Networking

09:30 AM
Adam Ely
Adam Ely
Commentary
Connect Directly
Twitter
LinkedIn
RSS
E-Mail
50%
50%

Intelligence Sources From Unlikely Places

No matter how hard we try to protect our networks, there is always the chance something will go awry. From hackers breaking into our mail servers to laptops infected with malware, we must watch for issues and get help where we can. Most of us have our traditional tools in place to watch for issues from the desktop to the servers: log analysis tools, IDS, AV reporting, and anything else we can possibly gather information from to help us fight threats and know what has burrowed into our infrastruc

No matter how hard we try to protect our networks, there is always the chance something will go awry. From hackers breaking into our mail servers to laptops infected with malware, we must watch for issues and get help where we can. Most of us have our traditional tools in place to watch for issues from the desktop to the servers: log analysis tools, IDS, AV reporting, and anything else we can possibly gather information from to help us fight threats and know what has burrowed into our infrastructures. Now content and ISPs are getting into the game for free.

Luckily, we have some new friends providing information to help our security efforts. Google announced they have a free service to notify network administrators when malicious content is found hiding in websites. Network administers and security teams now have another source of reporting when threats slip into the network. Since web malware can be hard to detect, this is useful tool. While Google's offering doesn't replace full web malware detection and analysis services such as Armorize, it is helpful nonetheless. Google's offering is similar to someone who sees that you left your coffee on the roof of your car and shouts to you as you drive off, but it is not a guaranteed service and is still in trial.

Comcast has also announced it will now notify customers when botnet activity is detected from the customer's home. This offering does not directly apply to enterprises, but it does directly affect our enterprises. Most of our users get infected with botnets and other malware when at home and graciously share it with our networks when they come to work. With Comcast taking an active role in detecting and notifying customers, some of these infections will be brought to the attention of the home user and ultimately the corporate IT department, helping the enterprise. Thanks, Comcast.

Barracuda Labs provides a reputation search service to understand the trust reputation of your URL, IP, email address, and even twitter account. This allows an organization to understand how it may be perceived by others and is built based on the intelligence gathers by Barracuda from around the world. McAfee's TrustedSource website provides an IP reputation tool allowing enterprises to learn the reputation of their mail servers and help explain why your organization's mail might be flowing straight to the spam folder.

It's good to see big companies with lots of insight into our organizations giving back some of that knowledge for the greater security good. There are many resources available online, some from big companies and others from groups of volunteers, but they aren't tailored to your environment or report on what is happening on your network. Take the time to subscribe or check services relevant to your organization.  Knowing is half the battle and keeping your network clean will help keep everyone's network clean.
 

Adam Ely is the founder and COO of Bluebox. Prior to this role, Adam was the CISO of the Heroku business unit at Salesforce where he was responsible for application security, security operations, compliance, and external security relations. Prior to Salesforce, Adam led ... View Full Bio
Comment  | 
Print  | 
More Insights
Cartoon
Slideshows
Audio Interviews
Archived Audio Interviews
Jeremy Schulman, founder of Schprockits, a network automation startup operating in stealth mode, joins us to explore whether networking professionals all need to learn programming in order to remain employed.
White Papers
Register for Network Computing Newsletters
Current Issue
2014 Private Cloud Survey
2014 Private Cloud Survey
Respondents are on a roll: 53% brought their private clouds from concept to production in less than one year, and 60% ­extend their clouds across multiple datacenters. But expertise is scarce, with 51% saying acquiring skilled employees is a roadblock.
Video
Twitter Feed