US-CERT does not endorse specific organizations. The following links are included for your information and convenience. This provides a number of resources including links to the latest vulnerabilities and exposures list, tools, techniques, guidelines and links to additional training.
Hackers act to steal sensitive data (i.e. corporate secrets, personal information, and intellectual property) or to sabotage. Recent events demonstrate that cyber espionage is still considered the most dangerous threat for Governments; APT groups worldwide constantly search for vulnerabilities to exploit on a large scale in order to gather sensitive data. This provides INFOSEC's ranking of the Top Five security vulnerabilities, in terms of potential for catastrophic damage.
A common approach allows for a collective response to cybersecurity threats. MITRE works with industry and government on common approaches to cybersecurity. Their focus is to develop and expand the use of common terminology and structures to allow for collaboration and communication across the entire community. These efforts include providing registries of baseline security data, establishing standardized languages for accurately communicating cybersecurity information, defining proper use of cybersecurity concepts, and supporting community approaches for commonly accepted cybersecurity processes. They describe several of them here.
Cyber threats are increasing at an alarming rate every year and the ability for organizations to defend against full-scale, distributed attacks quickly and effectively has become much more difficult. An Intrusion Detection System (IDS) affords security administrators the ability to automate the process of identifying attacks from amongst the thousands of network sessions occurring on their infrastructure, provided the IDS signatures are well written. Taught by leaders in network defense who work in the computer security industry, this course demonstrates how to defend large-scale network infrastructure by building and maintaining an IDS and mastering advanced signature-writing techniques.