Dark Reading | Security | Protect The Business

IW Home

Advertise With Us

About Us

Digital Subscription

Stolen Passwords Used In Most Data Breaches

Heartbleed Attack Targeted Enterprise VPN

Heartbleed: A Password Manager Reality Check

Top Stories

Stolen Passwords Used In Most Data Breaches

FAQ: Understanding The True Price of ...

Heartbleed Attack Targeted Enterprise VPN

Cartoon: E2c$y5tion

Heartbleed: A Password Manager Reality Check

News & Commentary

Michaels Data Breach Response: 7 Facts

News

Could the retailer have done more to spot the eight-month intrusion in the first place?

By Mathew J. Schwartz , 4/22/2014

1 Comment | Read | Post a Comment

Latest Comment: Robert McDougal, The article quotes Gartner researcher Avivah Litan stating that it is...

Bots Attack US Mainly During Dinnertime

Kelly Jackson Higgins, Senior Editor, Dark Reading

Quick Hits

Most bot-infected machines hail from the US and wage attacks there between 6 and 9 p.m. Eastern Time, new report finds.

By Kelly Jackson Higgins Senior Editor, Dark Reading, 4/22/2014

4 comments | Read | Post a Comment

Latest Comment: securityaffairs, It's a good time to take the defense by surprise ... nothing more,...

7 Tips To Improve 'Signal-to-Noise' In The SOC

Joshua Goldfarb, CSO, nPulse Technologies

Commentary

When security analysts are desensitized to alerts because of sheer volume, they miss the true positives that can prevent a large-scale data breach. Here's how to up your game.

By Joshua Goldfarb CSO, nPulse Technologies, 4/22/2014

2 comments | Read | Post a Comment

Latest Comment: jg@npulsetech.com, Excellent question, Marilyn, and thank you. In my experience, organizations...

Free Scanning Tool Promises To Find Heartbleed On Any Device

Tim Wilson, Editor in Chief, Dark Reading

Quick Hits

CrowdStrike says tool identifies the flaw on web servers, VPNs, servers, routers, printers, and phones.

By Tim Wilson Editor in Chief, Dark Reading, 4/22/2014

3 comments | Read | Post a Comment

Latest Comment: Robert McDougal, I have already tested my corporate environment using both the Nessus Heart...

Stolen Passwords Used In Most Data Breaches

News

New Verizon 2014 Data Breach Investigations Report identifies nine types of attack patterns that accounted for 93 percent of security incidents in the past decade.

By Kelly Jackson Higgins Senior Editor, Dark Reading, 4/22/2014

7 comments | Read | Post a Comment

Latest Comment: Marilyn Cohodas, In case you missed the link to the full report in Kelly's news story, you can...

FAQ: Understanding The True Price of Encryption

Commentary

In the wake of recent events like Heartbleed, the search for cost-effective, easy, and scalable encryption solutions has never been more important.

By Sol Cates CSO, Vormetric, 4/21/2014

5 comments | Read | Post a Comment

Latest Comment: theb0x, I'm surpsied there are still software companies that actively utilize encryption...

Heartbleed Attack Targeted Enterprise VPN

News

Attack spotted using the OpenSSL Heartbleed bug to steal session tokens and bypass two-factor authentication.

By Mathew J. Schwartz , 4/21/2014

2 comments | Read | Post a Comment

Latest Comment: AmmarNaeem, The Heartbleed bug is making headlines people! CNN Money reported yesterday...

Michaels Retail Chain Reveals Details Of Breach: Nearly 3M Affected

Quick Hits

Attack on point-of-sale systems went on for more than six months, officials say.

By Tim Wilson Editor in Chief, Dark Reading, 4/18/2014

4 comments | Read | Post a Comment

Latest Comment: DarkReadingTim, Agreed, Robert. Michaels did not give details on the malware itself,...

