Advertise

Analytics //

Security Monitoring

News & Commentary

Panorays Debuts With $5 Million Investment

Quick Hits

Panorays, a company focusing on third-party security issues for the enterprise, has exited stealth mode.

By Dark Reading Staff , 6/5/2018

0 comments | Read | Post a Comment

I, for One, Welcome Our Robotic Security Overlords

Commentary

Automation will come in more subtle ways than C-3PO — and it's transforming cybersecurity.

By Danelle Au VP Strategy, SafeBreach, 6/5/2018

0 comments | Read | Post a Comment

Building a Safe, Efficient, Cost-Effective Security Infrastructure

Ken Mills, General Manager of IoT, Surveillance and Security, Dell EMC

Commentary

The Industrial Internet of Things allows organizations to address both physical and digital security concerns.

By Ken Mills General Manager of IoT, Surveillance and Security, Dell EMC, 6/4/2018

0 comments | Read | Post a Comment

FireEye Offers Free Tool to Detect Malicious Remote Logins

Kelly Jackson Higgins, Executive Editor at Dark Reading

News

Open source GeoLogonalyzer helps to weed out hackers exploiting stolen credentials to log into their targets.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 5/30/2018

0 comments | Read | Post a Comment

Machine Learning, Artificial Intelligence & the Future of Cybersecurity

Commentary

The ability to learn gives security-focused AI and ML apps unrivaled speed and accuracy over their more basic, automated predecessors. But they are not a silver bullet. Yet.

By Craig Hinkley CEO, WhiteHat Security, 5/30/2018

0 comments | Read | Post a Comment

6 Steps for Applying Data Science to Security

Two experts share their data science know-how in a tutorial focusing on internal DNS query analysis.

By Steve Zurier Freelance Writer, 5/23/2018

0 comments | Read | Post a Comment

New Survey Shows Hybrid Cloud Confidence

Quick Hits

Executives are mostly confident in their hybrid cloud security, according to the results of a new survey.

By Dark Reading Staff , 4/23/2018

0 comments | Read | Post a Comment

How Measuring Security for Risk & ROI Can Empower CISOs

Vikram Phatak, Chief Executive Officer of NSS Labs

Commentary

For the vast majority of business decisions, organizations seek metrics-driven proof. Why is cybersecurity the exception?

By Vikram Phatak Chief Executive Officer of NSS Labs, 3/28/2018

1 Comment | Read | Post a Comment

Latest Comment: AnnaEverson, Thanks a lot for such incredible article) I think it is really usefull...

The Containerization of Artificial Intelligence

Hamid Karimi, VP of Business Development at Beyond Security

Commentary

AI automates repetitive tasks and alleviates mundane functions that often haunt decision makers. But it's still not a sure substitute for security best practices.

By Hamid Karimi VP of Business Development at Beyond Security, 3/16/2018

1 Comment | Read | Post a Comment

Latest Comment: AnnaEverson, You need more example - nothing to analyse(

Critical Start to Buy Advanced Threat Analytics

Quick Hits

Firms previously had teamed up in SOC services.

By Dark Reading Staff , 3/15/2018

1 Comment | Read | Post a Comment

Latest Comment: AnnaEverson, What is that for ?

Security Worries? Let Policies Automate the Right Thing

Commentary

By programming 'good' cybersecurity practices, organizations can override bad behavior, reduce risk, and improve the bottom line.

By John De Santis CEO, HyTrust, 12/20/2017

7 comments | Read | Post a Comment

Latest Comment: JohnTMoran, That's the key though; the goal of automation should be to support people,...

Comprehensive Endpoint Protection Requires the Right Cyber Threat Intelligence

Adam Meyers, VP of Intelligence, CrowdStrike

Commentary

CTI falls into three main categories -- tactical, operational, and strategic -- and answers questions related to the "who, what, and why" of a cyber attack.

By Adam Meyers VP of Intelligence, CrowdStrike, 12/19/2017

1 Comment | Read | Post a Comment

Latest Comment: DoothCom, So what would the learning curve look like for older companies adjusting...

Improve Signal-to-Noise Ratio with 'Content Curation:' 5 Steps

Commentary

By intelligently managing signatures, correlation rules, filters and searches, you can see where your security architecture falls down, and how your tools can better defend the network.

