Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
CISPA - the controversial cybersecurity bill centered on information sharing, deemed to be vague and entirely broken when it comes to civil liberties, has cleared the House and now heads to the Senate.
Symantec’s CEO, Steve Bennett, told a packed house during its own Vision 2013 conference that his company is changing. His bottom line? We can do better, and we will. We have no other choice.
Schnucks Markets, a 100-store grocery chain across the Midwest, said on Monday that roughly 2.4 million payment cards used at 79 of its 100 stores may have been compromised as a result of a previously disclosed cyber attack.
Peiter Zatko, better known to the InfoSec world as "Mudge" announced that he is leaving DARPA in order to take a position at Google.
There are several vocal critics, prominent voices in the security industry, who believe training users to recognize security threats won't help organizations solve the cyber-security problem.
Lockheed Martin is hosting emerging cyber leaders from U.S. and Canadian military service academies to test their capabilities against experts from the NSA in the annual Cyber Defense Exercise.
The “Solera DeepSee BlackBox Recorder" continuously captures all network traffic—including packets, flows, files and applications, and helps incident responders pinpoint the root cause and material impact of a breach.
Vudu, a subscription-based digital entertainment service, says that crooks walked off with a number of items, including hard drives when they broke into their offices last month. The company says the delay in notification was due to a request form law enforcement investigating the break-in.
U.S. based banks recently affected by the wave of denial-of-service campaigns against financial institutions disclosed some attack details to the Securities and Exchange Commission.
House lawmakers are expected to markup the proposed cybersecurity legislation in a private closed-door session today in preparation for a floor vote next week.
FEATURES, INSIGHTS // Management & Strategy
Security isn’t sexy. In fact, many people think it’s boring. When it comes to selling security, whether as a concept or in a true “sales” context, the lack of interest in security is compounded by the fact that doesn’t seem urgent— until it is.
Measuring security posture is hard, but is being done by many network security teams. Of course, once you have meaningful measurement of your situation, you begin to pick up all kinds of bumps in the road you couldn’t even detect before.
Quality not quantity is the most important attribute of a cyber security team. In order to provide a robust team capable of supporting 24x7 or even 16x5 coverage, a team of specialists is paramount to securing any infrastructure.
Advanced targeted attacks have multiple defining characteristics. They are methodical, persistent and data-focused attacks—launched by nation states or other bad actors with the objective of stealing information, not money.
In some companies, the CISO has taken on a Rodney Dangerfield like character in that: It gets no respect. And it probably won’t until both the corner office and the boardroom view security as a business risk issue rather than a technology issue.
Most of the time, attacks considered APTs use 0-Day exploits, or malware that slips past poorly updated AV software, or phishing to compromise a host or organization. There is nothing advanced about attacks like these.
Along with the deployment of a robust security architecture is the need for a monitoring and response process that allows enterprises to continuously monitor and process security data efficiently and proactively act upon this data if something suspicious is found.
With all of the new security technology and services available, we have the tools we need to raise the defensibility of every layer of our security shields.
Lack of information, too much information and misinformation weaken our ability to detect and respond to a security incident.
While the security industry has taken great strides in information sharing, in order to stay one step ahead of the highly organized bad actors, the industry must rally around the same sort of massive sharing model that the “bad guys” use—only better.
Subscribe to SecurityWeek
- Fixmo Unveils New Enterprise Mobility Management Suite
- Fortinet Unveils New Web App Firewall OS, Appliances
- Most Small to Medium Enterprises Clueless on Common Mobile Threats: Survey
- Cloud Security Concerns Stall Projects, Survey Finds
- The Human Side of Security
- AVG Acquires Online Privacy Firm PrivacyChoice
- When it Comes to Your Infrastructure, Security is More than Skin Deep
- GSA Looks for Feedback on Improving Cybersecurity and Resilience
- DHS to Share Zero-Day Intelligence
- Sourcefire Enhances Malware Protection Portfolio to Track Malware Movement
Copyright © 2013 Wired Business Media. All Rights Reserved. Privacy Policy | Terms of Use