iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > News > Security News > Intrusic Targets The "Insider Threat"
Search:
[ news_security_news ]

Intrusic Targets The "Insider Threat"



SecurityProNews
Staff Writer
2004-08-16

SecurityProNews: Insider Reports Insider Reports RSS Feed


Intrusic, the first and only security software company to specifically target the Insider Threat, today concludes its "Inside the Insider Threat" series.

The program has educated hundreds of enterprises and organizations on the specific methods used by malicious hackers, terrorists and industrial spies to infiltrate internal networks through stealth and espionage.

The Insider Threat remains the most pervasive security concern for companies of all sizes. The hackers who recently plead guilty to the 2003 Lowe's compromise followed the same patterns thoroughly outlined in this series: entry, reconnaissance, residency and action. According to an article from IDG News Service, the hackers entered Lowe's corporate network through a wireless LAN from which they were able to conduct internal espionage and compromise Lowe's corporate network.

"Now that enterprises understand the specific ways they can be compromised, they can greatly increase their overall security baseline," said Jonathan Bingham, president of Intrusic. "Fortunately, companies also can benefit from the emerging technologies available to combat this problem."

The most common techniques employed by digital criminals or cyber-terrorists include:

Island Hopping: Island Hopping involves compromising a home user's computer and pirating a remote access mechanism such as a VPN to infiltrate a corporate network. By exploiting the fact that enterprises and organizations allow employees trusted access to the internal corporate network from remote sites, business partners or home users, Island Hopping effectively converts a VPN from a security tool into a stealthy backdoor into a network.

Covert Data Channels: Covert Data Channels hijack Internet protocols to create a secret doorway into networks. An example of a Covert Data Channel is a Reverse Tunnel, a connection that flips the role of desktop and server, allowing information to flow from the desktop to a server.

Information Interception: Information interception describes a set of techniques to conduct reconnaissance throughout internal networks. Using these methods, an intruder intercepts arbitrary information ranging from access credentials to sensitive company materials while remaining undetected by traditional network security. Intercepting information is a good way to obtain access credentials and view information that is thought to be private, for example, voice conversations over IP, bank transactions, SSL communications, and email traffic.

Any of these techniques leaves an organization at the mercy of a rogue employee, malicious hacker or cyber-terrorist. However, solutions do exist.

Guarding Against the Insider Threat

All the techniques that are profiled in the series - Island Hopping, covert data channels and information interception - are extremely difficult to identify. Even the most technologically advanced companies often find these malicious insiders through pure luck. Zephon, Intrusic's flagship software solution, tracks dangerous covert activity across the entire network and uncovers all of the compromise methods discussed in the "Inside the Insider Threat" series.

Zephon: Protecting the Inside

The Intrusic security platform protects businesses by identifying "cloaked" insiders impersonating legitimate users who are in a position to do extreme harm to an organization. Zephon identifies compromises by utilizing a complex multi-tiered analysis architecture, which identifies discrepancies in the information flowing inside of an organization. The result is a complete, easy to understand assessment of the nature, scope, and extent of the compromise. Zephon provides companies with all of the information necessary to remove these insiders and prevent damage before it occurs. Zephon is the last line of internal network defense.


About the Author:
SecurityProNews is a daily online and email publication focusing on internet security issues.

More news_security_news Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - $line) { echo $line ; } ?> All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds