Security Experts:

WRITE FOR US

LATEST SECURITY NEWS HEADLINES

rss icon

Georgia Supreme Court Rules that State Has No Obligation to Protect Personal Information
GitHub Adds New Tools to Help Developers Secure Code
Microsoft Defender ATP for Mac Now in Public Preview
One Year on, EU's GDPR Sets Global Standard for Data Protection
New York Department of Financial Services Launches Cybersecurity Unit
long dotted

NEWS & INDUSTRY UPDATES

Hunters.AI Emerges From Stealth With $5.4M in Seed Funding
Autonomous threat hunting company Hunters.AI emerges from stealth mode with $5.4 million in seed funding. [Read More]
US Warns Chinese Drones May Steal Data: Report
Washington has warned that Chinese-made drones could be giving spy agencies in Beijing "unfettered access" to stolen data, according to a report in American media. [Read More]
Huawei Vows to Deliver Android Security Updates After Google Cut-Off
Huawei has promised to continue delivering Android security updates to existing phones and tablets after Google suspended business with the Chinese company. [Read More]
Wormable Windows RDS Vulnerability Poses Serious Risk to ICS
The wormable Windows RDS vulnerability patched recently by Microsoft (CVE-2019-0708), including in Windows XP and Server 2003, poses a serious risk to industrial environments. [Read More]
Facebook Partially Restores Privacy Feature Abused in Massive Breach
Facebook has partially restored the View As feature abused by hackers last year in a massive data breach that affected 29 million accounts. [Read More]
Intel MDS Vulnerabilities: What You Need to Know
New Intel CPU vulnerabilities known as MDS, ZombieLoad, Fallout and RIDL impact millions of devices. Affected vendors published advisories and blog posts with information for users. [Read More]
New Class of Vulnerabilities Leak Data From Intel Chips
ZombieLoad, RIDL and Fallout: Intel processors are vulnerable to more speculative execution side-channel attacks that can allow malware to obtain sensitive data. [Read More]
NIST Working on Industrial IoT Security Guide for Energy Companies
NIST’s National Cybersecurity Center of Excellence (NCCoE) is working on an industrial IoT (IIoT) security project for the energy sector. [Read More]
5G Conference Warns on Security as Huawei Controversy Rages
Experts called on 5G providers Friday to heed supply chain security in light of concerns about technology providers such as China's Huawei, recently banned by the US government. [Read More]
2020 Campaign Staffers Being Trained to Handle Cyber Threats
2020 presidential campaigns are preparing for cyber threats, which includes training, mandatory use of 2FA, and phishing simulations. [Read More]

FEATURES, INSIGHTS // Risk Management

rss icon

Gunter Ollmann's picture
From APES to Bespoke Security Automated as a Service
Gunter Ollmann - Incident Response
CISOs should invest time in applying the resources of public cloud to bring automation, scalability, and AI to solving the given problem as a platform for all customers – past, present, and future.
Read full story
Justin Fier's picture
An Ode to CISOs: How Real-World Risks Became Cyber Threats
Justin Fier - Risk Management
As innovative attacks continue to expand the purview of cyber security, helping CISOs means equipping them with equally innovative tools that stand a fighting chance.
Read full story
Josh Lefkowitz's picture
Chat Services: Be Diligent With This Must-Have Data Source for Intelligence Programs
Josh Lefkowitz - Incident Response
It can be difficult for teams to determine how to obtain and incorporate data from encrypted chat service platforms into their collection strategies in a meaningful way.
Read full story
Alastair Paterson's picture
Build Versus Buy: Threat Intelligence and Digital Risk
Alastair Paterson - Risk Management
While no digital risk framework is perfect, the optimal level of maturity will look to continually identify gaps, update processes and tooling, and reflect organizational changes.
Read full story
Josh Lefkowitz's picture
Not All Context in Threat Intelligence is Created Equal
Josh Lefkowitz - Risk Management
The best way for intelligence practitioners to identify what types of context their intelligence consumers truly need is simply to ask them.
Read full story
Alastair Paterson's picture
Four Steps to Begin Better Managing Your Digital Risk
Alastair Paterson - Risk Management
By understanding where assets are exposed, their value to attackers, and how attackers target this data, organizations can make better decisions about their defenses and improve them over time.
Read full story
Josh Lefkowitz's picture
The Truth about Business Risk Intelligence
Josh Lefkowitz - Risk Management
Josh Lefkowitz shares—and debunks—some of the most persistent and misleading BRI fallacies he has heard over the years.
Read full story
Alastair Paterson's picture
Digital Transformation Presents Both Reward and Risk
Alastair Paterson - Risk Management
Organizations’ perimeters will continue to erode as their digital footprints expand, but with the right risk protection strategy any organization can succeed in the age of digital transformation.
Read full story
Grady Summers's picture
China is a Target - Just Like Us
Grady Summers - Risk Management
Companies in China are facing many of the same threats that your organization faces today, but they are addressing these threats at a massive scale, on emerging platforms, and with innovative approaches that we can learn from.
Read full story
Marc Solomon's picture
Security Professionals Win When They Can Master Risk Communications
Marc Solomon - Risk Management
The ability to customize threat intelligence scores allows you to prioritize threats to your organization and reevaluate and reprioritize as new data and context becomes available.
Read full story