Latest Blogs

from the Emerging Business Team

Core Infrastructure by Yi-Jian Ngo

Evil Holiday Cards

Hackers are constantly trying out new attack vectors. One recent ploy has been to plant links to malware on hijacked or fake blogs that are disguised as holiday e-cards. A variation of this is where unsuspecting users are tricked into downloading malware that is supposedly necessary for viewing a holiday video.


While you could install a web filtering tool as a defense, such software is typically only as good as the blacklist of dangerous sites that it maintains. Hackers, however, often deploy their malicious software using service-oriented architecture models, enabling them to switch the source of their malicious downloads on the fly, making it nearly impossible to maintain an up-to-date blacklist.


An alternative approach to blacklisting is to use behavioral algorithms to detect and block suspicious traffic. There are a number of companies that do this in the enterprise space, such as Mazu Networks, though false positives (finding malicious traffic where there is none) are still a problem.


Looking ahead, I believe that the behavioral approach will become more common as underlying algorithms improve, though it will likely still be complemented by a blacklist.

 

Filed under:
Email It!   digg It!   Live It!   del.icio.us  
Published Monday, January 07, 2008 9:06 PM by Yi-Jian Ngo

Comment Notification

If you would like to receive an email when updates are made to this post, please register here

Subscribe to this post's comments using RSS

Comments

No Comments

Leave a Comment

(required) 
(optional)
(required) 
Submit

About Yi-Jian Ngo

I have a passion for technology and want to apply that towards discovering and developing ideas into successful companies. At AT&T Strategic Ventures, my investments included OpenClovis, a telecom middleware vendor. I have executed $15B worth of M&A transactions, as well as held multiple operating roles in network engineering and global business development. Currently, I cover the enterprise infrastructure space for the Emerging Business Team, and focus on our strategic initiatives in China. I received my MBA from Cornell, and also hold degrees in Electronics Engineering and Law.
Yi-Jian Ngo
Core Infrastructure, Security and Storage
I have a passion for technology and want to apply that towards discovering and developing ideas into successful companies. At AT&T Strategic Ventures, my investments included OpenClovis, a telecom middleware vendor. I have executed $15B worth of M&A transactions, as well as held multiple operating roles in network en...
Read More   Email Subscribe

Recent Posts

Syndication

  • Subscribe in NewsGator Online
  • Add to Technorati Favorites