great ease. Network administrator and system specialists are breathing easy with this specific software.

Internet servers, intranet servers, event logs, modems, database, routers are constantly monitored with it. With it, your data is gathered on remote machines through Remote Registry service. As soon as a network related problem gets detected, the network monitoring software instantly and automatically sends alert with the help of e-mail, SMS or network message.

Thus, your network related issue gets solved with this specific software. Online mode can also help you in networking problems. In case the firm is in down under, then it can get benefits for its networking related issues by Remote Network Support and Monitoring Services Australia.

Smit Mathur is an expert for writing Articles and currently working for Swift Computers. For more information related to Computer hardware and networking products , Network Installation service, Network Security & Support services, Remote Network Support and Monitoring Services Australia, Small and large business networking solutions please visit: http://www.swiftcomputers.com.au/