InfoSecPodcast.com

APT and attribution

Thursday, October 6, 2011

3790 CommentsAPT+and+attribution2011-10-06+21%3A17%3A05Chris+Harrington

I read an interesting analysis of the malware involved in the March RSA breach. The analysis was done by J. Oquendo and posted over at Infosec Island. After his analysis of the malware involved he believes that “its inconclusive but points more to RBN than APT.”. Read through his analysis and see what you think. [...]

My new job: Fighting APT at RSA

Saturday, June 18, 2011

3103 CommentsMy+new+job%3A+Fighting+APT+at+RSA2011-06-18+21%3A24%3A48Chris+Harrington

Starting Monday July 11th I will be working with a newly formed group at RSA / EMC that is focused on APT and SMT. For 3 years I have been on the front lines of this fight as the IT Security Manager for MIT Lincoln Laboratory, a Federally Funded Research and Development [...]

Some things to look for in your SecurID / Remote Access logs

Wednesday, June 15, 2011

2950 Comments2011-06-16+03%3A43%3A42Chris+Harrington

The RSA SecurID token has arguably been the defacto second factor authenticator for many years. Despite the recent breach at RSA I do not see many organizations moving to alternate vendors or other second factor technologies, like PKI / SmartCards or telephone based solutions. In the wake of the RSA breach most companies [...]

Tag Archive | "RSA"

APT and attribution

My new job: Fighting APT at RSA

Some things to look for in your SecurID / Remote Access logs

Latest Videos

Tags

InfoSecPodcast tweets

Reading now

Translate

Who's Online

Spam Blocked