Google – China – Aurora attacks dissected. « Steve on Security

Google – China – Aurora attacks dissected.

http://www.theregister.co.uk/2010/03/01/aurora_resistence_futile/

Full paper here . iSecPartner’s recommendations are good. However, while comprehensive and technically accurate, I think it would be beneficial to have an accompanying set of “triage” recommendations (Use GPOs to disable LANMAN hashes; perform egress filtering and alerting; never EVER EVER login with admin credentials – use sudo or runas; migrate to token based authentication).

Advertisement

Like this:

Be the first to like this post.

~ by stevegoldsby on March 2, 2010.

Posted in Uncategorized

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Not published)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Connecting to %s

About Steve Goldsby

Steve has nearly two decades of experience in the information technology and security industry as a subject matter expert and consultant to Federal, State and commercial organizations spanning all major verticals. He is a popular featured speaker at national and state conferences as an Information Security subject matter expert. His Information Security articles and papers have been featured in national trade magazines and journals. Steve works for Integrated Computer Solutions Inc.

Links

Twitter

More linkedIn Nigeria scam spam? http://t.co/XOsOFns9.....3 weeks ago
GoldsbyLinx: First linkedIn Nigeria scam spam?: Looks like the Nigerian banker scam is ramping back up on LinkedIn. http://t.co/dOiBJP6M.....3 weeks ago
Retail Investors Pull $140 Billion From Equity Funds In 2011 Which Close The Year With 19 Consecutive Outflows http://t.co/wfdRULaY.....1 month ago
GoldsbyLinx: Apple batteries are brickable by hackers: https://threatpost.com/en_us/blogs/apple-laptop-batteries... http://bit.ly/om1QBc.....6 months ago
GoldsbyLinx: Seapking at INetU ITX Data Security Summit 13 July: http://www.itexpertseries.com/ come visit. @Gr... http://bit.ly/p2DUaf.....7 months ago

Follow

Follow “Steve on Security”

Powered by WordPress.com