Advertise

Analytics //

Security Monitoring

News & Commentary

Improving the Adoption of Security Automation

Dan Koloski, Vice President, Oracle's Systems Management and Security products group

Commentary

Four barriers to automation and how to overcome them.

By Dan Koloski Vice President, Oracle's Systems Management and Security products group, 6/20/2018

0 comments | Read | Post a Comment

Panorays Debuts With $5 Million Investment

Quick Hits

Panorays, a company focusing on third-party security issues for the enterprise, has exited stealth mode.

By Dark Reading Staff , 6/5/2018

0 comments | Read | Post a Comment

I, for One, Welcome Our Robotic Security Overlords

Commentary

Automation will come in more subtle ways than C-3PO — and it's transforming cybersecurity.

By Danelle Au VP Strategy, SafeBreach, 6/5/2018

0 comments | Read | Post a Comment

Building a Safe, Efficient, Cost-Effective Security Infrastructure

Ken Mills, General Manager of IoT, Surveillance and Security, Dell EMC

Commentary

The Industrial Internet of Things allows organizations to address both physical and digital security concerns.

By Ken Mills General Manager of IoT, Surveillance and Security, Dell EMC, 6/4/2018

0 comments | Read | Post a Comment

FireEye Offers Free Tool to Detect Malicious Remote Logins

Kelly Jackson Higgins, Executive Editor at Dark Reading

News

Open source GeoLogonalyzer helps to weed out hackers exploiting stolen credentials to log into their targets.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 5/30/2018

0 comments | Read | Post a Comment

Machine Learning, Artificial Intelligence & the Future of Cybersecurity

Commentary

The ability to learn gives security-focused AI and ML apps unrivaled speed and accuracy over their more basic, automated predecessors. But they are not a silver bullet. Yet.

By Craig Hinkley CEO, WhiteHat Security, 5/30/2018

0 comments | Read | Post a Comment

6 Steps for Applying Data Science to Security

Two experts share their data science know-how in a tutorial focusing on internal DNS query analysis.

By Steve Zurier Freelance Writer, 5/23/2018

0 comments | Read | Post a Comment

New Survey Shows Hybrid Cloud Confidence

Quick Hits

Executives are mostly confident in their hybrid cloud security, according to the results of a new survey.

By Dark Reading Staff , 4/23/2018

0 comments | Read | Post a Comment

How Measuring Security for Risk & ROI Can Empower CISOs

Vikram Phatak, Chief Executive Officer of NSS Labs

Commentary

For the vast majority of business decisions, organizations seek metrics-driven proof. Why is cybersecurity the exception?

By Vikram Phatak Chief Executive Officer of NSS Labs, 3/28/2018

1 Comment | Read | Post a Comment

Latest Comment: AnnaEverson, Thanks a lot for such incredible article) I think it is really usefull...

The Containerization of Artificial Intelligence

Hamid Karimi, VP of Business Development at Beyond Security

Commentary

AI automates repetitive tasks and alleviates mundane functions that often haunt decision makers. But it's still not a sure substitute for security best practices.

By Hamid Karimi VP of Business Development at Beyond Security, 3/16/2018

1 Comment | Read | Post a Comment

Latest Comment: AnnaEverson, You need more example - nothing to analyse(

Critical Start to Buy Advanced Threat Analytics

Quick Hits

Firms previously had teamed up in SOC services.

By Dark Reading Staff , 3/15/2018

1 Comment | Read | Post a Comment

Latest Comment: AnnaEverson, What is that for ?

Security Worries? Let Policies Automate the Right Thing

Commentary

By programming 'good' cybersecurity practices, organizations can override bad behavior, reduce risk, and improve the bottom line.

By John De Santis CEO, HyTrust, 12/20/2017

7 comments | Read | Post a Comment

Latest Comment: JohnTMoran, That's the key though; the goal of automation should be to support people,...

Comprehensive Endpoint Protection Requires the Right Cyber Threat Intelligence

Adam Meyers, VP of Intelligence, CrowdStrike

Commentary

CTI falls into three main categories -- tactical, operational, and strategic -- and answers questions related to the "who, what, and why" of a cyber attack.

By Adam Meyers VP of Intelligence, CrowdStrike, 12/19/2017

1 Comment | Read | Post a Comment

Latest Comment: DoothCom, So what would the learning curve look like for older companies adjusting...

