Security Experts:

WRITE FOR US
Security Infrastructure

LATEST SECURITY NEWS HEADLINES

rss icon

Mirai Authors Avoid Prison After Working With FBI
Fidelis Cybersecurity Raises $25 Million
Destructive Xbash Linux Malware Targets Enterprise Intranets
Critical Vulnerability Impacts Hundreds of Thousands of IoT Cameras
iOS 12 Brings Patches for 16 Security Vulnerabilities
long dotted

NEWS & INDUSTRY UPDATES

One-Third of Data Breaches Led to People Losing Jobs: Kaspersky
Nearly one-third of data breaches resulted in someone losing their job, and in North America the C-Suite is most likely to be blamed for a breach [Read More]
Forcepoint Launches Critical Infrastructure Business Unit
Forcepoint has announced a new business unit focusing on securing industrial control systems (ICS) and critical infrastructure. [Read More]
Bomgar to Acquire BeyondTrust
Atlanta-based Privileged Access Management (PAM) solutions provider Bomgar today announced a definitive agreement to acquire BeyondTrust, from an affiliate of Veritas Capital. [Read More]
Senators Concerned About State Department's Cybersecurity Failures
U.S. Senators send letter to State Department asking about its use of multi-factor authentication and other cybersecurity practices [Read More]
Container Security Firm Sysdig Raises $68.5 Million
Container security company Sysdig raises $68.5 million, which brings the total funding to date to over $121 million [Read More]
OpenSSL 1.1.1 Released With TLS 1.3, Security Improvements
OpenSSL 1.1.1 has been released. The new Long Term Support (LTS) version brings TLS 1.3 and significant security improvements [Read More]
China-linked Hackers Use Signed Network Filtering Driver in Recent Attacks
A cyber-espionage group believed to be operating out of China has been using a digitally signed network filtering driver as part of recent attacks, Kaspersky Lab reports. [Read More]
IoT Botnets Target Apache Struts, SonicWall GMS
The Mirai and Gafgyt IoT botnets are targeting vulnerabilities in Apache Struts and SonicWall Global Management System (GMS), Palo Alto Networks has discovered. [Read More]
Cisco Patches Serious Flaws in RV, SD-WAN, Umbrella Products
Cisco patches critical and high severity vulnerabilities in its RV series, SD-WAN, Umbrella and other products [Read More]
Multiple Vulnerabilities Addressed in Opsview Monitor
Opsview recently addressed a series of remote code-execution, command-execution and local privilege-escalation vulnerabilities in the Opsview Monitor. [Read More]

FEATURES, INSIGHTS // Security Infrastructure

rss icon

Preston Hogue's picture
The Risk of Triangulation: You May Just be a Piece of the Puzzle
Preston Hogue - Risk Management
Security teams should think about how company data might connect with data from other organizations or industries and how those combined data sets could be triangulated into a larger picture that ultimately puts you at risk.
Read full story
Torsten George's picture
The Real Takeaways From the Reddit Hack
Torsten George - Incident Response
The Reddit data breach illustrates the importance of rolling out an approach designed to verify the user, validate their device, limit access and privilege, and learn and adapt to new risks.
Read full story
Alastair Paterson's picture
Four Ways to Mitigate Cyber Risks for ERP Applications
Alastair Paterson - Application Security
A confluence of factors is putting hundreds of thousands of implementations of Enterprise Resource Planning (ERP) applications at risk of cyber attacks.
Read full story
Marc Solomon's picture
I Hate this Cliché, but I'm Going There
Marc Solomon - Security Infrastructure
Know your adversaries and yourself are the fundamentals – the first steps of many in the “art of war” with respect to cybersecurity.
Read full story
Torsten George's picture
The Foundation of Cyber-Attacks: Credential Harvesting
Torsten George - Identity & Access
Cyber attackers long ago figured out that the easiest way for them to gain access to sensitive data is by compromising an end user’s identity and credentials.
Read full story
Travis Greene's picture
Don't Ignore Identity Governance for Privileged Users
Travis Greene - Identity & Access
Privileged Access Management (PAM) can monitor and record user activity to offer misuse deterrence by collecting evidence for prosecution, and can provide more detailed compliance reporting than system logs.
Read full story
John Maddison's picture
Security Performance in the Cloud: Not All Solutions Are Created Equal
John Maddison - Cloud Security
Analysis of a vendor’s underlying design and optimization approaches will enable you to select the solution that best meets your organization’s performance and budgetary requirements.
Read full story
Joshua Goldfarb's picture
In Security, What We Don't See Can Hurt Us
Joshua Goldfarb - Network Security
In security, one of our goals should always be to broaden our perspective, field of view, and horizons to minimize the risk that we will be blindsided by something we didn’t see coming.
Read full story
Josh Lefkowitz's picture
Insider Threat: Common Myths and Misconceptions
Josh Lefkowitz - Identity & Access
It’s imperative that security practitioners acknowledge the often-confusing nature of insider threat, seek to dispel misconceptions, and provide clear, accurate insight whenever possible.
Read full story
Joshua Goldfarb's picture
Keep an Eye on Your Security Technology Portion Size
Joshua Goldfarb - Network Security
When an organization controls its security technology portion size, it enables the organization to better address strategic requirements and to work far more efficiently.
Read full story