security

What do you mean: Virus!?

The Internet is a rich resource of useful information and various threats posed by intruders who hawk around waiting for the tiniest oversights which open their way to your computer. Nowadays, such intruders are no more restricted to common viruses which can paralyse the work of a single PC or a corporate intranet. Modern specialised software robots invisibly scan the Internet seeking unprotected computers and servers which are then, for example, used as intermediary platforms for attacks against other users of the Internet. However, the most dangerous activities consist in stealing data, access codes and passwords encrypting valuable information. Computer crime has changed, and is no more a domain of solitary hackers operating from home; they have given way to organised gangs. Increasing inventiveness of computer gangsters is a challenge for the manufacturers of protective measures.

Why firewall?

The basic protection against such phenomena are firewalls which block any unauthorised access from outside, functioning as burglary-protected door to one's house or as a high wall surrounding a garden.
A common solution, which is for this reason most exposed for attacks and interference is an Internet connection of a PC via DSL modem (such as Neostrada) and using such computer for providing Internet access in a local network. In such case, the situation may be improved by installing a firewall or by using a separate hardware router with built-in firewall. It is difficult to say which of these solutions is better, as it depends on a number of factors which must be analysed individually, depending on the requirements.

A good firewall is just the starting point. Even if you have it, you do not know the number of attempts to overcome it. It is perfectly natural to seek information on the number of burglars, the methods and tools used for the purpose, how close they were to breaking in and what are the weakest points of your safety measures. And it would be great to catch the criminal in the process. To achieve this, you need IDS systems which detect unauthorised interference in the network, and IPS systems which prevent such attacks.

How does it work?

IDS/IPS systems analyse the stream of data incoming from the Internet in order to :
detect characteristic features of known attacks and interference techniques,
detect anomalies, in order to disclose attacks which are unknown to the system,
register all non-standard events,
notify on emergencies.

Software and hardware IDS/IPS systems available on the market differ with the level of their advancement and efficiency and, consequently, with their price. In the result, on can select a system best matched to one's requirements. As the work of such systems consists most frequently in analysing the traffic on the Internet link, they are often integrated with anti-virus and contents analysis/filtering systems.

In order to improve your awareness of risks posed by insufficient system protection, try to answer the following questions:

Do you use any anti-virus software?
Are you sure that the software is installed on all your PCs and that it has up to date anti-virus databases?
Do you have any firewall protecting your Internet connection?
Are you sure that nobody copied or attempted to copy your data, e.g. from accountancy or HR modules?
Do you have any protection against unauthorised access to data? What type?
Are you sure that your computer has not been infected with any spyware, trojans or Internet-propagated viruses?

Why us?

Professional and individual approach to the problem is essential, as it allows to integrate and implement the best technological solutions. LSB DATA consultants belong to the limited group of specialists authorised to perform audits which consist in verifying the existing protective measures and adjusting them to meet current standards. It is important to select protective measures which are adequate to system sensitivity to various risks and the probability of their occurrence. Our consultants have extensive knowledge and experience in IT technology and in developing corporate IT strategies.