Poll: Dark Reading Community Acts On Heartbleed

Marilyn Cohodas, Community Editor, Dark Reading

Commentary

Roughly 60 percent of respondents to our flash poll have installed the Heartbeat fix or are in the process of doing so.

By Marilyn Cohodas Community Editor, Dark Reading, 4/18/2014

2 comments | Read | Post a Comment

Latest Comment: Marilyn Cohodas, Paul, In terms of our poll, do you think the fact that only 30 percent...

Heartbleed: A Password Manager Reality Check

News

Is a password manager an effective defense against vulnerabilities like Heartbleed, or just another way to lose data to hackers?

By Mathew J. Schwartz , 4/18/2014

13 comments | Read | Post a Comment

Latest Comment: Markus5, I use Sticky Password. These guys are great, secure and cheap. However nice...

Phishers Recruit Home PCs

Brian Prince, Contributing Writer, Dark Reading

News

Residential broadband machines spotted hosting phishing attacks.

By Brian Prince Contributing Writer, Dark Reading, 4/18/2014

5 comments | Read | Post a Comment

Latest Comment: Marilyn Cohodas, It's hard for me to imagine that users who already have difficulty managing...

SQL Injection Cleanup Takes Two Months or More

Quick Hits

A new report highlights the prevalence and persistence of SQL injection attacks.

By Kelly Jackson Higgins Senior Editor, Dark Reading, 4/17/2014

1 Comment | Read | Post a Comment

Latest Comment: Marilyn Cohodas, Interesting data, Kelly. Wondering if the Ponemon study quantified any of the...

Satellite Communications Wide Open To Hackers

News

Satellite terminals widely used in transportation, military, and industrial plants contain backdoors, hardcoded credentials, weak encryption algorithms, and other design flaws, a new report says.

By Kelly Jackson Higgins Senior Editor, Dark Reading, 4/17/2014

3 comments | Read | Post a Comment

Latest Comment: Kelly Jackson Higgins, These findings are reminiscent of vulnerabilities in ICS/SCADA products. It's...

11 Heartbleed Facts: Vulnerability Discovery, Mitigation Continue

News

Millions of websites, applications from Cisco and VMware, Google Play apps, as well as millions of Android devices are vulnerable -- and the list keeps growing.

By Mathew J. Schwartz , 4/17/2014

2 comments | Read | Post a Comment

Latest Comment: Bprince, This is a great post Matt. Does anyone have a problem with the way companies...

Microsoft Delays Enterprise Windows 8.1 Support Doomsday

News

Responding to criticism, Microsoft gives businesses until August to adopt Windows 8.1 Update and continue receiving security updates. Consumers still face May 13 deadline.

By Mathew J. Schwartz , 4/17/2014

1 Comment | Read | Post a Comment

Latest Comment: Robert McDougal, While this sounds like a heavy handed action from Microsoft, it is in line...

How A Little Obscurity Can Bolster Security

Corey Nachreiner, Director, Security Strategy & Research, WatchGuard Technologies

Commentary

Most security professionals deride the idea of "security by obscurity." Is it time to re-evaluate the conventional wisdom?

By Corey Nachreiner Director, Security Strategy & Research, WatchGuard Technologies, 4/17/2014

18 comments | Read | Post a Comment

Latest Comment: theb0x, I have always liked the old saying "A locked door keeps an honest man out."...

Did A Faulty Memory Feature Lead To Heartbleed?

News

Debate arises over an older memory allocation feature in OpenSSL, and the OpenBSD community starts to tear down and revise the crypto software for its own use.

By Kelly Jackson Higgins Senior Editor, Dark Reading, 4/16/2014

5 comments | Read | Post a Comment

Latest Comment: macker490, you don't blame the tools for sloppy work. heartbleed was caused by a crass...

The Real Wakeup Call From Heartbleed

Commentary

There's nothing special about Heartbleed. It’s another flaw in a popular library that exposed a lot of servers to attack. The danger lies in the way software libraries are built and whether they can be trusted.

