Server virtualization will become a dominant factor in the next three to five
years in an effort to reduce operating costs and simplify business. One
highly popular trend is using virtualization for data center consolidation.
Companies are consolidating everything from Web servers to the servers that
run CRM applications, all in an effort to streamline operations and create
efficiency across-the-board.
The consolidation of physical assets to form a heterogeneous environment,
while significantly reducing overhead, sounds like a very attractive proposal
for any CIO. However, it also introduces additional problems that can
substantially increase security risks.
Simply put the aggregation of multiple functions and resources into a single
physical platform will not only increase your overall risk, but introduce a
single point of failure. This holds especially true if the... (more)
Wireless networks and endpoints offer convenience and connectivity, but
unless properly secured, they also offer a means of egress into the network.
As evidenced by recent headlines surrounding undiscovered data breaches and
subsequent public exposure, hackers have begun to turn their eye toward
breaching wireless networks and taking advantage of the many weaknesses
incumbent. At the same time, we continue to see a trend toward stealing
cardholder information from retailers such as TJ Maxx and Hannaford Brothers.
According to a recent study conducted by the Verizon Business Risk ... (more)
There’s no question that advances in server virtualization technology are
becoming popular among corporations that want to save money by consolidating
resources and improving operational efficiency. Virtualization enables a
dramatic increase in cost savings in ongoing maintenance and the cost
required to keep physical assets afloat. These benefits are often seen by
CIOs and other information technology leaders as adding tremendous value to
an existing robust IT infrastructure. Who wouldn’t want to save money by
reducing the size and extent of their data center, especially in the ... (more)
SQL injection attacks are evolving as one of the primary modes of
transportation for malicious scripts that hackers insert into legitimate
websites. According to recent events, this method is becoming very popular
among the hacker elite, especially considering the number of sites they are
able to exploit almost overnight. Some of these victim sites include the
United Nations and the Department of Homeland Security (DHS).[1] Typically
they will use the website as a vehicle for distributing Trojans through
encoded JavaScript that a SQL injection inserted into the website.
The scar... (more)
As the malware threat landscape continues to evolve, hackers are continuously
changing techniques to counteract detection technologies being developed by
vendors. By using sophisticated methods to evade current antivirus
technologies, hackers are relentless in their pursuit of damaging IT systems
and oftentimes gaining access to sensitive information.
Several years ago, hackers used polymorphism and metamorphism as tactics to
constantly generate new variants of worms. Essentially, through polymorphism,
the virus would morph into different variations, successfully bypassing
signa... (more)
Ryan Sherstobitoff is an Independent Security Researcher. He formerly was the Chief Corporate Evangelist at Panda Security, where he managed the US strategic response for new and emerging threats. Ryan is widely recognized as a security & cloud computing expert throughout the country. He blogs at 
Jeremy Geelan
Sue Poremba
Scott Sellers
Anthony Franco
Daniel Morris
Wayne Walls
Niki Acosta
Jereme Hancock
Oren Michels
Marvin Wheeler
Douglas Kim