By Justin Monti CTO, MKACyber, 12/5/2017

0 comments | Read | Post a Comment

The Looming War of Good AI vs. Bad AI

Derek Manky, Global Security Strategist, Fortinet

Commentary

The rise of artificial intelligence, machine learning, hivenets, and next-generation morphic malware is leading to an arms race that enterprises must prepare for now.

By Derek Manky Global Security Strategist, Fortinet, 11/28/2017

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, First thought - Glinda to Dorothy "Are you a good AI or a bad AI?" I'm...

121 Pieces of Malware Flagged on NSA Employee's Home Computer

News

Kaspersky Lab's internal investigation found a backdoor Trojan and other malware on the personal computer of the NSA employee who took home agency hacking tools.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/16/2017

6 comments | Read | Post a Comment

Latest Comment: DavidLycope, Is this a joke ? how can you be so greedy ? 9.95$ huh

Death of the Tier 1 SOC Analyst

News

Say goodbye to the entry-level security operations center (SOC) analyst as we know it.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/16/2017

3 comments | Read | Post a Comment

Latest Comment: rkjensrud, Very informative and you make some great points!

Deception Technology: Prevention Reimagined

Ofer Israeli, CEO & Founder, Illusive Networks

Commentary

How state-of-the-art tools make it practical and cost-effective to identify and engage attackers in early lateral movement stages to prevent them from reaching critical systems and data.

By Ofer Israeli CEO & Founder, Illusive Networks, 11/15/2017

1 Comment | Read | Post a Comment

Latest Comment: Oliver.Rochford, Deception is definitely coming of age. I have long been a proponent of using...

Siemens Teams Up with Tenable

News

ICS/SCADA vendor further extends its managed security services for critical infrastructure networks.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/8/2017

0 comments | Read | Post a Comment

Advanced Analytics + Frictionless Security: What CISOS Need to Know

Commentary

Advances in analytics technologies promise to make identity management smarter and more transparent to users. But the process is neither straightforward nor easy.

By Saryu Nayyar CEO, Gurucul, 10/25/2017

0 comments | Read | Post a Comment

Unstructured Data: The Threat You Cannot See

Charles Fullwood, Software Practice Director at Force 3

Commentary

Why security teams needs to take a cognitive approach to the increasing volumes of data flowing from sources they don't control.

By Charles Fullwood Software Practice Director at Force 3, 10/10/2017

0 comments | Read | Post a Comment

More Stories

Current Conversations

Posted by entucaro

Look's like the VC's aren't doing so bad https://techcrunch.com/2018/02/27/splunks-data-analytics-gets-a-security-boost-with-350-million-acquisition-of-phantom-cyber/

In reply to: Re: VCs wasting their money
Post Your Own Reply

Posted by semidot

Cloud is offering good features.

In reply to: Cloud
Post Your Own Reply

Posted by AnnaEverson

What is that for ?

In reply to: What is that for?
Post Your Own Reply

Posted by AnnaEverson

You need more example - nothing to analyse(

In reply to: Analys
Post Your Own Reply

Posted by AnnaEverson

Thanks a lot for such incredible article) I think it is really usefull and suitable as for me

In reply to: Interesting
Post Your Own Reply

Posted by mwatson1920

Mike Anders...I just saw this comment of yours from 3 years ago. Amazing still just as relevant and elusive today. I am a Cyber Intel instructor, may I use your "Cyber intel...more than the sum of all threat...

In reply to: Re: Cyber Intelligence and knowing what you know!
Post Your Own Reply

Posted by rkjensrud

Very informative and you make some great points!

In reply to: Re: reply
Post Your Own Reply

Posted by antivirussupport12

For better protection from Spyware, malware, and Virus, you can use Panda Antivirus which provide best Panda Customer Service to their user.

In reply to: Re: Feshop2017 Criminal Hackers, Carders forums, Dumps and Fullz CVV, and Identity Theft
Post Your Own Reply

Posted by Ashely

This is an area that requries added attention and has been noted it is on the rise with increased progress in technology. It has called for added attention and re-assessment of strategies by most lawyers near me. We need...

