Top

Tag: cyber security


Threats & Malware, Vulnerabilities

Google Bug Database Flaws Expose Severe Vulnerabilities

October 31, 2017

Via: Dark Reading

A security researcher was able to view some of Google’s most severe vulnerabilities due to flaws in the company’s internal bug tracking system, he said. The Issue Tracker, or Buganizer, as it’s known internally, is used among researchers and bug […]


Threats & Malware, Vulnerabilities

Stop Counting Vulnerabilities & Start Measuring Risk

October 31, 2017

Via: Dark Reading

As a security team, you are what you measure. The problem is that too many security teams are counting vulnerabilities, not measuring risk. It’s time we examine how vital it is for security teams to establish risk-based metrics, while offering […]


Malware

National Cyber Security Awareness Month: Be Aware and Beware

October 20, 2017

Via: Zone Alarm

October is National Cyber Security Awareness Month, when global events on the topic have become top of mind for people and businesses in recent years, given the staggering number of recent data breaches and global ransomware attacks. NCSAM was launched […]


Cyber-crime, Network security

Hacker or Hero? Why a Hacker Isn’t Always a Supervillain

September 20, 2017

Via: Security Week

Summer is coming to a close, and with it the end of a steady stream of superhero movies that have been lighting up the box office over the past few months. But while on-screen heroes have been lassoing bad guys […]


Hacker, Malware

Iranian Hackers Target Aerospace, Energy Companies

September 20, 2017

Via: Security Week

A cyber espionage group linked by security researchers to the Iranian government has been observed targeting aerospace and energy organizations in the United States, Saudi Arabia and South Korea. The threat actor, tracked by FireEye as APT33, is believed to […]


Data loss, Phishing

News in brief: Linux advice for Equifax; fired over phish; Security.txt standard proposed

September 19, 2017

Via: Naked Security

Writing on the Double Pulsar site, infosec practitioner Kevin Beaumont suggests Security Enhanced Linux (SELinux) would have saved Equifax from the disastrous breach it disclosed earlier this month. If you’re going to have Apache Struts facing the internet, SELinux is the way […]


Network security, Security

Infosec weakest links: Negligent employees and poor password policies

September 19, 2017

Via: Help Net Security

54% of respondents to a Ponemon Institute study that involved more than 1,000 IT professionals said negligent employees were the root cause of a data breach. The study found that strong passwords and biometrics continue to be an essential part […]


Application security, Threats & Malware

Google Chrome most resilient against attacks, researchers find

September 19, 2017

Via: Help Net Security

Researchers have analyzed Google Chrome, Microsoft Edge, and Internet Explorer, and found Chrome to be the most resilient against attacks. “Modern web browsers such as Chrome or Edge improved security in recent years. Exploitation of vulnerabilities is certainly more complex […]


Security, Tech

AI will change the face of security, but is it still the stuff of sci-fi?

September 18, 2017

Via: Help Net Security

The technology industry has always had a big problem with hype, with marketing teams, analysts and the media alike tending to fixate on the next big thing that will revolutionise our lives. Artificial intelligence is the latest technology to be […]


Security, Threats & Malware

20 Questions to Help Achieve Security Program Goals

September 13, 2017

Via: Dark Reading

There are always projects, maturity improvements, and risk mitigation endeavors on the horizon. Here’s how to keep them from drifting into the sunset. Recently, I was at the beach and found myself gazing out toward the horizon. Of course, as […]