[IS&T Security-FYI] Security FYI Newsletter, March 10, 2015

Tue Mar 10 11:25:24 EDT 2015

In this issue:

1. Thwarting APTs using NLPRank
2. Event: Challenges of Cybersecurity at MIT
3. Security Tip: Gaming Online

----------------------------------------------
1. Thwarting APTs using NLPRank
----------------------------------------------

An APT is an Advanced Persistent Threat, which is the term for a series of attacks occurring over a period of time, generally targeting one specific organization or type of organization. After infiltrating an organization’s network, attackers will use malicious sites in phishing campaigns against the organization. These install malware so the attackers can access systems containing sensitive data.

NLPRank stands for Natural Language Processing Rank, a technique developed by OpenDNS<https://labs.opendns.com/>. In short, this technique is designed to prevent you from visiting a malicious website or fake domain.

OpenDNS can be set up on a home router, which takes effect across everything connected to a home network. This allows parents to set up content filtering on the network. The filtering occurs by checking against a community-driven list of sites suggested for blocking, providing a reputation ranking system for most existing web sites.

However, attackers rely on the time it takes for sites to gain a reputation ranking by rapidly registering new domains with scripted systems and then creating sites for them that look relatively legitimate.

NLPRank<https://labs.opendns.com/2015/03/05/nlp-apt-dns/> will detect and block sites without having to scan them first. It by-passes the reputation system of most security tools. NLPRank simply analyzes the domain itself for sketchiness. It looks for domain names and language that mimic what a company would use and then sees if the site was registered recently and if the domain is associated with that company’s IP address space.

Learn more in the news.<http://arstechnica.com/security/2015/03/system-catches-malware-sites-by-understanding-sneaky-domain-names/>

------------------------------------------------------------
2. Event: Challenges of Cybersecurity at MIT
------------------------------------------------------------

MIT is launching a comprehensive effort to tackle the technical, regulatory and business challenges of cyber security. Included in this effort are three MIT research areas: CSAIL, the MIT Cyber Security Policy Initiative, and Interdisciplinary Consortium for Improving Critical Infrastructure for Cybersecurity (IC)3.

We are all invited to attend the public launch on Thursday, March 12th, at 8:30 am. It is located at the MIT Stata Center, in Kirsch Auditorium. Registration is required to attend<http://mitcybersecurity.mit.edu/>.

-----------------------------------------
3. Security Tip: Gaming Online
-----------------------------------------

This month’s issue of OUCH! is about online gaming. While gaming is a fun activity, online gaming — where you communicate and connect with others from anywhere in the world — can be risky. (Even security experts aren’t immune. Just last week we spent several hours removing malware from the computer our son uses for online gaming.)

Read about how you can secure yourself, your system and your online accounts. If you are the parent of a gamer, there are tips on teaching your children about the risks.

View the issue here (.pdf)<http://www.securingthehuman.org/newsletters/ouch/issues/OUCH-201503_en.pdf>

=======================================================================================
Read all archived Security FYI Newsletter articles and submit comments online at http://securityfyi.wordpress.com/.
=======================================================================================

Monique Buchanan
Social Communications Specialist
Information Systems & Technology (IS&T)
Massachusetts Institute of Technology
http://ist.mit.edu
tel: 617.253.2715

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/ist-security-fyi/attachments/20150310/665c0baa/attachment.htm