TMCnet
New Coverage :  Asterisk  |  Call Center Outsourcing  |  Call Recording  |  SIP Trunking  |  Hosted Exchange  |  PBX
WEBINARS
TMCnet CHANNELS
#1 VoIP Enabler: Risk-free, Quick & Easy Deployment
4G Mobile Backhaul
Appliance Deployment
Application Performance Monitoring
Auto Attendant
Auto Dealer CRM
Bandwidth Management
BPA (3rd Party Remote Call Monitoring)
Broadband Solutions
Budgeting Software
Business Ethernet
Business Process Automation
Business Solutions
Business VoIP
Call Accounting
Call Center
Call Center Certification
Call Center Furniture
Call Center Hiring
Call Center Management
Call Center On Demand
Call Center Operations
Call Center Scheduling
Call Center Software
Call Center Solutions
Call Center Training
Call Center Wallboards
Call Center Workforce Management
Call Monitoring
Call Recording
Cloud Based Predictive Dialer
Cloud Business
Cloud Communications
Cloud CRM
Cloud Recording
Cloud Storage
Cloud Telephony
Communication Test Equipment
Consumer Robotics
Contact Center Outsourcing
Contact Center Software
Coordinated Care Management
CRM Cloud Computing
Customer Engagement
Data Center Network
Data Center Power
Data Center Services
Deployment and Management Solutions
e911
E911 Hosted Solutions
Embedded Multi-core
Enterprise Fax over IP
Enterprise SBC
Environmental Monitoring
Ethernet Extender
Expense Report Software
Fax
Fax Over IP
Fax Server
Fax Software
Fax VoIP
FoIP
Forensic Accounting
Google Apps - News
Green Builders
HD Voice
Healthcare Robotics
Hosted Billing
Hosted Call Center
Hosted Call Recording
Hosted Contact Center
Hosted PBX
Hosted Predictive Dialer
Hosted Softswitch
Identity Management
Industrial Robotics
Infrastructure as a Service
IP Communications
IP Fax
IP Media Server
IP Phone Maker
IP Phone Systems
IP Phones
IP Softswitch
IP Transit
IVR
IVR System
Knowledge Management
Lead Management Software
Least Cost Routing
Load Balancer
Load Testing
Managed Networks
Master Agent
Metro Ethernet
Military Robotics
Mobile Banking
Mobile Device Management
Mobile Security Management
Mobile Unified Communications
Mobile Video
Mobile VoIP
NERC Compliance
Netflow
Network Acceleration
Network Diagramming
Network Performance Management
Online Video Platform Solutions
Out of Band Management
Password Manager
PBX
Power Protection
Predictive Dialer
Quality Monitoring
Quality of Management
Renewable Energy
Sales Software
Satellite Communications
Satellite Optimization
SIM Server
SIP End Points
SMB VoIP
SMS Text Marketing
Social CRM & Mobile Care
Softswitch
Software Licensing
Solar Power
Spanish Language Contact Center Solutions
Speech Analytics
System Integrator
Telecom Expense Management
Telecom Platform Deployment
Telemarketing Software
Text Messaging
Unified Performance Management
Video Conferencing
Video Content Management Systems
Virtual Call Center
Virtual Office
Virtual PBX
Voice Broadcast
Voice Management
Voice Peering
VoIP Call Center
VoIP Call Recording
VoIP Gateways
VoIP Management
VoIP Solutions
VoIP Switch
WAN Optimization as a Service
Wind Power
Wireless Connectivity
Wireless Expense Management
Wireless Management
Workforce Management
Workforce Optimization
Share
FireEye Protects Against Internet Explorer Vulnerability

TMCnews Featured Article


January 19, 2010

FireEye Protects Against Internet Explorer Vulnerability

By Anuradha Shukla, TMCnet Contributor


FireEye, and analysis and control technology engine reportedly succeeded in providing pre-emptive protection to enterprise, federal and higher education customers against the current Internet Explorer zero-day vulnerability.

 
FireEye (News - Alert), a provider of malware protection systems, enables organizations to protect critical infrastructure, intellectual property and networks against Web malware and botnet infiltration. The company protects customers without making any changes or content updates to the product.
 
For this security project, FireEye worked with customers to determine if they had been singled out and was able to confirm in several cases that their network had been targeted. The FireEye security technology could identify the IE malware attacks.
 
According to a release, FireEye and its customers established that there were attempts made to exploit the IE zero-day vulnerability at multiple production sites. The technology made it possible that real-time detections were made in the FACT engine without any new rules or post-mortem analysis. With this ability, content could be secured manually.
 
Company officials further explained how the process happened: within the FireEye virtual machine analysis environment, dropper malware was installed and subsequently downloaded a Hydraq Trojan payload. Once this was done, Hydraq established an outbound connection to command-and-control servers and this provided the cyber criminals behind the attack full administrative access to the end system. The authorities have documented the IE zero-day exploit and made it publicly available.
 
Marc Maiffret, chief security architect at FireEye noted that traditional network security and antivirus were widely deployed but still, ‘Operation Aurora’ was able to breach dozens of major corporate networks using sophisticated techniques.
 
Modern malware has made traditional security technologies obsolete and Maiffret said that FireEye’s real-time, multi-protocol content analysis within virtual machines is currently the only integrated defense that can accurately identify zero-day attacks.
 
“The reality is these cyber attacks are regular occurrences in today’s Internet threat landscape. However, ‘Operation Aurora’ represents a clear escalation of the use of custom, targeted malware against enterprises,” Ashar Aziz, founder and CEO of FireEye, said. “It is critical that company executives recognize the threat posed by highly sophisticated modern malware, whether you call them botnets, Trojans, worms, or viruses.”
 

Anuradha Shukla is a contributing editor for TMCnet. To read more of Anuradha’s article, please visit her columnist page.

Edited by Amy Tierney