“Make sure you have all the updates; make sure you use a browser that is not standard; and pursue more training—talk about the threat.”
Engin Kirda et al. analyzed nearly 1,500 suspicious e-mail messages targeting a human-rights NGO. “The team found that, while the malware managed to reliably evade detection by many antivirus programs, the attacks were relatively unsophisticated, using known vulnerabilities that had already been patched.” Read the whole article here.
The paper will be presented the USENIX Security Symposium, taking place from 20 – 22 August, 2014 in San Diego, CA. Read the abstract here.