Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
The CloudKnox deal is Microsoft’s fourth cybersecurity acquisition over the last 12 months and comes just weeks after Redmond announced plans to purchase threat-intelligence vendor RiskIQ. [Read More]
French President Emmanuel Macron leads a list of 14 current or former heads of state who may have been targeted for hacking by clients of the notorious Israeli spyware firm NSO Group, Amnesty International said Tuesday. [Read More]
The U.S. government has attributed several past ICS attacks to Russian, Chinese and Iranian state-sponsored threat actors. [Read More]
Microsoft secures a court order to take down malicious domains that impersonate legitimate organizations. [Read More]
Networking gear vendor Juniper Networks ships product updates to address critical security vulnerabilities. [Read More]
Microsoft's security response team late Thursday acknowledged a new, unpatched bug that exposes Windows users to privilege escalation attacks. [Read More]
A security flaw in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software could allow a remote attacker to trigger a denial-of-service condition. [Read More]
The search advertising giant released a Chrome security refresh overnight with a warning that malicious hackers are actively exploiting a critical type confusion vulnerability to launch malware attacks. [Read More]
Microsoft partners with Citizen Lab to identify a mysterious commercial surveillance company in Israel selling zero-days and high-end spyware to government hackers. [Read More]
Facebook's security team issues a warning about Tortoiseshell, an Iranian hacking group targeting military personnel and defense organizations in the United States. [Read More]
- 1 of 156
- ››
FEATURES, INSIGHTS // Virus & Malware
Today’s email-based attacks don’t occur at a single point in time and use multiple methods to evade detection. To bolster protection, organizations may turn to a set of disparate products that don’t – and can’t – work together.
To limit the risk of having drive-by malware attacks planted on their websites, organizations should monitor the payload of their different Internet properties, which for larger organizations can easily become a huge undertaking.
Malvertising underscores the need for an approach to security that addresses the full attack continuum. With ongoing visibility and control, and intelligent and continuous updates, security professionals can take action to stop the inevitable outbreak.
Just as offices need to detect break-ins to keep criminals from committing industrial espionage, enterprises need to put more focus on detecting APTs and other advanced threats to keep adversaries from their network.
While obscuring website code, server architecture, and security mechanisms doesn’t provide bullet-proof security on its own, it is actually pretty effective.
Even with the basics covered, we also have to be on the lookout for unknown threats and anomalies in our networks that can be an indicator of compromise.
Was the Mayan Apocalypse was a myth? Since I am a security geek, I just happen to talk about security a lot. What are some security myths I have heard in my conversations with some very bright people?
As with most stories Mac-related, the malware-is-finally-coming story attracted a lot of press. But the desktop Mac OS might not be attractive to attackers as you might think.
We still don't know who created Conficker or what that person’s motivations were. What we do know: Conficker could have proved much more damaging than it ultimately did, but the threat has not entirely disappeared.
Enjoy this selection of top picks for 2010, listed in no particular order. Happy New Year!
- 1 of 2
- ››
Get the Daily Briefing
- Amnesty Urges Moratorium on Surveillance Technology in Pegasus Scandal
- What We Learn from MITRE's Most Dangerous Software Weaknesses List
- 'Holy Moly!': Inside Texas' Fight Against a Ransomware Hack
- Leading Threat to Industrial Security is Not What You Think
- GitLab Releases Open Source Tool for Hunting Malicious Code in Dependencies
- Enterprises Warned of New PetitPotam Attack Exposing Windows Domains
- Threat Actors Target Kubernetes Clusters via Argo Workflows
- House Passes Several Critical Infrastructure Cybersecurity Bills
- TikTok fined €750,000 for Violating Children's Privacy
- Dutch Police Arrest Alleged Member of 'Fraud Family' Cybercrime Gang
Copyright © 2021 Wired Business Media. All Rights Reserved. Privacy Policy