Choose from several options for complete web, email and data security.
Learn more
Evaluate Websense products by watching demos and installing evaluation software.
Learn how Websense solutions help keep our customer safe, secure and productive
Get information on product updates, support resources and more.
Get the most out of support in five simple steps.
Find tools and assets to help sell Websense solutions.
Come work for the global leader in unified information security. Go
Contact us>
Every day, organizations worldwide are targeted by data-stealing attacks. While these attacks have evolved in frequency and sophistication, many security defenses have failed to adapt. Old techniques don’t address containment against data theft and cybercrime call-home communications. The growing prevalence of cloud apps, along with increases in SSL traffic, mobility and remote users are also adding more blind spots to traditional defenses.
It’s imperative that we continue to stay up-to-date on the latest tactics and tricks. Join me this Wednesday, August 8, 2012 from 10 a.m. - 11 a.m. PT for a webinar on the seven stages of data theft. We’ll be covering each of these steps:
Reconnaissance - Targeted attackers access credentials and research online profiles, email IDs, org. chart information, hobbies and interests from social profiles to gain insight on their victims.
Lures - Designed to prey on human curiosity, web lures often link to videos or breaking news, while email lures are more business-focused on transaction and fake delivery notices.
Redirects - Users are usually directed to a survey, rogue anti virus offer or a fake web page where an exploit kit is waiting. Traditional redirects are injection attacks, while newer ones focus on social networking wall postings, fake plug-ins, fake certificates and heavily obfuscated java script.
Exploit Kits - The exploit kit objective is like that of a sniper: take the shot with a malware dropper file only when an open door for tested vulnerabilities is found.
Dropper Files - This stage is what most people consider the focus of their forward-facing defenses: analyze every file that comes into the network for malware. The problem is dropper files use dynamic packers, so known signatures and patterns are not available.
Call-Home - This stage involves calling home for malware downloads and tools, and for sending back information, standard procedure for any successful online attack. The problem is that most defenses are only forward-facing and do not analyze the outbound traffic from infected systems.
Data Theft - This is what they are after. The ability to contain an attack and stop data theft raises many questions that we will address. Can your defenses detect password files leaving your network or the use of custom encryption on outbound files?
In addition, we’ll be covering: why current defenses are failing; today’s new security requirements; and the newest, bleeding edge advanced threat and data theft defenses to emerge thus far.
We look forward to having you join the webinar. Bring your questions and be ready to talk threats!
Did you know that 90 percent of all companies experienced some type of data breach within the last year? And that 64 percent happened while employees were outside of the corporate headquarters? We predict it will only get worse as more people use mobile devices and tablets. Join me this Wednesday, July 11 at 3 p.m. ET/12 Noon PT to discuss...
Did you know that 90 percent of all companies experienced some type of data breach within the last year? And that 64 percent happened while employees were outside of the corporate headquarters? We predict it will only get worse as more people use mobile devices and tablets.
Join me this Wednesday, July 11 at 3 p.m. ET/12 Noon PT to discuss...
Ever been to a webinar that tells you what to do, but fails to say how? Well, this week I’m determined to change that. I’m hosting a webinar that will help eliminate DLP fears and provide a guide on managing risk. As a Websense expert on DLP, I’m going to give real-world practical advice on how anyone can understand, apply, and realize real measurable DLP results.
Here’s the webinar link. Join me on Thursday, April 5th at 10 a.m. PST/1 p.m. EST. You’ll learn:
- Guiding principles of security and risk management
- Data breach trends from the last six years
- Nine-step DLP methodology and execution strategy
- Success factors in addressing the web DLP challenge
While CIOs don’t need to be convinced that data loss protection is important—many are afraid of failure. They have heard horror stories about deployment complexities and operational nightmares. Recent high-profile data breach headlines have also made them question the true value and effectiveness of DLP. Could you blame them? Well, this webinar is designed to give you a road map to DLP success.
Register for the webinar here: http://www.websense.com/content/brighttalk-webcast.aspx
If you have any questions on DLP or the webinar, feel free to post a comment.
A while back it seemed like you just had to worry about foreign governments or competitors going after your IP, and cybercriminals stealing your money. As if that weren’t bad enough, now all of a sudden it’s cool to be a hacker again? Media notoriety elevates the atmosphere around the black, white, and grey hat communities.
So now, hordes of pro and semi-pros are armed with the same arsenal of tools and exploits. I’ve heard that breaches run in the hundreds of dollars per record, but if it is your IP stolen – the fundamental ingredients that make your business what it is, the pain can be even greater.
So, how do they do it? These bad guys are creating code that knows where your weaknesses are and searches out your most valuable data. They use combinations of email and web tactics, gain a foothold in your system and then have almost free reign to exfiltrate any data they think they can monetize.
How easy is it to evade detection? Well , John Strand just posted an excellent article about how to bypass AV on Pauldotcom. I think it’s almost recommended reading for anyone protecting a network.
In addition – tomorrow I’m going to be hosting a Webinar on some of our research on attacks, attack types and how you can stay ahead in the game. It’s a dog eat dog world out there, and there is a lot at stake. Join me and we’ll talk it through. You can register for the webinar here: https://connect.websense.com/e15206815/event/event_info.html
I look forward to sharing with you.
Follow us on SpiceWorks
BlogRoll
We want to hear from you!
