Advertise

Analytics //

Security Monitoring

News & Commentary

Improving the Adoption of Security Automation

Dan Koloski, Vice President, Oracle's Systems Management and Security products group

Commentary

Four barriers to automation and how to overcome them.

By Dan Koloski Vice President, Oracle's Systems Management and Security products group, 6/20/2018

1 Comment | Read | Post a Comment

Latest Comment: nathanluise92, You mention only 4 barriers, but what if it is more than 4? Also it depends...

Panorays Debuts With $5 Million Investment

Quick Hits

Panorays, a company focusing on third-party security issues for the enterprise, has exited stealth mode.

By Dark Reading Staff , 6/5/2018

0 comments | Read | Post a Comment

I, for One, Welcome Our Robotic Security Overlords

Commentary

Automation will come in more subtle ways than C-3PO — and it's transforming cybersecurity.

By Danelle Au VP Strategy, SafeBreach, 6/5/2018

0 comments | Read | Post a Comment

Building a Safe, Efficient, Cost-Effective Security Infrastructure

Ken Mills, General Manager of IoT, Surveillance and Security, Dell EMC

Commentary

The Industrial Internet of Things allows organizations to address both physical and digital security concerns.

By Ken Mills General Manager of IoT, Surveillance and Security, Dell EMC, 6/4/2018

3 comments | Read | Post a Comment

Latest Comment: OtherKen, Paul Thank you taking time to read my article. You are right that IoT is all...

FireEye Offers Free Tool to Detect Malicious Remote Logins

Kelly Jackson Higgins, Executive Editor at Dark Reading

News

Open source GeoLogonalyzer helps to weed out hackers exploiting stolen credentials to log into their targets.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 5/30/2018

0 comments | Read | Post a Comment

Machine Learning, Artificial Intelligence & the Future of Cybersecurity

Commentary

The ability to learn gives security-focused AI and ML apps unrivaled speed and accuracy over their more basic, automated predecessors. But they are not a silver bullet. Yet.

By Craig Hinkley CEO, WhiteHat Security, 5/30/2018

0 comments | Read | Post a Comment

6 Steps for Applying Data Science to Security

Two experts share their data science know-how in a tutorial focusing on internal DNS query analysis.

By Steve Zurier Freelance Writer, 5/23/2018

0 comments | Read | Post a Comment

New Survey Shows Hybrid Cloud Confidence

Quick Hits

Executives are mostly confident in their hybrid cloud security, according to the results of a new survey.

By Dark Reading Staff , 4/23/2018

0 comments | Read | Post a Comment

How Measuring Security for Risk & ROI Can Empower CISOs

Vikram Phatak, Chief Executive Officer of NSS Labs

Commentary

For the vast majority of business decisions, organizations seek metrics-driven proof. Why is cybersecurity the exception?

By Vikram Phatak Chief Executive Officer of NSS Labs, 3/28/2018

1 Comment | Read | Post a Comment

Latest Comment: AnnaEverson, Thanks a lot for such incredible article) I think it is really usefull...

The Containerization of Artificial Intelligence

Hamid Karimi, VP of Business Development at Beyond Security

Commentary

AI automates repetitive tasks and alleviates mundane functions that often haunt decision makers. But it's still not a sure substitute for security best practices.

By Hamid Karimi VP of Business Development at Beyond Security, 3/16/2018

1 Comment | Read | Post a Comment

Latest Comment: AnnaEverson, You need more example - nothing to analyse(

Critical Start to Buy Advanced Threat Analytics

Quick Hits

Firms previously had teamed up in SOC services.

By Dark Reading Staff , 3/15/2018

1 Comment | Read | Post a Comment

Latest Comment: AnnaEverson, What is that for ?

Security Worries? Let Policies Automate the Right Thing

Commentary

By programming 'good' cybersecurity practices, organizations can override bad behavior, reduce risk, and improve the bottom line.

By John De Santis CEO, HyTrust, 12/20/2017

7 comments | Read | Post a Comment

Latest Comment: JohnTMoran, That's the key though; the goal of automation should be to support people,...

