Security Experts:

WRITE FOR US
Virus & Threats

LATEST SECURITY NEWS HEADLINES

rss icon

Verizon Publishes Vastly Expanded 2014 Data Breach Investigations Report
Bad Bot Percentage of Web Traffic Nearly Doubled in 2013: Report
AIG Expands Coverage to Include Physical Damage Caused By Cyber Attacks
Brazil Hosts Meeting to Craft Internet Governance Rules
Apple Issues Slew of Security Updates for OS X, iOS
long dotted

NEWS & INDUSTRY UPDATES

Attackers Use Facebook to Target Android Users
The goal of the attack is to circumvent the mobile transaction number authentication mechanisms used by banks, according to ESET.
Read More..
Heartbleed Flaw Used to Bypass Two-factor Authentication, Hijack User Sessions: Mandiant
According to researchers at Mandiant, now a unit of FireEye, an attacker was able to leverage the Heartbleed vulnerability against a customers’ VPN appliance and hijacked multiple active user sessions.
Read More..
GAO Report Knocks SEC for Cybersecurity Failings
A report from the GAO highlights cyber-security issues tied to the SEC's lack of oversight of a contractor during a system migration.
Read More..
Satellite Telecom Vulnerable to Hackers: Researchers
Security vulnerabilities in many satellite telecommunications systems leave them open to hackers, raising potential risks for aviation, shipping, military and other sectors.
Read More..
Oracle Releases Massive Security Update
The update includes fixes for critical vulnerabilities in Java SE and other products.
Read More..
SQL Injection Breaches Take Months to Uncover and Fix: Survey
A new survey of nearly 600 IT pros found that it takes on average 140 days to find breaches due to SQL injection attacks and 68 days to remediate them.
Read More..
Heartbleed Fix May Slow Web Performance
Web browsers may be overloaded by the overhaul of security certificates, leading to error messages and impacting Web performance.
Read More..
Dell SecureWorks Launches Managed Endpoint Threat Detection
Dell SecureWorks has added Advanced Endpoint Threat Detection (AETD) as the latest solution in its Advanced Threat Services portfolio.
Read More..
Heartbleed Hits 1.5 Million Users of UK Parenting Website
British parenting website Mumsnet is the latest organization to have been hacked due to the "Heartbleed" bug, founder Justine Roberts revealed.
Read More..
Akamai Reissuing SSL Keys After Flaw Found in Heartbleed Mitigation
Akamai Technologies admitted some custom code it thought protected users against the Heartbleed vulnerability is flawed.
Read More..

FEATURES, INSIGHTS // Virus & Threats

rss icon

Torsten George's picture
Security Threats: Risk's Often Neglected Step Child
Torsten George - Network Security
A threat is the agent that takes advantage of a vulnerability. This relationship must be a key factor in the risk assessment process and can no longer be treated as risk’s neglected step child.
Read full story
Marc Solomon's picture
News Junkies Make Great Targets
Marc Solomon - Email Security
Many continue to click on links or attachments sent via email without taking any steps to verify the origin of the email or the validity of the link or attachment. It only takes one click to for an attacker to establish a foothold in the target’s systems.
Read full story
Mark Hatton's picture
Five Considerations for Being Proactive Without Becoming a Problem Yourself
Mark Hatton - Risk Management
Here are five things I recommend security pros keep in mind when navigating the line between tight security and keeping the organization running at peak proficiency.
Read full story
Chris Hinkley's picture
Getting a Grip on The Internet of Things
Chris Hinkley - Vulnerabilities
Whether you’re buying a smart refrigerator for your home or a printer for your company, your first step is deciding the risk involved and how to deploy the device in a secure manner while preserving the functionality you require.
Read full story
Mark Hatton's picture
Can a Couple of Inches of Snow Change the Way We View Security?
Mark Hatton - Vulnerabilities
Predictive security narrows the scope considerably and helps IT and security pros zero-in on the most likely vulnerabilities and areas most-at-risk due to the sensitive nature of the data they hold.
Read full story
Chris Hinkley's picture
Disclosure: A Case for Bug Bounties
Chris Hinkley - Vulnerabilities
Vulnerabilities are a fact of life. Independent testing may be illegal without express permission, but that doesn’t stop code pillagers from sniffing out vulnerabilities and weaknesses in your web applications.
Read full story
Jon-Louis Heimerl's picture
Yes, Virginia, There Really is Social Engineering
Jon-Louis Heimerl - Email Security
Social engineering attacks can happen at any time. Here are some strategies you can use to help reduce the chances of a successful social engineering/phishing attack you or your organization.
Read full story
Torsten George's picture
Time to Rethink Vulnerability Management
Torsten George - Risk Management
Without putting vulnerabilities into the context of the risk associated with them, organizations often misalign their remediation resources.
Read full story
Mark Hatton's picture
As Security a Professional, What Will You Be Focused on in 2014?
Mark Hatton - Network Security
Complacency is never a good thing, but in security it can have devastating effects. While it’s good to acknowledge progress, that should never stand in the way of staying ahead of the next potential threat.
Read full story
Aviv Raff's picture
From Prevention to Detection: A Paradigm Shift in Enterprise Network Security
Aviv Raff - Virus & Malware
Just as offices need to detect break-ins to keep criminals from committing industrial espionage, enterprises need to put more focus on detecting APTs and other advanced threats to keep adversaries from their network.
Read full story