Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Some U.S. government agencies still rely on knowledge-based identity verification despite the fact that the OPM and Equifax breaches have made this system insecure. [Read More]
Rapid7 has analyzed the visible cyber exposure of some of the UK's largest companies -- the FTSE 250. [Read More]
Organizations have been investing more in ICS cyber security and the results are showing, but many still rate their overall risk profile as severe or high, according to the SANS 2019 State of OT/ICS Cybersecurity Report. [Read More]
Huawei's cyber security chief told the UK parliament Monday that the Chinese telecoms giant has been advised it was under no obligation to spy for Beijing if so asked by the Communist state. [Read More]
Due to the high risk of exploitation and a very high number of devices that are still vulnerable, the NSA has urged Windows users to immediately address the vulnerability tracked as BlueKeep and CVE-2019-0708. [Read More]
Hackers can use synthetic clicks to bypass many of the privacy and security features implemented by Apple in macOS. The vulnerability is currently unpatched. [Read More]
Microsoft has reminded users to patch the wormable Windows vulnerability tracked as BlueKeep and CVE-2019-0708 due to the high risk of exploitation. [Read More]
AttackIQ, a company that specializes in continuous security validation, raised $17.6 million in a Series B funding round, which brings the total raised by the firm to roughly $35 million. [Read More]
Chinese telecom giant Huawei stepped up its legal battle on Wednesday to overturn US legislation barring American federal agencies from buying its products amid an escalating high-tech dispute. [Read More]
Nearly one million devices are vulnerable to attacks involving the Windows RDS vulnerability dubbed BlueKeep and it appears that hackers have already started scanning the web in search of potential targets. [Read More]
- 1 of 77
- ››
FEATURES, INSIGHTS // Risk Management
The convergence of security products and services is a welcomed development and will lead to improved security.
While threats facing private industry and government may once have looked distinctly different, the line separating attackers pursuing these two arenas is now so blurred that it’s often hard to distinguish one from another.
CISOs should invest time in applying the resources of public cloud to bring automation, scalability, and AI to solving the given problem as a platform for all customers – past, present, and future.
As innovative attacks continue to expand the purview of cyber security, helping CISOs means equipping them with equally innovative tools that stand a fighting chance.
It can be difficult for teams to determine how to obtain and incorporate data from encrypted chat service platforms into their collection strategies in a meaningful way.
While no digital risk framework is perfect, the optimal level of maturity will look to continually identify gaps, update processes and tooling, and reflect organizational changes.
The best way for intelligence practitioners to identify what types of context their intelligence consumers truly need is simply to ask them.
By understanding where assets are exposed, their value to attackers, and how attackers target this data, organizations can make better decisions about their defenses and improve them over time.
Josh Lefkowitz shares—and debunks—some of the most persistent and misleading BRI fallacies he has heard over the years.
Organizations’ perimeters will continue to erode as their digital footprints expand, but with the right risk protection strategy any organization can succeed in the age of digital transformation.
- 1 of 31
- ››
SecurityWeek Daily Briefing
- Firefox Zero-Day Exploited to Deliver Malware to Cryptocurrency Exchanges
- Indegy Launches Industrial Cybersecurity-as-a-Service Offering
- Why Diversity of Thought in the Workplace Matters
- Critical Vulnerabilities Patched in Cisco SD-WAN, DNA Center Products
- MongoDB Introduces Client-Side Field Level Encryption to Aid Compliance
- Senator Asks NIST to Propose Secure Data Sharing Methods
- Florida City Pays $600,000 Ransom to Save Computer Records
- Are Artificial Intelligence and Machine Learning Just a Temporary Advantage to Defenders?
- Security Doesn't Have to be a Losing Battle
- Cyberespionage Campaign Targets Android Users in Middle East
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy