Cisco’s Midyear Security Report Warns of Lower-Profile Threats

Cisco released its Cyber​​-report in mid-2014 in Black Hat USA The report analyzes the weaknesses of the organizations,the threat landscape,such as obsolete software,bad code, digital properties abandoned or user errors.These vulnerabilities allow exploits by methods such as DNS queries; Exploit kits,crockery amplification attacks and emergency services,among other examples.

The report examines the threat information and trends in cyber security for the first half of 2014 saw 16 large multinational organizations with more than 4 billion in assets and revenues of more than $ 300 billion $.The big takeaway is that companies not only to focus on high-profile vulnerability to neglect,to the entire IT platform tie up loose ends.

Focusing on weaknesses in bold as highly publicized Heartbleed allows malicious attacks actors escape detection by legacy applications Low profile and infrastructure remains known weaknesses.Java programming most of actors exploited maliciously. Java exploits rose to 93 percent of all indicators of Commitment (IOC),in May 2014 compared to 91 percent in November-2013.

The report says it is unusual to recover the malware in the vertical markets.For the first half of 2014,the media and publishing led the industry verticals,followed by the pharmaceutical and chemical industry and aviation.The primary vertical markets most affected region were the media and publishers in America,food and drinks in EMEA and Asia-Pacific Insurance,China,Japan and India.The report names three main security insights tying enterprises to malicious traffic:

• Man In The Browser attacks: Nearly 94 percent of customer networks observed in 2014 have traffic going to websites hosting malware. Issuing DNS requests for hostnames where the IP address to which the hostname resolves is reported to be associated with the distribution of Palevo, SpyEye and Zeus malware families that incorporate man-in-the-browser (MiTB) functionality.
• Botnet hide and seek: Nearly 70 percent of networks-issued DNS queries for Dynamic DNS domans. This shows evidence of networks misused or compromised with botnets using DDNS to alter IP address to avoid detection and blacklisting. Few legitimate outbound connection attempts from enterprises would seek dynamic DNS domains outside of malicious intent.
• Encrypting stolen data: Nearly 44 percent of observed customer networks in 2014 were identified as issuing DNS requests for sites and domains with devices that provide encrypted channel services, used by malicious actors to cover their tracks by exfiltrating data using encrypted channels to avoid detection like VPN, SSH, SFTP, FTP and FTPS.

On a positive note, the number of exploit kits has dropped by 87 percent since the alleged creator of the widely popular Blackhole exploit kit was arrested last year. No clear leader has yet to emerge among several observed exploit kits.

7signal Joins the Cisco Solution Partner Program

7signal announced that it has joined the Cisco® Solution Partner Program as a Solution Partner. The Internet of Everything (IoE) continues to bring together people, processes, data and things to enhance the relevancy of network connections. As a member of the Cisco Solution Partner Program, 7signal is able to quickly create and deploy solutions to enhance the capabilities, performance and management of the network to capture value in the IoE.

 

We are very excited to become a part of this exclusive partner ecosystem with access to some of the best technology and resources in the world," stated Jeff Reedy, CEO of 7signal. "Many enterprises have found that our Sapphire system for Wi-Fi performance management complements Cisco's WLAN product suite perfectly and we are looking forward to working with Cisco and its partners to deliver robust, high- performance Wi-Fi networks to hospitals, universities and businesses everywhere.

The Cisco Solution Partner Program, part of the Cisco Partner Ecosystem, unites Cisco with third-party independent hardware and software vendors to deliver integrated solutions to joint customers. As a Solution Partner, 7signal offers a complementary product offering and has started to collaborate with Cisco to meet the needs of joint customers.

About 7signal

7signal is The Wi-Fi Performance Company focused on improving the Wi-Fi experience for end users everywhere. Using its Wi-Fi Performance Cycle model for proactive Wi-Fi performance management, 7signal helps its customers achieve and sustain peak Wi-Fi performance in support of initiatives that help businesses grow, increase operational efficiency and elevate worker productivity.

With the growth of commercial and personal wireless devices, Wi-Fi network performance management has reached a tipping point in terms of its importance to the operational efficiency of many organizations. 7signal designed its solution from the outside-in, with the end-user experience at the center. Its patented Sapphire Eye Wi-Fi sensors perform continuous user experience testing that simulates real-world WLAN network usage.

When service level targets you set for Wi-Fi user experience metrics such as throughput, latency and jitter begin to slip out of compliance, proactive notifications from 7signal alert you before people ever notice or complain.