By Jeff Williams CTO, Contrast Security, 4/16/2014

10 comments | Read | Post a Comment

Latest Comment: planetlevel, I think you're confusing insurance with assurance. If I provide some kind of...

Smartphone Kill Switches Coming, But Critics Cry Foul

Commentary

Smartphone makers and carriers agree to add optional kill switches to smartphones, but law enforcement officials say the anti-theft effort doesn't go far enough.

By Thomas Claburn Editor-at-Large, 4/16/2014

18 comments | Read | Post a Comment

Latest Comment: micjustin33, I don't know how much kill switch option is useful for smartphones ..

Mobility: Who Bears The Brunt Of Data Security & Privacy

Grayson Milbourne, Director, Security Intelligence, Webroot

Commentary

OS manufacturers, app developers, and consumers all have a role to play in smartphone data security. But not everyone is equally responsible.

By Grayson Milbourne Director, Security Intelligence, Webroot, 4/16/2014

3 comments | Read | Post a Comment

Latest Comment: Marilyn Cohodas, As a consumer, i really like the idea of having a security rating on an apps...

More Stories

Current Conversations

Posted by securityaffairs

It's a good time to take the defense by surprise ... nothing more, but we have to consider that it is just a tentative. I have found very interesting the data on bad bot originator by country, in particular...

In reply to: Re: Hungry Bots
Post Your Own Reply

Posted by Robert McDougal

I agree with the logic of launching attacks when no one is looking as well. However, it also corresponds to the start of the business day in countries such as China, where many attacks originate.

In reply to: Re: Hungry Bots
Post Your Own Reply

Posted by Robert McDougal

The article quotes Gartner researcher Avivah Litan stating that it is not fair to expect retailers to have expert forensic teams on call at all times. While I agree with that statement, (forensic teams, if not...

In reply to: Should Michaels have done more?
Post Your Own Reply

Posted by Robert McDougal

I have already tested my corporate environment using both the Nessus Heart Bleed plugin (http://www.tenable.com/plugins/index.php?view=single&id=73412) and this python script (https://gist.github.com/eelsivart/10174134)...

In reply to: Re: Narrowing the Scope
Post Your Own Reply

Posted by cft28977

So is this like a storage company as well, like Dropbox or DriveHQ? Or is this something you would use with one of those vendors? Thanks.

In reply to: Still confused
Post Your Own Reply

Posted by Kelly Jackson Higgins

Good question, Marilyn. The report attributes it to the attackers waiting for most IT and web security pros to leave the office for the day--kind of like how many attacks occur after hours or on weekends, when the security...

In reply to: Re: Hungry Bots
Post Your Own Reply

Posted by Marilyn Cohodas

Interesting about the timing around dinner time. Is there a theory about why then? Or just coincidence?

In reply to: Hungry Bots
Post Your Own Reply

Posted by Marilyn Cohodas

Communication is a critical skill for both CIOs and CSOs in dealing with top executives . But no less important, as Eric rightly points out in his blog, is for the CIO and CSO to talk to each other.

In reply to: Re: A Partnership Mentality
Post Your Own Reply

Posted by GonzSTL

100% agree. I think that a major obstacle in Information Security is the inability of the security professional to communicate effectively. Managing upwards can be a daunting task in itself, and it isn't easy to draft messages...

In reply to: Re: A Partnership Mentality
Post Your Own Reply

Posted by eric7095

Bottom line is there needs to be someone in the organization that understands security, can translate between technical and business language, and clearly articulate metric based risks to the executives. ...

In reply to: Re: A Partnership Mentality
Post Your Own Reply

Posted by jg@npulsetech.com

Excellent question, Marilyn, and thank you. In my experience, organizations too often take an "all or nothing" approach to managing the noise level. For example, an organization may say "we get too many alerts...

