Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
New Jersey court delivers summary judgment against Ace American Insurance company’s refusal to pay based on war exclusion clause. [Read More]
The IPv6 guidance provides federal agencies with information on IPv6 and its security features, along with security considerations on the network protocol. [Read More]
Threat hunters at Kaspersky have spotted a well-known Chinese APT actor using an UEFI implant to maintain stealthy persistence across reboots, disk formatting or disk replacements. [Read More]
The account details of 7 million OpenSubtitles users were leaked following a breach, despite the site claiming to have paid a ransom to avoid this situation. [Read More]
The Red Cross made an appeal to hackers who seized a trove of private data, saying they were willing to speak "directly and confidentially" to those behind the cyberattack. [Read More]
U.S. President Joe Biden has signed a new national security memorandum focusing on the implementation of the cybersecurity requirements of an executive order issued in 2021. [Read More]
With Takedown Service, Kaspersky is in charge of gathering evidence of malicious activity and contacting the authority that can legally shut down the site. [Read More]
The International Committee of the Red Cross was the victim of a massive cyberattack in which hackers seized the data of more than 515,000 extremely vulnerable people, some of whom had fled conflicts, it said. [Read More]
Google researcher documents a pair of Zoom security defects and chides the company for missing a decades-old anti-exploit mitigation. [Read More]
A vulnerability in Box's implementation of multi-factor authentication (MFA) allowed attackers to take over accounts without needing access to the target's phone. [Read More]
- 1 of 176
- ››
FEATURES, INSIGHTS // Incident Response
An open integration architecture provides the greatest access to data from technologies, threat feeds and other third-party sources, and the ability to drive action back to those technologies once a decision is made.
You risk limiting the value you can derive from your next security investment without first thinking about your top use cases and the capabilities needed to address them.
Conducting scaled and cost-effective attack surface and digital threat monitoring gives organizations of all sizes the best chance of identifying and defeating their adversaries.
In addition to evaluating the core capabilities and range of intelligence monitoring, organizations must consider data source integrity, and perhaps most importantly, the level of expert analysis included with each service.
Enterprises can't rely on Endpoint Protection Platforms (EPP) or Endpoint Detection and Response (EDR) tools to detect suspicious activity on a user’s system to quarantine the system or even to reimage.
Security and intelligence teams often lack finished intelligence, which leaves them ill-equipped to combat motivated and sophisticated adversaries.
Security is a big data problem. Solving it is all about prioritized data flow, continuously processing data for analysis and translating and exporting it to create a single security infrastructure.
The more you identify within your threat hunting program, the more opportunity you may have at expanding with additional budget. Never let an incident go to waste.
We are a community with grand ideas around the concept of crowdsourced threat intel (CTI), but with little history or previous successes that show CTI as a viable idea.
For efficiency and effectiveness, automation must take a data-driven approach and encompass how we initiate and learn from the response, not just how we execute the process.
- 1 of 29
- ››
Get the Daily Briefing
- Network Security Firm Portnox Raises $22 Million in Series A Funding
- Vulnerabilities in Swiss E-Voting System Earn Researchers Big Bounties
- Zerodium Offering $400,000 for Microsoft Outlook Zero-Day Exploits
- In the Hacker's Crosshairs: K-12 Schools
- HackerOne Bags $49 Million in Series E Funding
- FBI Warns of Hacker Attacks Conducted by Iranian Cyber Firm
- Xerox Quietly Patched Device-Bricking Flaw Affecting Some Printers
- Web-Tracking 'Cookies' Meant to Protect Privacy: Inventor
- Identity Verification Firm Veriff Raises $100 Million
- Over 100 Million Android Users Installed 'Dark Herring' Scamware
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy