Threats & Malware, Vulnerabilities
October 31, 2017
Via: Dark ReadingAs a security team, you are what you measure. The problem is that too many security teams are counting vulnerabilities, not measuring risk. It’s time we examine how vital it is for security teams to establish risk-based metrics, while offering […]
October 20, 2017
Via: Zone AlarmOctober is National Cyber Security Awareness Month, when global events on the topic have become top of mind for people and businesses in recent years, given the staggering number of recent data breaches and global ransomware attacks. NCSAM was launched […]
September 20, 2017
Via: Security WeekSummer is coming to a close, and with it the end of a steady stream of superhero movies that have been lighting up the box office over the past few months. But while on-screen heroes have been lassoing bad guys […]
September 20, 2017
Via: Security WeekA cyber espionage group linked by security researchers to the Iranian government has been observed targeting aerospace and energy organizations in the United States, Saudi Arabia and South Korea. The threat actor, tracked by FireEye as APT33, is believed to […]
September 19, 2017
Via: Naked SecurityWriting on the Double Pulsar site, infosec practitioner Kevin Beaumont suggests Security Enhanced Linux (SELinux) would have saved Equifax from the disastrous breach it disclosed earlier this month. If you’re going to have Apache Struts facing the internet, SELinux is the way […]
September 19, 2017
Via: Help Net Security54% of respondents to a Ponemon Institute study that involved more than 1,000 IT professionals said negligent employees were the root cause of a data breach. The study found that strong passwords and biometrics continue to be an essential part […]
Application security, Threats & Malware
September 19, 2017
Via: Help Net SecurityResearchers have analyzed Google Chrome, Microsoft Edge, and Internet Explorer, and found Chrome to be the most resilient against attacks. “Modern web browsers such as Chrome or Edge improved security in recent years. Exploitation of vulnerabilities is certainly more complex […]
September 18, 2017
Via: Help Net SecurityThe technology industry has always had a big problem with hype, with marketing teams, analysts and the media alike tending to fixate on the next big thing that will revolutionise our lives. Artificial intelligence is the latest technology to be […]
September 13, 2017
Via: Dark ReadingThere are always projects, maturity improvements, and risk mitigation endeavors on the horizon. Here’s how to keep them from drifting into the sunset. Recently, I was at the beach and found myself gazing out toward the horizon. Of course, as […]
Threats & Malware, Vulnerabilities
September 13, 2017
Via: Dark ReadingTelcos, government agencies, Internet companies, and domain-name organizations to file cybersecurity information. China’s Ministry of Industry and Information Technology (MIIT) on Wednesday unveiled a directive that calls on organizations and government agencies to report cyber-attack information into a nationwide data […]
September 13, 2017
Via: Security WeekThe United States Department of Energy announced on Tuesday its intention to invest up to $50 million in the research and development of tools and technologies that would make the country’s energy infrastructure more resilient and secure. Over $20 million […]
Network security, Threats & Malware
September 13, 2017
Via: Security IntelligenceYou read the headlines and understand industry trends. There are plenty of horror stories to reference. Organizations have had their reputations destroyed and entire corporations have gone out of business due to insider attacks. How can you avoid being the […]
September 12, 2017
Via: CSO OnlineYes, there will be some tax and banking fraud as a result of the gargantuan data breach at Equifax. The biggest impact, however, will be felt by enterprises that rely on credit reporting bureaus to verify the identity of people […]
September 12, 2017
Via: CSO OnlineRead a security related press release or been to an event recently? You’ve no doubt been wondering how you managed to do your job all this time without Artificial Intelligence (AI) or Machine Learning (ML).Do these technologies really live up […]
September 11, 2017
Via: CSO OnlineFor those of us in the healthcare industry, and I suspect many others, the WannaCry ransomware attack is now referred to as the weekend without sleep. In my organization, a cross-section of folks from all areas spent most of their […]
September 11, 2017
Via: Help Net SecurityAround half of industry practitioners see the risk of silent cyber exposure – potential cyber-related losses due to silent coverage from insurance policies not specifically designed to cover cyber risk – as growing over the coming year, according to Willis […]
September 8, 2017
Via: Help Net SecurityA new SANS survey found that ransomware, insider threats and denial of service are considered the top three threats organizations face when it comes to securing sensitive data. According to the study, 78 percent of respondents report encountering two or […]
September 8, 2017
Via: Help Net SecurityOne in four companies have already experienced a ransomware attack and one in eight have dealt with an IoT-based attack, according to Arctic Wolf Networks. As mid-market companies continue to embrace IoT without implementing the necessary security tools, these attacks […]
September 7, 2017
Via: Radware BlogAs a result of Radware’s recent acquisition of Seculert, the startup that developed machine-learning algorithms that are capable of detecting and blocking zero-day malwares in cloud environments, Radware has expanded its research capabilities to include malware intelligence. For the past […]
September 7, 2017
Via: Help Net SecurityThe Dragonfly hacking group is back – or should we say it probably never went away – and is still interested in penetrating the networks of European and US companies in the energy sector. Even worse, their efforts have been […]