One Article Review
| Source |  NoticeBored |
|---|---|
| Identifiant | 465913 |
| Date de publication | 2018-02-08 14:04:50 (vue: 2018-02-08 14:04:50) |
| Titre | NBlog February 8 - making security awareness infectious |
| Texte |  Just appearing into view along our virtual conveyor belt comes an updated module on malware, one of those perennial, almost universally-applicable security awareness topics.Aside from generally checking over and fluffing-up the content delivered in prior years, we're on the lookout for new developments, specifically any changes in the risk profile or security controls associated with malware.Something we've spotted is an alleged move away from ransomware (which was Big News this time last year, a real and present danger) towards using compromised systems for crypto currency mining. I'm not entirely convinced at this point whether that is a genuine change: maybe ransomware has indeed peaked out (I sure hope so!), maybe not, but either way mining malware could be an emerging trend, another short-lived fad, a mistaken interpretation of limited data or pure fiction invented by someone flogging antivirus software.Over a much longer timescale, commercial exploitation of malware remains evident, along with the continuing battles between black and white hats. For decades we have seen innovative and increasingly complex technologies being deployed on both sides - clever stuff, but things have more or less stalled on the human front. Despite our best efforts through awareness, education, training, phishing simulators etc., the same old social engineering tricks remain somewhat effective today at spreading malware, and there's plenty of potential there for further innovation. Novelty is a challenge for both the tech and non-tech malware defenses. This is cutting-edge stuff where established approaches gradually lose their power. Purely responding to changes on the offensive side is bound to set us on the back foot, especially given that most of those changes are unrecognized as such, initially anyway. Who knows, maybe the Next Big Thing in social engineering might be quietly ramping up right now.So, I'm sitting here thinking about how to encourage NoticeBored subscribers to up their game with more innovative malware defenses, including our creative efforts on security awareness of course but what else could they be doing? Hmmm, I wonder if security awareness messages could be delivered by malware-like infectious mechanisms? |
| Envoyé | Oui |
| Condensat | a novelty probably about against alleged almost along another antivirus any anyway appearing applicable approaches are aside associated awareness away back battles behavioral being belt beneficial benevolent best between big black both bound but can challenge change: changes checking clever comes commercial complex compromised content continuing controls conveyor convinced could course creative crypto currency cutting danger data decades defenses delivered deployed designed despite developments doing drawbacks edge education effective efforts either else emerging encourage engineering entirely especially established etc evident exploitation fad february fiction flogging flu fluffing foot form from front further game generally genuine given good gradually has hats have here hmmm hope how human idea including increasingly indeed infect infectious initially innovation innovative interpretation invented just knows last least less like limited lived longer lookout lose making malware maybe mechanisms meme messages might mining mistaken module more most move much nblog new news next non not noticebored now offensive old one out over patch peaked people perennial person phishing plenty point possibilities potential power present prior profile pure purely quietly ramping ransomware real remain remains responding right risk risks same security seen set short side sides simulators sitting sniffles social software someone something somewhat specifically spotted spreading spreads stalled stuff subject subscribers such supposedly sure systems tech technological technologies there thing things thinking those though through time timescale today topics towards training trend tricks universally unrecognized updated using view virtual vulnerabilities way what where whether which white who without wonder worms year years |
| Tags | |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.