Synopses & Reviews
A One-Stop Reference Containing the Most Read Topics in the Syngress Security LibraryThis Syngress Anthology Helps You Protect Your Enterprise from Tomorrow’s Threats Today
This is the perfect reference for any IT professional responsible for protecting their enterprise from the next generation of IT security threats. This anthology represents the “best of” this year’s top Syngress Security books on the Human, Malware, VoIP, Device Driver, RFID, Phishing, and Spam threats likely to be unleashed in the near future..
* From Practical VoIP Security, Thomas Porter, Ph.D. and Director of IT Security for the FIFA 2006 World Cup, writes on threats to VoIP communications systems and makes recommendations on VoIP security.
* From Phishing Exposed, Lance James, Chief Technology Officer of Secure Science Corporation, presents the latest information on phishing and spam.
* From Combating Spyware in the Enterprise, Brian Baskin, instructor for the annual Department of Defense Cyber Crime Conference, writes on forensic detection and removal of spyware.
* Also from Combating Spyware in the Enterprise, About.com’s security expert Tony Bradley covers the transformation of spyware.
* From Inside the SPAM Cartel, Spammer-X shows how spam is created and why it works so well.
* From Securing IM and P2P Applications for the Enterprise, Paul Piccard, former manager of Internet Security Systems' Global Threat Operations Center, covers Skype security.
* Also from Securing IM and P2P Applications for the Enterprise, Craig Edwards, creator of the IRC security software IRC Defender, discusses global IRC security.
* From RFID Security, Brad “Renderman” Haines, one of the most visible members of the wardriving community, covers tag encoding and tag application attacks.
* Also from RFID Security, Frank Thornton, owner of Blackthorn Systems and an expert in wireless networks, discusses management of RFID security.
* From Hack the Stack, security expert Michael Gregg covers attacking the people layer.
* Bonus coverage includes exclusive material on device driver attacks by Dave Maynor, Senior Researcher at SecureWorks.
* The “best of” this year: Human, Malware, VoIP, Device Driver, RFID, Phishing, and Spam threats
* Complete Coverage of forensic detection and removal of spyware, the transformation of spyware, global IRC security, and more
* Covers secure enterprise-wide deployment of hottest technologies including Voice Over IP, Pocket PCs, smart phones, and more
Synopsis
Over the last seven years, Internet Security Systems' (ISS) elite X-Force has discovered more high-risk vulnerabilities than all other research groups and vendors combined, including the vulnerability that led to the recent, widespread Zotob worm. For the first time ever, follow the X-Force team as they analyze potential vulnerabilities and security solutions for cutting edge technologies and emerging attack methodologies.
The book begins with a chapter from ISS Founder Chris Klaus, who is one of the most prominent and well respected security experts in the world. Klaus discusses both emerging technologies and attack methodologies and the resulting capabilities. In each subsequent chapter, the X-Force will detail the most likely attack vectors that malicious hackers are using to exploit these vulnerabilities. Technologies covered include VoIP, smart phones, pocket PCs, SCADA systems and more. And new attack classes include bots and botnets, second-tier attacks, etc. Each chapter concludes with X-Force best practices to securely deploy the covered technology and defend against the new attack classes.
ISS X-Force has discovered more security vulnerabilities than all other vendors and researchers combined
The book is co-branded with ISS and will be supported by co-marketing initiatives with ISS
Covers secure enterprise-wide deployment of hottest technologies including Voice Over IP, Pocket PCs, smart phones, and more
Table of Contents
Chapter 1: Analysis of Future Threat Levels Chapter 2: Pocket PCs and Smart Phones Chapter 3: Bots and Bot Networks Chapter 4: Malware Attacks Chapter 5: VoIP and SPIT Chapter 6: Compromising Security Software Chapter 7: Attacking and Defending Embedded Devices Chapter 8: DMA Attacks Chapter 9: Second-Tier and Seeded Landscape Attacks Chapter 10: How Vulnerable are SCADA Systems?