Browse By Topic

• RSS News Feed
• News Archive
• Opinion
• Features
• Wireless Technology
• Hardware
• Security/Privacy
• Integration/Networking
• Professional Development
• Special Needs Students
• Data Management
• Display/Presentation
• eLearning/Web
• Accountability/Assessment
• Policy/Research
• Funding
• Telecom
• Business Intelligence
• Green

Magazine

• Current Issue
• Archives
• Article Search
• Editorial Calendar
• Editorial Board

Newsletters

• T.H.E. News Update
• Collaboration 2.0
• THE SmartClassroom
• School Security
• Classroom Tools & Tips

Events

• FETC
• Innovative Learning Conf.
• Congress on Content

Subscription Services

• Magazine
• eNewsletters

Resources

• Learning Centers
• White Papers
• Webinars
• RoadMap to the Web
• Education Plaza
• Sylvia Charp Award
• Conference Calendar
• FETC 2008 Vendor Focus
• Podcasts
• School Security
• 21st Century Skills
• Professional Development in Technology
• Dropout Prevention
• Math Intervention

Marketing

• About Us
• Media Kit
• Press Releases
• PR Guidelines
• Contacts

December 2002 — Special Feature

Print this article | Email this article

Click here to receive your FREE subscription to T.H.E. Journal

Blended Threats - A Deadly Duo of Hackers and Mobile Code

By Vincent Weafer

• When using e-mail, do not open attachments that are unexpected, even if they come from someone you know. Often, malicious code can be sent from the e-mail account of someone you know even though they aren’t aware of it.
• Never open attachments from unknown sources.
• Run a good anti-virus program and firewall at the desktop. This provides a solid barrier against viruses, hackers and blended threats. It is also critical to keep your virus definitions and firewall rules up to date.

IT Administrators

IT administrators should look at and thoroughly understand the security strategies that are currently in place. Enlisting a comprehensive approach, creating a defensive barrier that is comprised of anti-virus, content filtering, firewall, vulnerability management and intrusion detection measures will make systems extremely difficult and costly for intruders to compromise. All parts of the network must be protected, and there must be a response in place to provide security at the gateway, server and client levels. Some important basic tips include:

Implement strong passwords. Passwords should be at least eight characters in length, comprised of alphanumeric characters and changed regularly.

Keep patches up to date. As explained above, blended threats seek out known vulnerabilities to exploit. Staying up to date with the latest security patches for your operating systems and applications is a crucial measure of protection.

Use data forensics. Create an outline of the policies, procedures and standards for logging, reporting and auditing functions.

Remove unneeded services. All services present some form of exposure because they are listening on a TCP (transmission control protocol) or UDP (user datagram protocol) port, so eliminating unnecessary services diminishes the number of target entry points for intruders.

Employ a comprehensive security solution:

• Anti-virus software and content security solutions to identify and remove threats;
• Firewalls to block threats from entering your network;
• Intrusion detection systems to monitor the network and hosts for improper activity and assist in forensic analysis; and
• Vulnerability assessment tools to ensure that patches are applied, unneeded services are removed and passwords are strong, according to best practices.

• « Prev
• 1. 1
  2. 2
  3. 3
  4. 4
  5. 5