Welcome!

SOA & WOA Authors: Stephen Pierzchala, Elizabeth White, Maureen O'Gara, Jason Bloomberg, Pat Romanski

Related Topics: Virtualization, Java, SOA & WOA, Cloud Expo, Security, Big Data Journal

Virtualization: Blog Feed Post

Every Day Is a 0-Day Nowadays

Be especially cautious during these times of the year when internet traffic surges and websites are fighting for your attention
By Peter Silva
Article Rating:
March 21, 2013 09:00 AM EDT
Reads:
 1,864

It sure seems like 0-Days are now an every day occurrence.  Headlines containing, ‘breach,’  ‘attack,’ ‘hack,’ ‘vulnerability,’ ‘passwords,’ ‘compromised,’ and ‘you’ are commonplace in the media these days.  Typically a 0-day is described as a threat or an attack on a (previously) unknown vulnerability – this is day zero of enlightenment.  Often, the developer themselves are not even aware of the vulnerability.  0-days can command multiple zeros after the dollar sign since malicious folks can exploit it immediately.  From plug-ins to extensions to browsers to web apps to SCADA systems, 0-days used to be an every-so-often occurrence yet now, it’s almost a once a day adventure.  I propose that we re-define ’0-day’ to mean when zero vulnerabilities found and exploited or no breaches occur that day.  0-days would instantly become a rare happening.  I should have titled this blog, Eliminate 0-Day Attacks!  …with a Simple Definition Adjustment.  Now that would be a headline.

March Madness, the NCAA Men’s Division 1 Basketball Championship, is also a ripe time for attacks.  As the tournament heats up so do phishing attacks, 0day exploits and malware madness.  From fake wagering sites to score tickers to simple bracket apps, internet scams are all over.  Be on high alert for web sites and emails asking you to enter your predictions, download brackets or any activity that involves clicking a suspicious link and entering info.  Be especially wary of those that ask for your social media credentials to ‘share’ your predictions.

While 0-days can ruin any day, be especially cautious during these times of the year when internet traffic surges and websites are fighting for your attention – the holidays are another example.  The web app might be the target but you may become the victim.  F5 certainly has solutions that can help organizations protect their critical infrastructures, systems, web apps and visitors.  And with the agility of  iRules, organizations can defend against 0-days in a matter of minutes.  Stay secure and smile all the way through the madness.

ps

Related:

 

Connect with Peter: Connect with F5:
o_linkedin[1] o_twitter[1] o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]


Read the original blog entry...

Published March 21, 2013 – Reads 1,864
Copyright © 2013 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.

More Stories By Peter Silva

Peter Silva covers security for F5’s Technical Marketing Team. After working in Professional Theatre for 10 years, Peter decided to change careers. Starting out with a small VAR selling Netopia routers and the Instant Internet box, he soon became one of the first six Internet Specialists for AT&T managing customers on the original ATT WorldNet network.

Now having his Telco background he moved to Verio to focus on access, IP security along with web hosting. After losing a deal to Exodus Communications (now Savvis) for technical reasons, the customer still wanted Peter as their local SE contact so Exodus made him an offer he couldn’t refuse. As only the third person hired in the Midwest, he helped Exodus grow from an executive suite to two enormous datacenters in the Chicago land area working with such customers as Ticketmaster, Rolling Stone, uBid, Orbitz, Best Buy and others.

Bringing the slightly theatrical and fairly technical together, he covers training, writing, speaking, along with overall product evangelism for F5’s security line. He's also produced over 100 videos and recorded over 50 audio whitepapers. Prior to joining F5, he was the Business Development Manager with Pacific Wireless Communications. He’s also been in such plays as The Glass Menagerie, All’s Well That Ends Well, Cinderella and others. He earned his B.S. from Marquette University, and is a certified instructor in the Wisconsin System of Vocational, Technical & Adult Education.