Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Top 10 Web Hacking Techniques For 2015
The most influential research on vulnerabilities and exploits, as voted on by the security community.
Mexican Voter Database Exposed
Unsecured database leads to 'leak' of private information of 87 million Mexican voters.
Mea Culpa: Time To Build Security Into Connectivity
How those of us who spent decades developing faster, easier, and more scalable networking technology have made the lives of our security counterparts a living hell.
Privacy Debate: Apple & Google Today; AWS or Azure Tomorrow?
Why the recent fight over mobile phone security and encryption is moving to the cloud.
Google Finds 800,000 Websites Breached Worldwide
In the past year, the search engine giant has detected close to 800,000 sites infected with drive-by download malware and other malicious content aimed at nabbing unsuspecting visitors.
Rethinking Application Security With Microservices Architectures
The advantages offered by the container model go against many of the assumptions of traditional security mechanisms. Here are 5 new concepts & 4 best practices you’ll need to understand.
Is Cloud Security An Exaggerated Concern?
Research indicates the challenge has never been about security, but about transparency.
EU Privacy Officials Push Back On Privacy Shield
Better than Safe Harbor, but not good enough. Should we care what they think?
10 Cybersecurity Twitter Profiles To Watch
If you’re responsible for an information security program, check out these influencers to follow.
Understanding The Cloud Threat Surface
How today’s borderless environment creates new threat vectors from third-party apps, brute force password attacks, and login attempts with stolen credentials.
How to Hack Your Own Car
As vehicles become more software-driven, car manufacturers are keeping the inner workings of electronics systems more secretive. Here's one way to maintain security updates and still preserve your 'freedom to tinker.'
CAs Need To Force Rules Around Trust
Google Symantec flap reveals worrisome weakness in the CA system.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
