Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Zoom says it will not offer end-to-end encryption to free users so that the FBI or local law enforcement can conduct investigations. [Read More]
An alert sent out this week by CISA reiterates previously issued recommendations on how organizations should properly secure Microsoft Office 365 deployments. [Read More]
Microsoft has launched a free zero trust assessment tool that helps organizations see where they are and provides recommendations for moving forward. [Read More]
Microsoft is testing its election-focused security solution ElectionGuard in Wisconsin at Supreme Court elections. [Read More]
Beginning March, when Firefox 74 is set to arrive in the release channel, Mozilla will disable older Transport Layer Security (TLS) protocol versions as default options for secure connections. [Read More]
Many devices are likely still vulnerable to DMA attacks, despite the fact that hardware and software vendors have taken steps to prevent such attacks. [Read More]
OpenSSL has evolved a great deal in terms of security since the disclosure of the Heartbleed vulnerability back in 2014. [Read More]
Google unveils OpenTitan, an open source silicon root of trust (RoT) project that can help ensure both hardware infrastructure and the software running on it remain in a trustworthy state. [Read More]
VMware unveils new security features and enhancements for its NSX, SD-WAN and Secure State products, along with a new zero trust architecture for digital workspaces. [Read More]
A group of security researchers from German universities has devised a new class of web cache poisoning attacks that could render victim services unreachable. [Read More]
FEATURES, INSIGHTS // Security Architecture
Jack Danahy, co-founder and CTO of Barkly, attempts to clarify what is and what is not machine learning in endpoint security
In the cyber threat intelligence space, there is confusion (much of which is driven by vendors)... where threat information is positioned as finished intelligence.
Threat intelligence can play an important role in improving an organization’s overall cybersecurity posture, provided the right case is made and the right processes are put in place.
In today’s market, more does not mean better. We need security innovation that makes more of what the industry already has by turning what we have into what we need.
By focusing on key attack surfaces and architecting systems to maximize the effectiveness of our monitoring efforts we can detect and stop intrusions much more quickly.
Security frameworks are designed to provide a reference for those designing various programmatic security mechanisms in order to benefit from collective successes and failures of the broad community.
Security has evolved to the point that I can now say that collection, sensing, and alerting are yesterday’s news.
Threat intelligence is only valuable if an organization takes the necessary steps to quickly and easily apply that intelligence to actual security policy.
As NSA Chief Hacker Rob Joyce indicated during his recent talk at the Usenix Enigma conference, hackers are patient and persistent.
In security, we have grown accustomed to treating the symptoms of our problems, rather than treating the problems themselves.
Get the Daily Briefing
- Enterprise Credentials Publicly Exposed by Cybercriminals
- Drupal Updates Patch Another Vulnerability Related to Archive Files
- Multi-Cloud Network Security Provider Valtix Raises $12.5 Million
- Microsoft Details OPSEC, Anti-Forensic Techniques Used by SolarWinds Hackers
- Cisco Patches Critical Vulnerabilities in SD-WAN, DNA Center, SSMS Products
- Amazon Awards $18,000 for Exploit Allowing Kindle E-Reader Takeover
- Scanning Activity Detected After Release of Exploit for Critical SAP SolMan Flaw
- 'LuckyBoy' Malvertising Campaign Hits iOS, Android, XBox Users
- In a Remote Work Era, a People-First Approach Keeps Threat Intelligence Teams on Track
- Snort 3 Becomes Generally Available
Copyright © 2020 Wired Business Media. All Rights Reserved. Privacy Policy