Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
D-Link agrees to implement a comprehensive security program to settle FTC charges claiming that the company failed to secure its cameras and routers. [Read More]
USCYBERCOM warns that malicious actors are still using CVE-2017-11774, a Microsoft Outlook vulnerability known to have been exploited by Iranian groups. [Read More]
China's telecoms giant Huawei remains barred from the development of 5G wireless networks in the United States. [Read More]
Americans are keen on security, but do not necessarily understand it. This is the conclusion of a new survey of 1,300 Americans undertaken by YouGov, which basically suggests that attitudes towards cybersecurity exceed actions taken to ensure cybersecurity. [Read More]
A researcher warned in February that over 1,200 Phoenix Contact PLCs that should normally be used only in closed networks were exposed to attacks from the internet. There are currently still roughly 1,000 vulnerable devices. [Read More]
Mozilla says the upcoming Firefox 68 will address TLS errors caused by antiviruses with a new mechanism that automatically changes the configuration of the browser when a MitM error is detected. [Read More]
The US trade war truce with China which could ease sanctions on Huawei has prompted a backlash from lawmakers over national security concerns amid confusion over how the deal may impact the Chinese tech giant. [Read More]
Poisoned certificates are in the OpenPGP SKS keyserver network after an unknown threat actor targeted the OpenPGP certificates of two high-profile community contributors. [Read More]
As the United States and China pursue trade talks, there is a "good chance" that more US firms will be granted licenses to sell products to controversial Chinese telecoms giant Huawei, White House economic advisor Larry Kudlow said. [Read More]
President Donald Trump said on Saturday that US companies could sell equipment to Chinese telecom giant Huawei, indicating a potentially softer position on a key sticking point in the US-China trade war. [Read More]
- 1 of 79
- ››
FEATURES, INSIGHTS // Risk Management
The convergence of security products and services is a welcomed development and will lead to improved security.
While threats facing private industry and government may once have looked distinctly different, the line separating attackers pursuing these two arenas is now so blurred that it’s often hard to distinguish one from another.
CISOs should invest time in applying the resources of public cloud to bring automation, scalability, and AI to solving the given problem as a platform for all customers – past, present, and future.
As innovative attacks continue to expand the purview of cyber security, helping CISOs means equipping them with equally innovative tools that stand a fighting chance.
It can be difficult for teams to determine how to obtain and incorporate data from encrypted chat service platforms into their collection strategies in a meaningful way.
While no digital risk framework is perfect, the optimal level of maturity will look to continually identify gaps, update processes and tooling, and reflect organizational changes.
The best way for intelligence practitioners to identify what types of context their intelligence consumers truly need is simply to ask them.
By understanding where assets are exposed, their value to attackers, and how attackers target this data, organizations can make better decisions about their defenses and improve them over time.
Josh Lefkowitz shares—and debunks—some of the most persistent and misleading BRI fallacies he has heard over the years.
Organizations’ perimeters will continue to erode as their digital footprints expand, but with the right risk protection strategy any organization can succeed in the age of digital transformation.
- 1 of 31
- ››
SecurityWeek Daily Briefing
- AMCA Breach Impacts 2.2 Million Patients of Clinical Pathology Laboratories
- EvilGnome Malware Helps Hackers Spy on Linux Users
- SLUB Backdoor Spreads via Newly Patched Vulnerability
- BMC Firmware Vulnerabilities Affect Lenovo, Gigabyte Servers
- Endpoint Security Evolving Against Airport Searches, GDPR
- Bulgarian IT Specialist Held Over Taxpayer Data Hack
- Oracle's July 2019 CPU Includes 319 Fixes
- SWEED Hackers Target Manufacturing, Logistics Organizations
- Hackers Access Sprint Accounts via Samsung Website
- Boost Infrastructure Immunity Against the Ransomware Epidemic
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy