Category: Threats and Vulnerabilities
The Top Ten Security Threats for 2008 (Part 8 )
Five down, five to go, in our top ten cybersecurity threats for 2008, after this one. I will reorder these information security threats later. Here is another top information security threat for 2008: — Subversion of democratic political processes. Regardless of your political orientation, no one can argue that the US presidential election of 2000, [...]
Read moreThe Top Ten Security Threats for 2008 (Part 7)
Another top ten cybersecurity threat for 2008: — Criminal use of botnets and botnet-like technologies. One of most profitable criminal enterprises on the Internet are botnets. Botnets are used by criminals to blast out phishing scams, spam, malware. and denial-of-service (DDoS) attacks. Many security experts believe that botnets are now a greater threat than viruses and worms. Botnets can have hundreds of thousands of nodes under the control [...]
Read moreThe Top Ten Security Threats for 2008 (Part 6)
Marching forward with the top ten cybersecurity threats for 2008, another critical cybersecurity threat for 2008 is: — Cyberbullying, cyberterrorism and electronic violence. US researchers have warned that bullies have moved from the real-world to the cyberworld targeting teens with abuse and violent e-mail, social networking postings, text messaging, and online chat. The number of children ages 10 to [...]
Read moreBankers Voice Scepticism Over New Event Processing Technologies
This week I completed a presentation on complex event processing at Wealth Management Asia 2007 where I had a chance to field some tough questions from risk management experts working for some of the top banks in the region. In particular, one of the meeting attendees voiced strong scepticism over emerging event processing technologies. The basis for his scepticism was, in [...]
Read moreThe Asia Business Forum: Information Security Risk Assessment & Management
The Asia Business Forum is hosting a conference on Information Security Risk Assessment & Management, December 12-13 2007 at the Sheraton Royal Orchid in Bangkok. The conference organizers have kindly invited me to participate as a guest speaker. I plan to discuss CEP in the context of operational risk management and will post the title and abstract my talk [...]
Read moreLatency Takes a Back Seat to Accuracy in CEP Applications
Opher asks, The only motivation to use EP COTS is to cope with high performance requirements” – true or false?. The answer: True and False. If high performance is discussed in the context of event processing speed and latency, then it is Absolutely False that speed and latency are the most important performance criteria for event processing applications. Detection accuracy [...]
Read moreThe Top Ten Security Threats for 2008 (Part 5)
Here is another top ten cybersecurity threat for 2008. After I post all ten, I might reorder them, so please hang with me until the end, thanks! One of the most critical threats for 2008 continues to be: — Password and Identity Theft from Phishing, Spyware, Malware and Theft of Hardware. It goes without saying that our passwords are [...]
Read moreThe Top Ten Security Threats for 2008 (Part 4) – The Number One Threat
After a few background posts on the relationship between threat, vulnerability, criticality and risk, I will now post what I believe to be the number one cybersecurity threat of 2008, which is: Cyber Masquerading to Abuse, Attack, Blackmail, Bully, Extort, or Molest. Increasingly, we are reading stories about how criminals, bullies and abusers have caused [...]
Read moreThe Top Ten Security Threats for 2008 (Part 3) – Risky Situations and Context
Opher Etzion provides a timely segway for Part 3 of this series on The Top Ten Security Threats for 2008 in his two blog posts, Context and Situation – are they synonyms? and The notion of context and its role in event processing. I will briefly illustrate and elaborate by applying the concepts of context and situation to risk identification, [...]
Read more