Comprehensive Endpoint Protection Requires the Right Cyber Threat Intelligence

Adam Meyers, VP of Intelligence, CrowdStrike

Commentary

CTI falls into three main categories -- tactical, operational, and strategic -- and answers questions related to the "who, what, and why" of a cyber attack.

By Adam Meyers VP of Intelligence, CrowdStrike, 12/19/2017

1 Comment | Read | Post a Comment

Latest Comment: DoothCom, So what would the learning curve look like for older companies adjusting...

Improve Signal-to-Noise Ratio with 'Content Curation:' 5 Steps

Commentary

By intelligently managing signatures, correlation rules, filters and searches, you can see where your security architecture falls down, and how your tools can better defend the network.

By Justin Monti CTO, MKACyber, 12/5/2017

0 comments | Read | Post a Comment

The Looming War of Good AI vs. Bad AI

Derek Manky, Global Security Strategist, Fortinet

Commentary

The rise of artificial intelligence, machine learning, hivenets, and next-generation morphic malware is leading to an arms race that enterprises must prepare for now.

By Derek Manky Global Security Strategist, Fortinet, 11/28/2017

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, First thought - Glinda to Dorothy "Are you a good AI or a bad AI?" I'm...

121 Pieces of Malware Flagged on NSA Employee's Home Computer

News

Kaspersky Lab's internal investigation found a backdoor Trojan and other malware on the personal computer of the NSA employee who took home agency hacking tools.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/16/2017

6 comments | Read | Post a Comment

Latest Comment: DavidLycope, Is this a joke ? how can you be so greedy ? 9.95$ huh

Death of the Tier 1 SOC Analyst

News

Say goodbye to the entry-level security operations center (SOC) analyst as we know it.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/16/2017

3 comments | Read | Post a Comment

Latest Comment: rkjensrud, Very informative and you make some great points!

Deception Technology: Prevention Reimagined

Ofer Israeli, CEO & Founder, Illusive Networks

Commentary

How state-of-the-art tools make it practical and cost-effective to identify and engage attackers in early lateral movement stages to prevent them from reaching critical systems and data.

By Ofer Israeli CEO & Founder, Illusive Networks, 11/15/2017

1 Comment | Read | Post a Comment

Latest Comment: Oliver.Rochford, Deception is definitely coming of age. I have long been a proponent of using...

Siemens Teams Up with Tenable

News

ICS/SCADA vendor further extends its managed security services for critical infrastructure networks.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/8/2017

0 comments | Read | Post a Comment

Advanced Analytics + Frictionless Security: What CISOS Need to Know

Commentary

Advances in analytics technologies promise to make identity management smarter and more transparent to users. But the process is neither straightforward nor easy.

By Saryu Nayyar CEO, Gurucul, 10/25/2017

0 comments | Read | Post a Comment

More Stories

Current Conversations

Posted by OtherKen

Paul Thank you taking time to read my article. You are right that IoT is all about communication between things, people and the data. The challenge is how to manage all this new data and to determine what is important and...

In reply to: Re: hi
Post Your Own Reply

Posted by Christian Bryant

One of the things we see often in suspense thrillers is the "eye in the sky" concept. In fact, IoT is absolutely at the heart of what is possible in terms of securing public and private safety. By putting focus on Internet...

In reply to: Real-Time Video/Audio Scanning w/Shape Detection & Adaptive Pattern Recognition
Post Your Own Reply

Posted by PaulChau

Right now, the most important commodity in the world is the ability for swift and efficient communication. Not just amongst people but amongst things to, and that's why this whole internet of things thing has come about...

In reply to: hi
Post Your Own Reply

Posted by Ritu_G

Their security system specialists obviously need to resit for their security courses and tests. Due to their poor choice of defense mechanisms on that fateful day, things had turned out like how the retailer wouldn't have...

In reply to: Re: Deactivation of FireEye's Automatic Response
Post Your Own Reply

Posted by Ritu_G

In reply to: Re: Deactivation of FireEye's Automatic Response
Post Your Own Reply

Posted by nathanluise92

You mention only 4 barriers, but what if it is more than 4? Also it depends from the manufacturing issues and some addtional needs. What to do in such cases? Can you suggest any great examples of dealing with this proble...

