Advanced Persistant Threat (APT) used a 0-day for Adobe Flash and a phishing email to compromise RSA. The exploit is now being patched but it always seems like companies are helpless to protect against these attacks without severely limiting functionality. A couple products on the market claim to stop these types of attack. How would FireEye or Damballa work against these attacks? More research needs to be done in defeating or limiting the capabilities of these attacks. User training works but it is still a challenging balance to provide computing freedom when the wrong choices are often made. The power is really in each of our users’ hands.