Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Incidents
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Decrease in Threats?

from [Tom Milliner] Network Security [Permanent Link]
Subject: RE: Decrease in Threats?
Date: Sun, 29 Jan 2006 15:45:45 -0600 
Bill, do you use MS Exchange, and if so, what method of grey
listing do you use? 


Tom Milliner, CPA, MCSE
2404 Summer Place Dr.
Irving, TX 75062
(241) 540-2741
tom.milliner@verizon.net

-----Original Message-----
From: Bill Borton [mailto:bborton@conwin.com] 
Sent: Thursday, January 26, 2006 10:46 AM
To: incidents@securityfocus.com
Subject: Re: Decrease in Threats?

Hi there,

Your mention of fewer viruses but not spam made me think this might be worth
mentioning:

One of my mail servers that was getting 15,000 - 20,000 inbound infected
messages a month was also getting pounded by spam.
I an attempt to mitigate the spam I implemented "Greylisting".
It's working very well for that site.  I don't have hard numbers available
at the moment, but I guesstimate that it took spam down by about %90.

The thing is, it also blocked the majority of inbound infected messages as
well.  It went from tens of thousands to hundreds.
It makes perfect sense, but it definitely caused me a double take when I
first looked at it...

-Bill



On Wed, 25 Jan 2006 14:55:09 -0500
"Rohny Jotton" <rohnyjotton@hotmail.com> wrote:

In the last 30 days, I have experienced a extraordinary decrease in 
email threats being stopped at the edge and also being seen on our 
quarantine server. My first thought was something got in and disabled 
our security services, but upon investigation that is not the case. It 
looks like the quantity has indeed dropped, and I am trying to confirm 
it (only virus's, worms, etc.; not spam).

I've been trying to find any trending of threats seen worldwide, and 
the only one I have found is at f-secure. The chart seems to support 
what I'm seeing but I'm curious if others are seeing a decrease also. 
If indeed the threats are dropping off, is it due to the efforts 
undertaken to mitigate the WMF flaw?

Also if anyone knows of other sites that show historic trends, I'd 
appreciate being given the link. I see most antivirus sites will only 
give percentage breakdowns and not quantities seen.

Thanks You

_________________________________________________________________
Don't just search. Find. Check out the new MSN Search! 
http://search.msn.click-url.com/go/onm00200636ave/direct/01/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  wired traffic, fowl8510
Next by Date:  Re: Decrease in Threats?, Kurt Seifried
Previous by Thread:  Re: Decrease in Threats?, Gene Rackow
Next by Thread:  Re: Decrease in Threats?, Kurt Seifried
Indexes:  [Date] [Thread] [Top] [All Lists]