In reply to: More barriers
Post Your Own Reply

Posted by joe9804

After watching your article I want to share my personal experience with you guys. Some days ago I was a yahoo mail user. But I don't know how one day my account was hacked. I searched for Yahoo support in the Google and...

In reply to: I want to share my personal experience.
Post Your Own Reply

Posted by entucaro

Look's like the VC's aren't doing so bad https://techcrunch.com/2018/02/27/splunks-data-analytics-gets-a-security-boost-with-350-million-acquisition-of-phantom-cyber/

In reply to: Re: VCs wasting their money
Post Your Own Reply

Posted by semidot

Cloud is offering good features.

In reply to: Cloud
Post Your Own Reply

Posted by AnnaEverson

What is that for ?

In reply to: What is that for?
Post Your Own Reply

Posted by AnnaEverson

You need more example - nothing to analyse(

In reply to: Analys
Post Your Own Reply

Posted by AnnaEverson

Thanks a lot for such incredible article) I think it is really usefull and suitable as for me

In reply to: Interesting
Post Your Own Reply

More Conversations

Products & Releases

JASK Announces $25M Series B Financing Led by Kleiner Perkins

Tripwire Debuts Cybersecurity Suite for Protecting Industrial Control Systems (ICS)

Respond Software Powers Self-Driving SOC

Exabeam Secures $30 Million in Series C Funding to Disrupt SIEM market

Thycotic Acquires Cyber Algorithms

FireMon Welcomes New President & CEO, Satin H. Mirchandani

LogRhythm Closes $50 Million Financing to Extend Global Leadership in Security Intelligence and Analytics

PacketSled Secures $5M in Series A Financing

More Products & Releases

Hot Topics

Editors' Choice

White House Cybersecurity Strategy at a Crossroads

Kelly Jackson Higgins, Executive Editor at Dark Reading, 7/17/2018

Mueller Probe Yields Hacking Indictments for 12 Russian Military Officers

Kelly Jackson Higgins, Executive Editor at Dark Reading, 7/13/2018

10 Ways to Protect Protocols That Aren't DNS

Curtis Franklin Jr., Senior Editor at Dark Reading, 7/16/2018

Live Events

Webinars

More UBM Tech
Live Events

INsecurity Conference - An Event Like No Other

Black Hat Trainings - October 22 & 23

Are You Looking to Learn About New Cybersecurity Threats & Challenges? Then INsecurity Is For You!

White Papers

The Next Gen of IT Support

Bug Hunters Bounties Make The Internet Safer

Protecting Against the Top 5 Attack Vectors

[Guide] Setting Up an Application Security Program

[Cybersecurity] 11 key points to consider when choosing a solution

More White Papers

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: This comment is waiting for review by our moderators.

Cartoon Archive

Current Issue

The Changing Role of the CISO

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The State of IT and Cybersecurity

IT and security are often viewed as different disciplines - and different departments. Find out what our survey data revealed, read the report today!

Download Now!

[Strategic Security Report] Navigating the Threat Intelligence Maze

0 comments

[Strategic Security Report] Assessing Cybersecurity Risk

0 comments

New Best Practices for Secure App Development

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-10869
PUBLISHED: 2018-07-19

redhat-certification does not properly restrict files that can be download through the /download page. A remote attacker may download any file accessible by the user running httpd.

CVE-2018-10870
PUBLISHED: 2018-07-19

redhat-certification does not properly sanitize paths in rhcertStore.py:__saveResultsFile. A remote attacker could use this flaw to overwrite any file, potentially gaining remote code execution.

CVE-2018-12959
PUBLISHED: 2018-07-19

The approveAndCall function of a smart contract implementation for Aditus (ADI), an Ethereum ERC20 token, allows attackers to steal assets (e.g., transfer all contract balances into their account).

CVE-2018-14336
PUBLISHED: 2018-07-19

TP-Link WR840N devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses.

CVE-2018-10620
PUBLISHED: 2018-07-19

AVEVA InduSoft Web Studio v8.1 and v8.1SP1, and InTouch Machine Edition v2017 8.1 and v2017 8.1 SP1 a remote user could send a carefully crafted packet to exploit a stack-based buffer overflow vulnerability during tag, alarm, or event related actions such as read and write, with potential for code t...

Terms of Service
Privacy Statement
Legal Entities