Security Experts:

WRITE FOR US

IT Security News Headlines

rss icon

Oracle Releases Massive Security Update
SQL Injection Breaches Take Months to Uncover and Fix: Survey
Survey Highlights Communications Gap Between Security Pros and Senior Execs
Heartbleed Fix May Slow Web Performance
Google Patches Android Icon Hijacking Vulnerability
long dotted

More Security Headlines

UK Names New Head of GCHQ After Snowden Leaks
Britain named a top foreign ministry official as the new head of GCHQ, the electronic eavesdropping agency that came under scrutiny after leaks by former US analyst Edward Snowden.
Read More..
Dell SecureWorks Launches Managed Endpoint Threat Detection
Dell SecureWorks has added Advanced Endpoint Threat Detection (AETD) as the latest solution in its Advanced Threat Services portfolio.
Read More..
Heartbleed Hits 1.5 Million Users of UK Parenting Website
British parenting website Mumsnet is the latest organization to have been hacked due to the "Heartbleed" bug, founder Justine Roberts revealed.
Read More..
Phishers Target Vulnerable Shared Hosting Providers to Spread Attacks
During the second half of 2013, APWG found that attacks on vulnerable shared hosting providers led to 18 percent of all phishing attacks worldwide
Read More..
Akamai Reissuing SSL Keys After Flaw Found in Heartbleed Mitigation
Akamai Technologies admitted some custom code it thought protected users against the Heartbleed vulnerability is flawed.
Read More..
Canadians' Tax Data Stolen in Heartbleed Breach
Personal data for as many as 900 Canadian taxpayers was stolen after being made vulnerable by the "Heartbleed" bug, officials in Ottawa said on Monday.
Read More..
Confirmed: Heartbleed Exposes Web Server's Private SSL Keys
CloudFlare was able to confirm that an attacker can retrieve a server's private SSL key by exploiting the "Heartbleed" Vulnerability.
Read More..
German Space Research Center Under Espionage Attack: Report
Germany's aeronautics and space research center has for months been the target of a suspected cyber attack by a foreign intelligence service, according to reports.
Read More..
NSA Denies Exploiting 'Heartbleed' Vulnerability
The NSA denied a report claiming it was aware of and even exploited the "Heartbleed" online security flaw to gather critical intelligence.
Read More..
Court Reverses Conviction of Security Researcher
An appeals court in the United States overturned the conviction of a self-described "security research" hacker for breaking into the AT&T online network to reveal a security flaw.
Read More..

SecurityWeek Experts

rss icon

Nimmy Reichenberg's picture
In Automation We Trust! (Or Do We?)
Nimmy Reichenberg - Network Security
Security practitioners have long had a love-hate relationship with automation, and for good reason.
Read full story
Dr. Mike Lloyd's picture
When Your Insurer Says "Um, No" to Cyber Protection
Dr. Mike Lloyd - Incident Management
The fact that insurance companies – well respected by every business-centric executive – look at cyber risk and say “no, thanks” is a pretty clear indicator that something is rotten...
Read full story
Michael Callahan's picture
Turning the Tables: Using Evasion Tactics to Help Prevent Malware Infection
Michael Callahan - Malware
While attackers are constantly improving their evasion tactics to extend the lifetime of their malware, users can also leverage these types of evasion tactics to help prevent malware infection in the first place.
Read full story
Torsten George's picture
Security Threats: Risk's Often Neglected Step Child
Torsten George - Network Security
A threat is the agent that takes advantage of a vulnerability. This relationship must be a key factor in the risk assessment process and can no longer be treated as risk’s neglected step child.
Read full story
Mark Hatton's picture
Five Things I'm Hoping For in the Security Industry
Mark Hatton - Risk Management
I am painfully aware that in business and in security, hope is not a plan. However, that doesn’t mean we can’t dream a bit about the best case scenario. In the spirit of the season, here are five things I’m hoping for in the security industry this year.
Read full story
Wade Williamson's picture
Security is Not a Commodity - Breaking Out of Security Paralysis
Wade Williamson - Network Security
As enterprises become increasingly focused on security, it’s important to take an honest look not just at what security measures are in place, but how they are really used.
Read full story
Marc Solomon's picture
News Junkies Make Great Targets
Marc Solomon - Email Security
Many continue to click on links or attachments sent via email without taking any steps to verify the origin of the email or the validity of the link or attachment. It only takes one click to for an attacker to establish a foothold in the target’s systems.
Read full story
Marcus Ranum's picture
True White-Knuckled Stories of Metrics in Action: Sylvan
Marcus Ranum - Disaster Recovery
When you start your metrics program, you'll find that a great deal of information can be gleaned from existing data that gets stored in various places – most likely in your system logs.
Read full story
Chris Hinkley's picture
When Technology Isn't Enough: Elevating the Human Element in Preventing Data Breaches
Chris Hinkley - Network Security
The most advanced technology in the world is only as good as the people and systems behind it. Otherwise your sophisticated security device is nothing more than a paperweight.
Read full story
Danelle Au's picture
Addressing Cyberattacks via Positive Enforcement Model
Danelle Au - Network Security
Trying to defend against modern, advanced attacks with one-off point solutions is like playing a whack-a-mole game, always one step behind the attacker and trying to play catch up with the alerts as they’re received.
Read full story