Improve Signal-to-Noise Ratio with 'Content Curation:' 5 Steps

Commentary

By intelligently managing signatures, correlation rules, filters and searches, you can see where your security architecture falls down, and how your tools can better defend the network.

By Justin Monti CTO, MKACyber, 12/5/2017

0 comments | Read | Post a Comment

The Looming War of Good AI vs. Bad AI

Derek Manky, Global Security Strategist, Fortinet

Commentary

The rise of artificial intelligence, machine learning, hivenets, and next-generation morphic malware is leading to an arms race that enterprises must prepare for now.

By Derek Manky Global Security Strategist, Fortinet, 11/28/2017

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, First thought - Glinda to Dorothy "Are you a good AI or a bad AI?" I'm...

121 Pieces of Malware Flagged on NSA Employee's Home Computer

News

Kaspersky Lab's internal investigation found a backdoor Trojan and other malware on the personal computer of the NSA employee who took home agency hacking tools.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/16/2017

6 comments | Read | Post a Comment

Latest Comment: DavidLycope, Is this a joke ? how can you be so greedy ? 9.95$ huh

Death of the Tier 1 SOC Analyst

News

Say goodbye to the entry-level security operations center (SOC) analyst as we know it.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/16/2017

3 comments | Read | Post a Comment

Latest Comment: rkjensrud, Very informative and you make some great points!

Deception Technology: Prevention Reimagined

Ofer Israeli, CEO & Founder, Illusive Networks

Commentary

How state-of-the-art tools make it practical and cost-effective to identify and engage attackers in early lateral movement stages to prevent them from reaching critical systems and data.

By Ofer Israeli CEO & Founder, Illusive Networks, 11/15/2017

1 Comment | Read | Post a Comment

Latest Comment: Oliver.Rochford, Deception is definitely coming of age. I have long been a proponent of using...

Siemens Teams Up with Tenable

News

ICS/SCADA vendor further extends its managed security services for critical infrastructure networks.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/8/2017

0 comments | Read | Post a Comment

Advanced Analytics + Frictionless Security: What CISOS Need to Know

Commentary

Advances in analytics technologies promise to make identity management smarter and more transparent to users. But the process is neither straightforward nor easy.

By Saryu Nayyar CEO, Gurucul, 10/25/2017

0 comments | Read | Post a Comment

More Stories

Current Conversations

Posted by entucaro

Look's like the VC's aren't doing so bad https://techcrunch.com/2018/02/27/splunks-data-analytics-gets-a-security-boost-with-350-million-acquisition-of-phantom-cyber/

In reply to: Re: VCs wasting their money
Post Your Own Reply

Posted by semidot

Cloud is offering good features.

In reply to: Cloud
Post Your Own Reply

Posted by AnnaEverson

What is that for ?

In reply to: What is that for?
Post Your Own Reply

Posted by AnnaEverson

You need more example - nothing to analyse(

In reply to: Analys
Post Your Own Reply

Posted by AnnaEverson

Thanks a lot for such incredible article) I think it is really usefull and suitable as for me

In reply to: Interesting
Post Your Own Reply

Posted by mwatson1920

Mike Anders...I just saw this comment of yours from 3 years ago. Amazing still just as relevant and elusive today. I am a Cyber Intel instructor, may I use your "Cyber intel...more than the sum of all threat...

In reply to: Re: Cyber Intelligence and knowing what you know!
Post Your Own Reply

Posted by rkjensrud

Very informative and you make some great points!

In reply to: Re: reply
Post Your Own Reply

Posted by antivirussupport12

For better protection from Spyware, malware, and Virus, you can use Panda Antivirus which provide best Panda Customer Service to their user.

In reply to: Re: Feshop2017 Criminal Hackers, Carders forums, Dumps and Fullz CVV, and Identity Theft
Post Your Own Reply

Posted by Ashely

This is an area that requries added attention and has been noted it is on the rise with increased progress in technology. It has called for added attention and re-assessment of strategies by most lawyers near me. We need...

In reply to: Re: Change in the Horizon - www.lawyersoflasvegas.com
Post Your Own Reply

Posted by JohnTMoran

That's the key though; the goal of automation should be to support people, not to replace them. When the goal is to replace them, you are almost always setting yourself up for failure.

In reply to: Re: People are weakest link
Post Your Own Reply

Posted by deua16eex

lbert Gonzalez and his gang of criminal hackers were responsible for data breaches in retailers and payment processors, with some estimates saying they breached over 230 million records combined. Gonzalez, considered a proficient...

In reply to: Feshop2017 Criminal Hackers, Carders forums, Dumps and Fullz CVV, and Identity Theft
Post Your Own Reply

Posted by JohnGiordani

The reality is that very few IT administrators have an accurate picture of what is actually happening in the network and do not have automated tools that can quickly identify, interpret and act on threats. Network visibility...

In reply to: Visibility tools
Post Your Own Reply

More Conversations

Products & Releases

Tripwire Debuts Cybersecurity Suite for Protecting Industrial Control Systems (ICS)

Respond Software Powers Self-Driving SOC

Exabeam Secures $30 Million in Series C Funding to Disrupt SIEM market

Thycotic Acquires Cyber Algorithms

FireMon Welcomes New President & CEO, Satin H. Mirchandani

LogRhythm Closes $50 Million Financing to Extend Global Leadership in Security Intelligence and Analytics

PacketSled Secures $5M in Series A Financing

EventTracker Adds Unlimited Acquisition Model for Log Manager

More Products & Releases

Hot Topics

Editors' Choice

Four Faces of Fraud: Identity, 'Fake' Identity, Ransomware & Digital

David Shefter, Chief Technology Officer at Ziften Technologies, 6/14/2018

Demystifying Mental Health in the Infosec Community

Kelly Sheridan, Staff Editor, Dark Reading, 6/14/2018

Email, Social Media Still Security Nightmares

Dark Reading Staff 6/15/2018

Live Events

Webinars

More UBM Tech
Live Events

INsecurity Conference - An Event Like No Other

Black Hat Trainings - October 22 & 23

Are You Looking to Learn About New Cybersecurity Threats & Challenges? Then INsecurity Is For You!

White Papers

[Guide] Setting Up an Application Security Program

Secure Web Gateway RFP Guide: 6 Must Include Topics

[Cybersecurity] 11 key points to consider when choosing a solution

Simplifying DO-178B/C Compliance with Grammatech's CodesSonar

Prevent Cybercrime and Insider Attacks In Your Company with Static Analysis

More White Papers

Cartoon

Latest Comment: They told me I was one brick short of a load so now I have plenty of bricks!

Cartoon Archive

Current Issue

The Changing Role of the CISO

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The State of IT and Cybersecurity

IT and security are often viewed as different disciplines - and different departments. Find out what our survey data revealed, read the report today!

Download Now!

[Strategic Security Report] Navigating the Threat Intelligence Maze

0 comments

[Strategic Security Report] Assessing Cybersecurity Risk

0 comments

New Best Practices for Secure App Development

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2016-10723
PUBLISHED: 2018-06-21

** DISPUTED ** An issue was discovered in the Linux kernel through 4.17.2. Since the page allocator does not yield CPU resources to the owner of the oom_lock mutex, a local unprivileged user can trivially lock up the system forever by wasting CPU resources from the page allocator (e.g., via concurre...

CVE-2017-13072
PUBLISHED: 2018-06-21

Cross-site scripting (XSS) vulnerability in App Center in QNAP QTS 4.2.6 build 20171208, QTS 4.3.3 build 20171213, QTS 4.3.4 build 20171223, and their earlier versions could allow remote attackers to inject Javascript code.

CVE-2017-2669
PUBLISHED: 2018-06-21

Dovecot before version 2.2.29 is vulnerable to a denial of service. When 'dict' passdb and userdb were used for user authentication, the username sent by the IMAP/POP3 client was sent through var_expand() to perform %variable expansion. Sending specially crafted %variable fields could result in exce...

CVE-2017-2672
PUBLISHED: 2018-06-21

A flaw was found in foreman before version 1.15 in the logging of adding and registering images. An attacker with access to the foreman log file would be able to view passwords for provisioned systems in the log file, allowing them to access those systems.

CVE-2018-0712
PUBLISHED: 2018-06-21

Command injection vulnerability in LDAP Server in QNAP QTS 4.2.6 build 20171208, QTS 4.3.3 build 20180402, QTS 4.3.4 build 20180413 and their earlier versions could allow remote attackers to run arbitrary commands or install malware on the NAS.

Terms of Service
Privacy Statement
Legal Entities