Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Senator Ron Wyden instructs the U.S. Department of Defense (DoD) to implement HTTPS and other cybersecurity best practices on all its websites and web services [Read More]
FBI admits that – due to flaws in methodology – it inflated the number of devices it could not analyze due to strong encryption [Read More]
The United States and China may have a tentative deal to save embattled Chinese telecom company ZTE, days after the two nations announced a truce in their trade standoff. [Read More]
Cloudflare announced a series of improvements to its Rate Limiting distributed denial of service (DDoS) protection tool this week. [Read More]
Endpoint protection firm Carbon Black surveyed the CISOs of 40 major financial institutions during April 2018 to understand how the finance sector is attacked and what concerns its defenders. [Read More]
Two unpatched vulnerabilities in Dasan’s Gigabit-capable Passive Optical Network (GPON) routers are being targeted by Internet of Things (IoT) botnets, security researchers warn. [Read More]
FireEye has launched a new platform to allow organizations and pentesters check their ability to detect and respond to OAuth abuse attacks. [Read More]
VMware patches privilege escalation and DoS vulnerabilities in Fusion and Workstation products. The company also published an advisory for the recently uncovered speculative execution attack known as Variant 4 [Read More]
Intel, AMD, ARM, IBM, Microsoft and other major tech firms have released updates, mitigations and advisories for two new Meltdown/Spectre speculative execution attacks dubbed Variant 3a and Variant 4 [Read More]
Attackers have been targeting a zero-day vulnerability in routers made by DrayTek to change their DNS settings and likely abuse them in future attacks. [Read More]
- 1 of 337
- ››
FEATURES, INSIGHTS // Security Infrastructure
Forward Secrecy (sometimes called Perfect Forward Secrecy or PFS), is a cryptographic technique that adds an additional layer of confidentiality to an encrypted session, ensuring that only the two endpoints can decrypt the traffic.
The rapid proliferation of connected things is leaving networks exposed with more potential entry points that are vulnerable to attack.
SecOps and NetOps are starting to put aside their differences and find ways to work better together. As Gartner reports, these once distinct groups have begun to realize and accept that alignment is not a nice to have, but a business imperative.
While a contract, distributed, partner-oriented workforce and supply chain can create serious risks to your organization, careful implementation of visibility and data protection strategies can help you mitigate many of the risks.
Even though a NOC or a SOC consolidates a variety of tools and measurements into a single management system, they are still too isolated.
There’s a popular attack vector among brute-force attackers right now that takes advantage of the 90-day password expirations commonly used by enterprises.
The security operations workflow has grown more sophisticated and complex, and the value that most organizations get out of their SIEM deployment is far lower than it used to be.
While a boon to productivity, some of the most ubiquitous file sharing services across the Internet are also at the heart of a global problem – publicly exposed data.
Closing the gaps in credential security requires awareness of what gaps exist and how to mitigate them.
Implementing machine learning in the context of access control can help organizations reduce their reliance on passwords, and potentially get rid of them altogether.
- 1 of 92
- ››
SecurityWeek Daily Briefing
- Email Leakage - An Overlooked Backdoor to GDPR Failure
- UK Warns That Aggressive Cyberattack Could Trigger Kinetic Response
- Europol Signs Cybersecurity Agreement With EU Agencies, WEF
- Russian Police Arrest Man Involved in Android Banking Trojan Scheme
- Flaw in Schneider PLC Programming Tool Allows Remote Attacks
- EU's New Data Protection Rules Come Into Effect
- New Features Added to CERT Tapioca Tool
- 100 Million IoT Devices Possibly Exposed to Z-Wave Attack
- Macs Infected With New Monero-Mining Malware
- Malwarebytes Acquires Binisoft to Enhance Endpoint Protection Platform
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy