Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
PHP developers have shared an update on the recent breach and while they no longer believe the Git server was compromised, it’s possible that a user database was leaked. [Read More]
Key lawmakers said they’re concerned they’ve been kept in the dark about what suspected Russian hackers stole from the federal government and they pressed Biden administration officials for more details about the scope of what’s known as the SolarWinds hack. [Read More]
ThreatQuotient, a threat intelligence and security operations platform provider, has closed $22.5 million in new financing through a combination of equity and debt financing. [Read More]
The U.S. government's Cybersecurity and Infrastructure Security Agency (CISA) warns that APT actors are exploiting Fortinet FortiOS vulnerabilities in attacks targeting commercial, government, and technology services networks. [Read More]
The U.S. Department of Homeland Security's CISA is directing federal agencies to scan their Microsoft Exchange environments for four weeks and report if they find any compromised servers. [Read More]
Researchers warns that tens of thousands of QNAP SOHO NAS devices potentially impacted by unpatched remote code execution flaws. [Read More]
The U.S. Department of Justice this week announced official charges against Wyatt A. Travnichek, a Kansas man accused of accessing and tampering with a public water system. [Read More]
Ubiquiti shares fell after a whistleblower claimed that a recent data breach was far more serious than the company told customers. [Read More]
North Korean government-backed APT group caught using a fake pen-testing company sock puppet Twitter and LinkedIn accounts in an escalation of a hacking campaign targeting security research professionals. [Read More]
The Dutch Data Protection Authority has fined Booking.com half a million dollars for not reporting a 2018 data breach within the required 72 hours. [Read More]
- 1 of 151
- ››
FEATURES, INSIGHTS // Incident Response
Once live stomping around vendor-packed expo halls at security conferences returns, it is highly probable that “Virtual Analyst” will play a starring role in buzzword bingo.
To gain a comprehensive understanding of the threats you are facing and what you must defend, you need to start by aggregating internal data from across the entire ecosystem
The center of gravity of the Security Operations Center (SOC) used to be the SIEM, but this is shifting as the mission of the SOC shifts to become a detection and response organization.
The pandemic has resulted in security team members and teams working better together, as well as more closely with other departments and with industry sharing groups.
For companies trying to build new or mature existing intelligence programs, the Age of COVID has been an excellent time to capture 30-60 minutes with that hard-to-find manager
To push security operations forward, we must move towards a single, collaborative environment that can include threat hunters, incident handlers and threat intelligence and SOC analysts.
As you build your cyber intelligence program – and have all the vendors lined up to take your money – don’t overlook the importance of investing in the right people.
Curated threat intelligence is an essential capability of the SOC, enabling tools and teams to work more efficiently and effectively to optimize everything from incident response to threat hunting.
Knowing that threat intelligence is readily available and proving its worth is one thing, understanding how to use it within your security operations program is quite another.
When intelligence becomes a capability and not just subscriptions to feeds, we can gain the full value of intelligence as the foundation to security operations.
- 1 of 28
- ››
Get the Daily Briefing
- Another Critical Vulnerability Patched in SAP Commerce
- Siemens Releases Several Advisories for 'NAME:WRECK' Vulnerabilities
- FBI Agents Secretly Deleted Web Shells From Hacked Microsoft Exchange Servers
- At Least 100 Million Devices Affected by "NAME:WRECK" DNS Flaws in TCP/IP Stacks
- Google Patches More Under-Attack Chome Zero-days
- Swedish Sports Body Hacked by Russians, Officials Say
- Breaches Detected Faster, But Ransomware Surge a Major Factor: FireEye
- MS Patch Tuesday: NSA Reports New Critical Exchange Flaws
- Adobe Patches Critical Code Execution Vulnerabilities in Photoshop, Bridge
- Exploit Released for Critical Vulnerability Affecting QNAP NAS Devices
Copyright © 2021 Wired Business Media. All Rights Reserved. Privacy Policy