In reply to: Re: Lowering the noise level
Post Your Own Reply

Posted by GonzSTL

IT and IS are related but also separate areas of focus. I believe we are past the critical juncture where IT and IS diverge. It is just a matter of time before the remaining organizations adapt to this reality. Unfortunately,...

In reply to: Re: A Partnership Mentality
Post Your Own Reply

More Conversations

Security Insights

Preying On A Predator

Mac OS X Snow Leopard is perfectly positioned to be the next target for cybercriminals.

0 comments
Read | Post a Comment

More Sophos Security Insights

Products & Releases

NIST Removes Cryptography Algorithm from Random Number Generator Recommendations

Black Lotus Threat Report Predicts New DrDoS Attacks in Excess of 800 Gbps in 2015

Cloud Control: Launch of Entrust IdentityGuard Cloud Services Simplifies Certificate Management, Credentialing

Verizon Expands Cloud Solutions, With Secure Cloud Interconnect

Mocana Calls Heartbleed a “Wake-Up Call” for Makers of Smart Connected Devices

HID Global Security Survey and Infographic Reveal Attitudes about Best Practices for Physical Access Control

Cisco Launches Managed Threat Defense Service

Belden Rolls Out Advanced Cyber Security Toolkit

More Products & Releases

PR Newswire

Hot Topics

Editors' Choice

How A Little Obscurity Can Bolster Security

Corey Nachreiner, Director, Security Strategy & Research, WatchGuard Technologies, 4/17/2014

Heartbleed: A Password Manager Reality Check

Mathew J. Schwartz 4/18/2014

The Real Wakeup Call From Heartbleed

Jeff Williams, CTO, Contrast Security, 4/16/2014

Live Events

Webinars

More UBM Tech
Live Events

Enterprise Connect Lync Tour

Tower & Small Cell Summit

Cartoon

Latest Comment: #Win: "I don't move my lips while typing"

Cartoon Archive

White Papers

Mixed All Flash Arrays Delivers Safer Higher Performance

Dell Case Study Report: Amerijet - Flying Right with a Next-Generation Data Center

Boosting Storage Performance for IO Intensive Enterprise Applications

Approaches to DDoS Protection: An Overview on Keeping Your Networks Protected

Five Steps to Prepare for a DDoS Attack

More White Papers

Current Issue

Dark Reading April 2014

Download This Issue!

Subscribe Now!

Back Issues | Must Reads

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2013-1421

Published: 2014-04-22
Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar before 1.2.5, 1.2.6, and other versions before 1.2.7 allows remote attackers to inject arbitrary web script or HTML via the Category Name field to category.php.

CVE-2013-2105

Published: 2014-04-22
The Show In Browser (show_in_browser) gem 0.0.3 for Ruby allows local users to inject arbitrary web script or HTML via a symlink attack on /tmp/browser.html.

CVE-2013-2187

Published: 2014-04-22
Cross-site scripting (XSS) vulnerability in Apache Archiva 1.2 through 1.2.2 and 1.3 before 1.3.8 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, related to the home page.

CVE-2013-4116

Published: 2014-04-22
lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are created when unpacking archives.

CVE-2013-4472

Published: 2014-04-22
The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.

Best of the Web

Heartbleed as Metaphor

How Heartbleed transformed HTTPS security into the stuff of absurdist theater

Cyber Attack Exercise Reveals Information Sharing Struggles in Healthcare Industry

Easter egg: DSL router patch merely hides backdoor instead of closing it

Critical update makes P2P Zeus trojan even tougher to remove

Reports

Infographics

Containing Corporate Data on Mobile Devices

If you’re still focused on securing endpoints, you’ve got your work cut out for you. WiFi network provider iPass surveyed 1,600 mobile workers and found that the average US employee carries three devices -- a smartphone, a computer, and a tablet or e-reader -- with more than 80% of them doing work on personal devices.

Download Now!

More Reports