Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
As Anonymous launched the “largest attack ever on government and music industry sites” downloads of the popular LOIC DoS attack tool have spiked.
The newly enchaced FreeScan service allows SMBs to scan their web sites for malware, network and web application vulnerabilities, as well as SSL certificate validation, helping web site owners identify security risks.
Palo Alto Networks has released its semi-annual “Application Usage and Risk Report”, a report that digs into employee activity and the types of applications in use on corporate networks, and what it means for enterprise security.
A new variant of the Sykipot family of malware is targeting ActivIdentity’s ActivClient, which is used by the U.S. Department of Defense as a secure means of authentication.
Sophos has released a new edition to its line of network protection offerings, announcing today that its gateway appliances have been adopted for virtual use. They’ve simplified the pricing, with a fixed cost based per user / per year, making the virtual protection available to any company of any size.
AirTight Networks announced that SpectraGuard Enterprise, the company’s flagship wireless intrusion prevention solution, has achieved FIPS 140-2 validation, making it certified for deployment within U.S. federal government agencies.
Several vendors are currently working to resolve a hash collision vulnerability, which if exploited can trigger a denial-of-service condition on multiple platforms.
McAfee has come forward with its list of 2012 threat predictions, part of a longstanding tradition in the InfoSec community, which outline what it sees as the largest obstacles to personal and organizational security in the coming year.
A recent survey from Cisco implies that Generation Y is in some way less security savvy, or at least, less security responsible, than their older contemporaries. This is of course a huge oversimplification.
The CA/Browser Forum has released the "Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates,” an industry-wide baseline standard for the operation of CAs issuing SSL/TLS digital certificates natively trusted by the browser.
- 1 of 16
- ››
FEATURES, INSIGHTS // Network Security
Traditional security solutions are falling short of providing needed protection because they’re typically blind to changing conditions and new attacks. Simply put: you can’t protect what you can’t see.
Eric shines some light on industrial control system cyber security through a story of a disgruntled control system operator with admin privileges on key systems, and with badge access to sensitive places full of buttons and levers.
As vendors and customers alike refresh existing systems, they must recognize that simply upgrading to advanced functionality isn’t enough—it must be incorporated without sacrificing performance or quality.
Following Operation 'Ghost Click', Millions of machines remain infected with "DNSChanger" malware, and there is a “deadline” looming when a judicial order that is helping keep these infected computers working runs out.
Adopters of DNSSEC in the U.S. have a unique barrier to adoption: Congress. SOPA and Preventing Real Online Threats to Economic Creativity and Theft of Intellectual Property Act contain provisions that could break the functionality of DNSSEC.
The concept of a data diode isn’t new, but it’s been adopted recently in the critical infrastructure sector, and in so doing limiting the visibility needed to protect against targeted attacks. Data diodes may help protect critical infrastructure from certain attacks, but are they really practical?
Second in a series on evaluating new firewalls. This week Johnnie explains how the highest security for your environment is to have technology that can sustain its protections through network growth and scale.
As malware gets progressively more complex, it’s important to understand how the major players in the malware industry fit together and how these relationships affect the ways that malware is developed, distributed and ultimately used in attacks.
If you are ready to upgrade your firewalls you will have tons of choices but you’ll also need to conduct considerable research and gain an understanding of what those choices mean in terms of benefits and trade offs for your network.
Malware has become a network-borne and network-enabled threat, and as such we need to bring network controls to the fight against malware. If you can take away the ability for malware to communicate, you can effectively take away much of its power.
- 1 of 7
- ››
Subscribe to SecurityWeek
- With an IPO In Sight, Palo Alto Networks Names New CFO
- Google Adds New Layer to Android Security
- Study Analyzes Fake Facebook Profiles vs. Real Users
- VeriSign Attackers Swiped Data from Servers, Management Left in the Dark
- Half of Fortune 500 and Government Agencies Infected With DNSChanger Malware
- It's Time to Open Our Eyes to Advanced Malware Protection
- AVG Technologies Set for $128 Million IPO Thursday
- Wave Systems Launches Cloud-Based Encryption Service
- Threat Intelligence Market to Reach $905 Million by 2014, Says IDC
- BlackBerry 7 Gets Government Security Stamp
Copyright © 2011 Wired Business Media. All Rights Reserved. Privacy Policy | Terms of Use
