Chapter 5

Steps in Detection

Abstract

Detection is an important foundation for other technical mitigation strategies. Detection helps us develop the knowledge to prevent pending attacks and warn others. Detection is more than the act of catching an attack in progress. There are two major components to detecting and combatting malicious email: first, use the technology to help you as much as it can, and second, use your brain. Scientists and researchers are continually applying every trick possible to combat malicious email and significant advances have been made. But the bad guys continue to react to those measures and modify how they operate, in order to avoid detection. Your brain, therefore, is a critical part of your defense. Further, ...

Get Detecting and Combating Malicious Email now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.