Security Experts:

WRITE FOR US

LATEST SECURITY NEWS HEADLINES

rss icon

Outlook Security Feature Bypass Allowed Sending Malicious Links
Attack Surface Management Play Censys Scores $35M Investment
French Ministry of Justice Targeted in Ransomware Attack
Microsoft Saw Record-Breaking DDoS Attacks Exceeding 3 Tbps
US Says National Water Supply 'Absolutely' Vulnerable to Hackers
long dotted

NEWS & INDUSTRY UPDATES

FCC Chair Proposes New Policies for Carrier Data Breach Reporting
Federal Communications Commission (FCC) Chairwoman Jessica Rosenworcel proposes strengthening rules around telecom providers’ reporting of data breaches. [Read More]
Recorded Future Acquires SecurityTrails in $65M Deal
Recorded Future snaps up SecurityTrails for a direct entry into the booming attack surface management business. [Read More]
Research: Simulated Phishing Tests Make Organizations Less Secure
A long-term phishing experiment at a 56,000-employee company ends with a caution around the use of simulated phishing lures in corporate security awareness training exercises. [Read More]
Microsoft Confirms 'NotLegit' Azure Flaw Exposed Source Code Repositories
Researchers warn that the vulnerability has existed since September 2017 and has likely been exploited in the wild. [Read More]
Google Finds 35,863 Java Packages Using Defective Log4j
As the scale and impact of the Log4j security crisis become clearer, defenders brace for a long, bumpy ride filled with software-dependency headaches. [Read More]
Corellium Lands $25 Million Investment for Virtualization Tech
Fresh off a high-profile legal triumph over Apple, Corellium gets major attention from investors with Paladin Capital Group leading a $25 million funding round. [Read More]
Adobe Joins Security Patch Tuesday Frenzy
Adobe documented at least 60 security vulnerabilities in prominent software products and warned that malicious actors could exploit these bugs for code execution, privilege escalation and denial-of-service attacks. [Read More]
LogDNA Snags $50 Million for Data Observability Tech
LogDNA, a late-stage startup that helps DevOps teams scour logs for signs of problems, has secured a new $50 million investment led by Dave DeWalt’s NightDragon. [Read More]
Researchers Find 226 Vulnerabilities in Nine Wi-Fi Routers
Researchers flag hundreds of security flaws in routers from Asus, AVM, D-Link, Edimax, Linksys, Netgear, Synology and TP Link. [Read More]
CISA Adds Zoho, Qualcomm, Mikrotik Flaws to 'Must-Patch' List
Citing evidence of active exploitation against five specific vulnerabilities, the U.S. cybersecurity agency warned that further delays in applying fixes “pose significant risk to the federal enterprise. [Read More]

FEATURES, INSIGHTS // Security Architecture

rss icon

John Maddison's picture
Meshed Cybersecurity Platforms Enable Complex Business Environments
John Maddison - Security Architecture
Cybersecurity deployments have become as complex as the networks they are trying to protect. And that’s not a good thing.
Read full story
Marc Solomon's picture
The Second Building Block for the SOC of the Future: An Open Integration Framework
Marc Solomon - Incident Response
An open integration architecture provides the greatest access to data from technologies, threat feeds and other third-party sources, and the ability to drive action back to those technologies once a decision is made.
Read full story
Torsten George's picture
The Need for Survivable, Trustworthy Secure Systems
Torsten George - Risk Management
Cyber resiliency measures (i.e., architectural design, technologies, operational practices) assume that today’s threat actors can achieve a foothold in an organization’s infrastructure and in turn post-exploit activities must be contained and eliminated.
Read full story
Marc Solomon's picture
At Odds: The Promise vs. Operational Reality of Security Solutions
Marc Solomon - Network Security
As you determine what security technologies to invest in, develop not only a technology roadmap, but also include and align an operational roadmap.
Read full story
Marc Solomon's picture
The Integration Imperative for Security Vendors
Marc Solomon - Security Architecture
Most organizations have a complex security infrastructure that consists of multiple products from multiple vendors to create layers of defense.
Read full story
Laurence Pitt's picture
Reviving Cybersecurity Innovation with Experience at the Forefront
Laurence Pitt - Security Architecture
Cybersecurity innovation is not quite at the stage where it needs resuscitation, still, the last few months have demonstrated the need for change.
Read full story
Torsten George's picture
On the Rise: The Enemy From Within
Torsten George - Identity & Access
Today’s economic climate exacerbates risks of insider threats, as pending furloughs or pay cuts may tempt employees to exfiltrate data to secure a new job, make up for income losses, etc.
Read full story
Preston Hogue's picture
As Healthcare Industry Transforms Overnight, Tech Community Must Act
Preston Hogue - Incident Response
The healthcare industry will need advanced security measures to identify and mitigate flaws in new apps carrying the world’s most sensitive, regulated information.
Read full story
Marie Hattar's picture
Why You Need to Put Your Security to the Test
Marie Hattar - Security Architecture
Organizations should regularly put security products, processes and people to the test, and the reward is better, more efficient protection against attacks.
Read full story
Josh Lefkowitz's picture
Tips to Help MSSPs Choose a Threat Intelligence Partner
Josh Lefkowitz - Security Architecture
Choosing which vendor to partner with can be exceptionally difficult for MSSPs due to the oversaturation and complexity of the threat intelligence market.
Read full story