Ataques Zero-day: Despliegue y evolución

In cybersecurity and computer science, the term “zero-day” is commonly related to troubles, threats, and hazards due to the lack of knowledge, experience, or misunderstanding. A zero-day attack is generally considered a new vulnerability with no defense; thus, the possible attack will have a highrisk probability, and a critical impact.  Unfortunately, only a few surveys on the topic are available that would help understand these threats, which are not enough to construct new solutions to detect, prevent, and mitigate them. In this paper, it is conducted a review of the zero-day attack, how to understand its real impact, and a few different accessible solutions nowadays. This study introduces a useful reference that provides researchers with knowledge to understand the current problem concerning zero- days attacks; hence they could develop solutions for facing them.En la ciberseguridad y la informática, el término "Zero-day" se relaciona comúnmente con problemas, amenazas y peligros, esto debido a la falta de conocimiento, experiencia o malentendidos relacionados. Un ataque de Zero-day se considera generalmente una nueva vulnerabilidad sin defensa; por lo tanto, el ataque consecuente tendrá una alta probabilidad de riesgo, y un impacto crítico. Lamentablemente, sólo unos pocos estudios están  disponibles  para  comprender  estas  amenazas, y no bastan para construir nuevas soluciones para detectar, prevenir y mitigar estas dificultades. En este artículo, se presenta una revisión del ataque Zero-day, enfocándose en comprender su impacto real y algunas soluciones accesibles  hoy  en  día. Este estudio presenta una referencia útil que proporciona a los investigadores conocimientos para comprender el problema actual relacionado con los ataques Zero-day. Este puede ser un punto de partida para desarrollar soluciones para combatir este problema

Information security management frameworks in higher education institutions: an overview

An overview of academic articles focused on information security management (ISM) in higher education institutions (HEIs) is presented. For this purpose, an empirical study was carried out. The articles found were then analyzed following a methodological procedure consisted of a systematic mapping study with their research questions, inclusion and exclusion criteria, selection of digital libraries, and analysis of the respective search strings. As a result, a set of information security management frameworks (ISMF) for HEIs were identified. They are based on standards such as ISO 27000, COBIT, ITIL, NIST and EDUCAUSE.Quit

Ataques Zero-day: despliegue y evolución

In cybersecurity and computer science, the term “zero-day” is commonly related to troubles, threats, and hazards due to the lack of knowledge, experience, or misunderstanding. A zero-day attack is generally considered a new vulnerability with no defense; thus, the possible attack will have a highrisk probability, and a critical impact. Unfortunately, only a few surveys on the topic are available that would help understand these threats, which are not enough to construct new solutions to detect, prevent, and mitigate them. In this paper, it is conducted a review of the zero-day attack, how to understand its real impact, and a few different accessible solutions nowadays. This study introduces a useful reference that provides researchers with knowledge to understand the current problem concerning zero- days attacks; hence they could develop solutions for facing them

Information security management frameworks and strategies in higher education institutions: a systematic review

Effective information security management (ISM) practices to protect the information assets of organizations from security intrusions and attacks is imperative. In that sense, a systematic literature review of academic articles focused on ISM in higher education institutions (HEIs) is conducted. For this purpose, an empirical study was performed. Studies carried out from 2012 onward reporting results from HEIs data that perform the ISM through various means, such as a set of framework functions, implementation phases, infrastructure services, and securities to their assets, have been explored. The articles found were then analyzed following a methodological procedure consisting of a systematic mapping study with their research questions, inclusion and exclusion criteria, selection of digital libraries, and analysis of the respective search strings. A set of competencies, resources, directives, and strategies that contribute to designing and to developing an ISM framework (ISMF) for HEIs is identified based on standards such as ISO 27000, COBIT, ITIL, NIST, and EDUCAUSE. This study introduces a strategic reference that guides HEIs on the development of an ISMF and provides recommendations that should be considered for its implementation in an era of ever-evolving security threats

Prevalence of radiologic evidence of metastatic pancreatic ductal adenocarcinoma (PDAC) at first post-operative restaging studies in patients (pts) undergoing pancreatic cancer surgery with curative intent

225 Background: Surgical resection is the only potentially curative modality for PDAC. However, even after a successful surgical resection outcomes are poor due to both local and distant disease recurrence. Patients with early recurrence likely derive no benefit from surgery and could be considered for a non-surgical approach as initial therapy. Since the incidence of recurrent/metastatic disease at first post-operative staging scan is not well documented, our aim was to determine this incidence. Methods: This IRB-approved analysis identified all pts diagnosed with resectable PDAC that underwent surgery with intent to cure at the University of Miami/Sylvester Comprehensive Cancer Center between 2010 and 2012. Patients with imaging before and within 6 months after surgery were included. All post-operative CT scans performed within 3 months after surgery were reviewed for the presence of recurrent and/or metastatic disease. Progression-free survival (PFS) and overall survival (OS) were analyzed using the Kaplan-Meier method. Results: Data from105 pts were analyzed. Mean age was 61, 63% were male, 91% had adenocarcinoma, 84% had disease in the head of the pancreas. 11 out of 85 (13%) pts had recurrent/metastatic disease detected on first post-operative CT scan; 64% stage IIB and 73% had positive lymph nodes. 54 out of 105 (51%) had disease progression. 60% had local recurrence, 40% had distant metastasis. The mean time from preoperative CT scan to surgery was 35 days. Patients with early and late recurrence had similar OS from diagnosis (median 27.7 and 27.1 months, respectively) but worse than those with no disease recurrence (median not reached, OS rate 78% at 36 months). Conclusions: The relatively high incidence (13%) of early recurrence in this retrospective cohort suggests that further studies aimed at improving patient selection for surgery are warranted and provides a strong rationale for the use of neoadjuvant therapy to select patients with early disease progression who would not have benefitted from surgery

Information security management frameworks and strategies in higher education institutions: a systematic review

Effective information security management (ISM) practices to protect the information assets of organizations from security intrusions and attacks is imperative. In that sense, a systematic literature review of academic articles focused on ISM in higher education institutions (HEIs) is conducted. For this purpose, an empirical study was performed. Studies carried out from 2012 onward reporting results from HEIs data that perform the ISM through various means, such as a set of framework functions, implementation phases, infrastructure services, and securities to their assets, have been explored. The articles found were then analyzed following a methodological procedure consisting of a systematic mapping study with their research questions, inclusion and exclusion criteria, selection of digital libraries, and analysis of the respective search strings. A set of competencies, resources, directives, and strategies that contribute to designing and to developing an ISM framework (ISMF) for HEIs is identified based on standards such as ISO 27000, COBIT, ITIL, NIST, and EDUCAUSE. This study introduces a strategic reference that guides HEIs on the development of an ISMF and provides recommendations that should be considered for its implementation in an era of ever-evolving security threats

Full dose neoadjuvant FOLFIRINOX is associated with prolonged survival in patients with locally advanced pancreatic adenocarcinoma

The efficacy of FOLFIRINOX for metastatic pancreatic cancer has led to its use in patients with earlier stages of disease. This study retrospectively analyzed a cohort of patients with locally-advanced pancreatic cancer (LAPC) treated with FOLFIRINOX. Between 2008 and 2013, 51 treatment-naïve patients with LAPC at a single institution received first-line FOLFIRINOX with neoadjuvant intent, at the full dose as described in the PRODIGE 4/ACCORD 11 study. Combined chemoradiation was administered for those who remained unresectable after maximum response to chemotherapy. The primary outcome measure was overall survival (OS), and secondary outcomes were progression-free survival (PFS) and margin-negative (R0) resection rate, and toxicity profile. A total of 429 cycles of FOLFIRINOX were given with a median of 8 cycles (range 2–29) per patient; 66% of cycles were full dose. After chemotherapy, 27 (53%) received chemoradiation. The median OS was 35.4 months (95% CI 25.8–45). Ten (4 borderline resectable and 6 unresectable) patients had successful R0 resections; those who had R0 resections had a significantly longer survival than those who did not (3-year OS rate 67% versus 21%, log rank p = 0.042). Increasing number of full-dose cycles was significantly associated with increased survival. The toxicity profile was similar to previous reports of this regimen. FOLFIRINOX is feasible as neoadjuvant therapy for LAPC. Although the R0 resection rate was only 20%, the median OS of almost 3 years appears promising. Dose intensity and duration were associated with increased survival in this study, arguing against dose attenuated versions of this regimen