In reply to: Re: Change in the Horizon - www.lawyersoflasvegas.com
Post Your Own Reply

Posted by JohnTMoran

That's the key though; the goal of automation should be to support people, not to replace them. When the goal is to replace them, you are almost always setting yourself up for failure.

In reply to: Re: People are weakest link
Post Your Own Reply

Posted by deua16eex

lbert Gonzalez and his gang of criminal hackers were responsible for data breaches in retailers and payment processors, with some estimates saying they breached over 230 million records combined. Gonzalez, considered a proficient...

In reply to: Feshop2017 Criminal Hackers, Carders forums, Dumps and Fullz CVV, and Identity Theft
Post Your Own Reply

Posted by JohnGiordani

The reality is that very few IT administrators have an accurate picture of what is actually happening in the network and do not have automated tools that can quickly identify, interpret and act on threats. Network visibility...

In reply to: Visibility tools
Post Your Own Reply

More Conversations

Products & Releases

Tripwire Debuts Cybersecurity Suite for Protecting Industrial Control Systems (ICS)

Respond Software Powers Self-Driving SOC

Exabeam Secures $30 Million in Series C Funding to Disrupt SIEM market

Thycotic Acquires Cyber Algorithms

FireMon Welcomes New President & CEO, Satin H. Mirchandani

LogRhythm Closes $50 Million Financing to Extend Global Leadership in Security Intelligence and Analytics

PacketSled Secures $5M in Series A Financing

EventTracker Adds Unlimited Acquisition Model for Log Manager

More Products & Releases

Hot Topics

Editors' Choice

Why CISOs Need a Security Reality Check

Joel Fulton, Chief Information Security Officer for Splunk, 6/13/2018

Cisco Talos Summit: Network Defenders Not Serious Enough About Attacks

Curtis Franklin Jr., Senior Editor at Dark Reading, 6/13/2018

Four Faces of Fraud: Identity, 'Fake' Identity, Ransomware & Digital

David Shefter, Chief Technology Officer at Ziften Technologies, 6/14/2018

Live Events

Webinars

More UBM Tech
Live Events

INsecurity Conference - An Event Like No Other

Black Hat Trainings - October 22 & 23

Are You Looking to Learn About New Cybersecurity Threats & Challenges? Then INsecurity Is For You!

White Papers

2018 Security Report

The Next Gen of IT Support

[Cybersecurity] 11 key points to consider when choosing a solution

[Checklist] Next-Gen AV Product Vendor Selection

What attacks aren't you seeing?

More White Papers

Cartoon

Latest Comment: Nothing personal, I just don't like people.

Cartoon Archive

Current Issue

The Changing Role of the CISO

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The State of IT and Cybersecurity

IT and security are often viewed as different disciplines - and different departments. Find out what our survey data revealed, read the report today!

Download Now!

[Strategic Security Report] Navigating the Threat Intelligence Maze

0 comments

[Strategic Security Report] Assessing Cybersecurity Risk

0 comments

New Best Practices for Secure App Development

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-8030
PUBLISHED: 2018-06-20

A Denial of Service vulnerability was found in Apache Qpid Broker-J versions 7.0.0-7.0.4 when AMQP protocols 0-8, 0-9 or 0-91 are used to publish messages with size greater than allowed maximum message size limit (100MB by default). The broker crashes due to the defect. AMQP protocols 0-10 and 1.0 a...

CVE-2018-1117
PUBLISHED: 2018-06-20

ovirt-ansible-roles before version 1.0.6 has a vulnerability due to a missing no_log directive, resulting in the 'Add oVirt Provider to ManageIQ/CloudForms' playbook inadvertently disclosing admin passwords in the provisioning log. In an environment where logs are shared with other parties, this cou...

CVE-2018-11701
PUBLISHED: 2018-06-20

FastStone Image Viewer 6.2 has a User Mode Write AV at 0x005cb509, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.

CVE-2018-11702
PUBLISHED: 2018-06-20

FastStone Image Viewer 6.2 has a User Mode Write AV at 0x00578cb3, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.

CVE-2018-11703
PUBLISHED: 2018-06-20

FastStone Image Viewer 6.2 has a User Mode Write AV at 0x00402d6a, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.

Terms of Service
Privacy Statement
Legal Entities