Security Experts:
IT Security News Headlines
More Security Headlines
According to analysis by researchers at FireEye, roughly 150 million downloads of Android apps contain OpenSSL libraries vulnerable to Heartbleed.
Brazil's Congress passed comprehensive legislation on Internet privacy in what some have likened to a web-user's bill of rights, after stunning revelations its own president was targeted by US cyber-snooping.
NIST has removed the Dual_EC_DRBG, or Dual Elliptic Curve Deterministic Random Bit Generator from its draft guidance on random number generators.
A survey from Neustar found that 29 percent of enterprises said the cost of a DDoS outage could reach higher than $100,000 per hour.
Organizations must dramatically improve their response to cyber risks to avoid a new global shock on the scale of the financial crisis that rocked the world in 2008, a study showed.
A new report from Alert Logic shows that cloud environments are increasingly facing some of the same dangers as on-premise environments.
SecurityWeek invites you to participate in the 2014 SecurityWeek Golf Classic! Our first classic is being held at the prestigious world-class Ocean Course at Half Moon Bay, located just 23 miles from San Francisco International Airport.
Cisco Systems has announced a new managed security solution that applies real-time, predictive analytics to detect attacks and protect customers from advanced malware across their extended networks.
Healthcare organizations are still struggling with information sharing both internally and externally, participants in an industry-wide cyber-security exercise said.
CrowdStrike has released a free tool to help organizations detect the presence of systems on their networks that are vulnerable to the OpenSSL Heartbleed vulnerability.
- 1 of 503
- ››
SecurityWeek Experts
Security really is a marathon and there are no days off. Sacrifices are needed and tough decisions are required. The motto of our country’s most elite fighting force, the US Navy SEALs, is The Only Easy Day Was Yesterday.
When the development cycle moves quickly, it will often bypass security. When rapid development equates to shoehorning security controls in after the fact, we’re left with an approach that has potentially disastrous consequences.
The shaping of the threat intelligence management market is critical to its success, and there is much confusion about the very term “threat intelligence.” I am a firm believer that intelligence is a process, not an individual thing, and that Intelligence is not “done.” It is “created.”
Security practitioners have long had a love-hate relationship with automation, and for good reason.
The fact that insurance companies – well respected by every business-centric executive – look at cyber risk and say “no, thanks” is a pretty clear indicator that something is rotten...
While attackers are constantly improving their evasion tactics to extend the lifetime of their malware, users can also leverage these types of evasion tactics to help prevent malware infection in the first place.
A threat is the agent that takes advantage of a vulnerability. This relationship must be a key factor in the risk assessment process and can no longer be treated as risk’s neglected step child.
I am painfully aware that in business and in security, hope is not a plan. However, that doesn’t mean we can’t dream a bit about the best case scenario. In the spirit of the season, here are five things I’m hoping for in the security industry this year.
As enterprises become increasingly focused on security, it’s important to take an honest look not just at what security measures are in place, but how they are really used.
Many continue to click on links or attachments sent via email without taking any steps to verify the origin of the email or the validity of the link or attachment. It only takes one click to for an attacker to establish a foothold in the target’s systems.
- 1 of 90
- ››
Subscribe to SecurityWeek
- Bad Bot Percentage of Web Traffic Nearly Doubled in 2013: Report
- AIG Expands Coverage to Include Physical Damage Caused By Cyber Attacks
- Brazil Hosts Meeting to Craft Internet Governance Rules
- Apple Issues Slew of Security Updates for OS X, iOS
- 150 Million Downloaded Android Apps Vulnerable to Heartbleed: FireEye
- Security is a Marathon
- Brazil Passes Trailblazing Internet Privacy Law
- NIST Pulls Dual_EC_DRBG Algorithm from Random Number Generator Recommendations
- DDoS Attacks Prove Costly, Could Top 800 Gbps in 2015: Research
- Cyber Risks Can Cause Disruption on Scale of 2008 Crisis: Study
Copyright © 2014 Wired Business Media. All Rights Reserved. Privacy Policy | Terms of Use