Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
OpenSSH 9.0 has been fitted with new defaults to prevent "capture now, decrypt later" attacks linked to advancements in quantum computing. [Read More]
Honeywell, Claroty, Nozomi and Forescout have teamed up to create the Operational Technology Cybersecurity Coalition. [Read More]
The researchers targeted a two-GPU architecture and were able to accurately fingerprint the application running on the remote GPU. [Read More]
PCI Data Security Standard (DSS) v4.0 released to address emerging threats to customer payment information. [Read More]
Threat hunters at Checkmarx raise an alarm after discovering a threat actor fully automating the creation and delivery of "hundreds of malicious packages" into the NPM ecosystem. [Read More]
The Ukraine computer emergency response team reports malicious cyber activity from Chinese threat actors following the Russian invasion. [Read More]
ISC patches vulnerabilities in BIND that could be exploited remotely to cause a denial-of-service (DOS) problems. [Read More]
Software supply chain security fears escalated with the discovery of "deliberate sabotage" of code in the open-source npm package manager ecosystem. [Read More]
NIST has released the final version of a special publication focusing on offering information and guidance to manufacturers for protecting ICS environments. [Read More]
The guidance is generic, meant to be applied to a broad range of network devices. [Read More]
FEATURES, INSIGHTS // Security Architecture
Threat intelligence can play an important role in improving an organization’s overall cybersecurity posture, provided the right case is made and the right processes are put in place.
In today’s market, more does not mean better. We need security innovation that makes more of what the industry already has by turning what we have into what we need.
By focusing on key attack surfaces and architecting systems to maximize the effectiveness of our monitoring efforts we can detect and stop intrusions much more quickly.
Security frameworks are designed to provide a reference for those designing various programmatic security mechanisms in order to benefit from collective successes and failures of the broad community.
Security has evolved to the point that I can now say that collection, sensing, and alerting are yesterday’s news.
Threat intelligence is only valuable if an organization takes the necessary steps to quickly and easily apply that intelligence to actual security policy.
As NSA Chief Hacker Rob Joyce indicated during his recent talk at the Usenix Enigma conference, hackers are patient and persistent.
In security, we have grown accustomed to treating the symptoms of our problems, rather than treating the problems themselves.
Data science and machine learning models can assess large groups of cyber threats to find the subtle traits they have in common to better protect organizations.
While we must continue to use defensive technologies because they help address the level of white noise that has become part of the cost to operate in our hyper-connected, digitized world, we can’t stop there.
Get the Daily Briefing
- Emergency Chrome 103 Update Patches Actively Exploited Vulnerability
- Experts: California Lacked Safeguards for Gun Owner Info
- Dutch Uni Gets Cyber Ransom Money Back... With Interest
- QuSecure Scores Post-Quantum Cybersecurity Contract Worth More Than $100M Annually
- Google: Half of 2022's Zero-Days Are Variants of Previous Vulnerabilities
- Google Blocks Domains of Hack-for-Hire Groups in Russia, India, UAE
- Cyberattack Disrupts Unemployment Benefits in Some States
- Oak9 Lands $8 Million in New Venture Investment
- North Korea Lazarus Hackers Blamed for $100 Million Horizon Bridge Heist
- Token Raises $13 Million for Its Biometric Authentication Ring
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy