Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Mozilla this week announced that the distrust of older Symantec certificates, initially planned for Firefox 63, will be delayed. [Read More]
Senate Homeland Security and Governmental Affairs Committee votes to approve several cybersecurity bills, including for incident response, a diagnostics and mitigation program, cyber workforce rotation, supply chain security, and safeguarding federal information systems [Read More]
Rapid7 adds automation and orchestration capabilities to its Insight Platform, and new automation functionality to vulnerability management and incident response tools [Read More]
Verodin, a company that provides a platform for assessing the effectiveness of security products, raises $21 million in Series B funding round [Read More]
GitHub adds support for Python to its security alerts feature, which notifies developers if their packages contain vulnerabilities [Read More]
A cyber-espionage group is abusing code-signing certificates stolen from Taiwan-based companies for the distribution of their backdoor, ESET reports. [Read More]
The UK government's Cabinet Office has published the first iteration of its Minimum Cyber Security Standard, which will be incorporated into the Government Functional Standard for Security. [Read More]
The State Department, the Department of Homeland Security, the Department of Commerce, and the Office of Management and Budget issue reports in response to the 2017 cybersecurity executive order [Read More]
Senator Ron Wyden instructs the U.S. Department of Defense (DoD) to implement HTTPS and other cybersecurity best practices on all its websites and web services [Read More]
U.S. Department of Energy lays out its multiyear cybersecurity plan, which includes strengthening preparedness, coordinating incident response and recovery, and accelerating RD&D [Read More]
- 1 of 30
- ››
FEATURES, INSIGHTS // Security Architecture
Evaluating a threat intelligence vendor’s collection strategy effectively is a complex process that requires far more than simply obtaining the answers to the questions outlined above.
As a security professional, it’s time to take a fresh look at what your organization can do to compensate for insider negligence.
Jack Danahy, co-founder and CTO of Barkly, attempts to clarify what is and what is not machine learning in endpoint security
In the cyber threat intelligence space, there is confusion (much of which is driven by vendors)... where threat information is positioned as finished intelligence.
Threat intelligence can play an important role in improving an organization’s overall cybersecurity posture, provided the right case is made and the right processes are put in place.
In today’s market, more does not mean better. We need security innovation that makes more of what the industry already has by turning what we have into what we need.
By focusing on key attack surfaces and architecting systems to maximize the effectiveness of our monitoring efforts we can detect and stop intrusions much more quickly.
Security frameworks are designed to provide a reference for those designing various programmatic security mechanisms in order to benefit from collective successes and failures of the broad community.
Security has evolved to the point that I can now say that collection, sensing, and alerting are yesterday’s news.
Threat intelligence is only valuable if an organization takes the necessary steps to quickly and easily apply that intelligence to actual security policy.
- 1 of 13
- ››
SecurityWeek Daily Briefing
- Photos of 6.8 Million Facebook Users Exposed by API Bug
- Identity Intelligence Firm 4iQ Lands $18 Million in Series B Funding
- Siemens Patches Several Critical Flaws in SINUMERIK Controllers
- Facebook Paid Out $1.1 Million in Bug Bounties in 2018
- Authorities: Wave of Hoax Bomb Threats Made Across US
- Shamoon 3 Targets Energy Sector in Middle East
- Google Unveils New Encryption Features for Android Developers
- AP Exclusive: Iran Hackers Hunt Nuke Workers, US Officials
- Arctic Wolf Acquires Risk Assessment Firm RootSecure
- Kubernetes Security Firm Tigera Raises $30 Million
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy