Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
NSA Surveillance Fallout Costs IT Industry Billions
Analysts predict US tech companies may lose $180 billion by 2016 due to international concerns about intelligence agencies' spying.
NSA Surveillance: First Prism, Now Muscled Out Of Cloud
Companies can no longer discount the risk of losing control of confidential corporate data in the cloud. Government data mining is here to stay, in one invasive form or another.
The New Security Architecture
Recent high profile attacks reflect a new reality in which perimeter-based security models are increasingly less effective in protecting key corporate assets and information.
4 Lessons From MongoHQ Data Breach
Security experts urge companies to implement two-factor authentication, VPNs, and graduated permission levels to better protect customer data from hackers.
Microsoft May Encrypt All Server-To-Server Communications
Microsoft admits it doesn't encrypt all server-to-server communications, opening the way for the NSA and others to access the data flow.
Avoid The Bermuda Triangle of Cloud Security
As cloud services permeate the enterprise, security still inhabits the unknown. Can enterprises venture into cloud-based security without traversing a Bermuda triangle of doubt?
Secure Your Network From Modern Hazards
Traditional security measures don't stand a chance in a data-centric world. But within the crisis lie opportunities for IT security pros.
Schneier: Time To Make NSA Eavesdropping Expensive
NSA surveillance piggybacks on corporate capabilities through cooperation, bribery, threats and compulsion, says security evangelist Bruce Schneier.
Mobile Protoype Encrypts Data First, Ships To Cloud Later
'CloudCapsule' can be used with Dropbox and Google Drive. It locks down files prior to their storage in the cloud for accessing them without a proxy.
IT Security Faces Big Data Skills and Resource Gap
In the near future, IT security teams will not be complete without at least one data scientist among its ranks.
DDoS Attack: Preparing For The Inevitable
DDoS mitigation is a challenging undertaking. Here are four steps to help you plan for the worst.
Hackers Threaten Destruction Of Obamacare Website
DDoS tool targets the federal Affordable Care Act website. But will it work?
File Sync And Sharing: Users Won't Give It Up
Users need file syncing for real business purposes, so it's up to you to figure out a way to protect the data.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
