Find Resources and Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

Subscribe to this discussion

Top 10 Intrusion Threats/Attacks

Hello - I'd like to know what people think are the most valuable types of intrusion threats and attacks to monitor and look out for please. We are considering using intrusion detection and prevention so would like to understand what are the main threats and attacks we will be looking out for.

Thanks
You must sign in to rate content.
(1 ratings)

Comments

RE: Top 10 Intrusion Threats/Attacks

HI Martin, I believe there are many publications out there which you may use to answer your question. For example, the latest Symantec 2013 Internet Security Threat Report. In this report the collected data is presented in graphics, making it very easy to follow the big picture of what already happened around the globe over the year of 202. Link: http://www.symantec.com/security_response/publications/threatreport.jsp
FeHa at 5/31/2013 3:20:49 AM Quote
You must sign in to rate content.
(1 ratings)

RE: Top 10 Intrusion Threats/Attacks

great resource FeHA, thanks
nooruddin at 7/24/2014 8:46:06 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

Martin, you can check followng links they provide extensive report for recent threats:

http://www.cisco.com/c/dam/en/us/products/collateral/security/cisco_global_threat_report_2q2011.pdf 

http://www.fortiguard.com/fortiguard_labs/threat_monitor.html

http://www.symantec.com/content/en/us/enterprise/other_resources/b-istr_appendices_v19_221284438.en-us.pdf
Paramjit Singh at 9/15/2014 9:28:38 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

You can also refer to information published by CERT or similar bodies. Also some attacks can be specific to your environment and this is best evaluated by monitoring the reports as provided by IDS/IPS.
SKA at 9/18/2014 12:58:02 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

Hello, 

This question is very hard to answer. In addition, I think that you should definitely research different vendors and what specific threats are our there from your organization/industry. Remember, nothing is ever 100% secure. I believe its best to put and IDS and a firewall in between the IDS and the internal network just in case something slips by the IDS. In terms of the IPS, they are important and are definitely required. But, make sure you rules are clear and the IPS is periodically updated (Everything should be updated) and checked because if their is a false-positive the IPS may start to fix a problem or turn of a system that is not experiencing a threat. So, the best case is to do a cost-benefit analysis and see what works well for you organization. You can never go wrong with a firewall (subnet) and IDS system. 
Jonathan462 at 12/27/2014 8:42:50 PM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

http://www.infoworld.com/article/2616316/security/the-5-cyber-attacks-you-re-most-likely-to-face.html http://www.infoworld.com/article/2614957/security/it-s-9-biggest-security-threats.html
Thapelo529 at 1/23/2015 5:46:14 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

http://www.infoworld.com/article/2616316/security/the-5-cyber-attacks-you-re-most-likely-to-face.html http://www.infoworld.com/article/2614957/security/it-s-9-biggest-security-threats.html
Thapelo529 at 1/23/2015 5:46:14 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

Hello, 

This question is very hard to answer. In addition, I think that you should definitely research different vendors and what specific threats are our there from your organization/industry. Remember, nothing is ever 100% secure. I believe its best to put and IDS and a firewall in between the IDS and the internal network just in case something slips by the IDS. In terms of the IPS, they are important and are definitely required. But, make sure you rules are clear and the IPS is periodically updated (Everything should be updated) and checked because if their is a false-positive the IPS may start to fix a problem or turn of a system that is not experiencing a threat. So, the best case is to do a cost-benefit analysis and see what works well for you organization. You can never go wrong with a firewall (subnet) and IDS system. 
Jonathan462 at 12/27/2014 8:42:50 PM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

You can also refer to information published by CERT or similar bodies. Also some attacks can be specific to your environment and this is best evaluated by monitoring the reports as provided by IDS/IPS.
SKA at 9/18/2014 12:58:02 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

Martin, you can check followng links they provide extensive report for recent threats:

http://www.cisco.com/c/dam/en/us/products/collateral/security/cisco_global_threat_report_2q2011.pdf 

http://www.fortiguard.com/fortiguard_labs/threat_monitor.html

http://www.symantec.com/content/en/us/enterprise/other_resources/b-istr_appendices_v19_221284438.en-us.pdf
Paramjit Singh at 9/15/2014 9:28:38 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

great resource FeHA, thanks
nooruddin at 7/24/2014 8:46:06 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

HI Martin, I believe there are many publications out there which you may use to answer your question. For example, the latest Symantec 2013 Internet Security Threat Report. In this report the collected data is presented in graphics, making it very easy to follow the big picture of what already happened around the globe over the year of 202. Link: http://www.symantec.com/security_response/publications/threatreport.jsp
FeHa at 5/31/2013 3:20:49 AM Quote
You must sign in to rate content.
(1 ratings)

RE: Top 10 Intrusion Threats/Attacks

HI Martin, I believe there are many publications out there which you may use to answer your question. For example, the latest Symantec 2013 Internet Security Threat Report. In this report the collected data is presented in graphics, making it very easy to follow the big picture of what already happened around the globe over the year of 202. Link: http://www.symantec.com/security_response/publications/threatreport.jsp
FeHa at 5/31/2013 3:20:49 AM Quote
You must sign in to rate content.
(1 ratings)

RE: Top 10 Intrusion Threats/Attacks

great resource FeHA, thanks
nooruddin at 7/24/2014 8:46:06 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

Martin, you can check followng links they provide extensive report for recent threats:

http://www.cisco.com/c/dam/en/us/products/collateral/security/cisco_global_threat_report_2q2011.pdf 

http://www.fortiguard.com/fortiguard_labs/threat_monitor.html

http://www.symantec.com/content/en/us/enterprise/other_resources/b-istr_appendices_v19_221284438.en-us.pdf
Paramjit Singh at 9/15/2014 9:28:38 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

You can also refer to information published by CERT or similar bodies. Also some attacks can be specific to your environment and this is best evaluated by monitoring the reports as provided by IDS/IPS.
SKA at 9/18/2014 12:58:02 AM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

Hello, 

This question is very hard to answer. In addition, I think that you should definitely research different vendors and what specific threats are our there from your organization/industry. Remember, nothing is ever 100% secure. I believe its best to put and IDS and a firewall in between the IDS and the internal network just in case something slips by the IDS. In terms of the IPS, they are important and are definitely required. But, make sure you rules are clear and the IPS is periodically updated (Everything should be updated) and checked because if their is a false-positive the IPS may start to fix a problem or turn of a system that is not experiencing a threat. So, the best case is to do a cost-benefit analysis and see what works well for you organization. You can never go wrong with a firewall (subnet) and IDS system. 
Jonathan462 at 12/27/2014 8:42:50 PM Quote
You must sign in to rate content.
(Unrated)

RE: Top 10 Intrusion Threats/Attacks

http://www.infoworld.com/article/2616316/security/the-5-cyber-attacks-you-re-most-likely-to-face.html http://www.infoworld.com/article/2614957/security/it-s-9-biggest-security-threats.html
Thapelo529 at 1/23/2015 5:46:14 AM Quote
You must sign in to rate content.
(Unrated)

Leave a Comment

* required

You must login to leave a comment.