Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
10 Security Innovators to Watch
Startups in the RSA Conference Innovation Sandbox competed for the title of "Most Innovative."
'Don't Extort Us': Uber Clarifies its Bug Bounty Policy
Updated parameters should help avoid future extortion incidents.
Routing Security Gets Boost with New Set of MANRS for IXPs
The Internet Society debuts a new mutually agreed norms initiative for IXPs.
How Microsoft, Amazon, Alphabet Are Reshaping Security
Tech's biggest giants are shifting the cybersecurity landscape as they incorporate security into their products and services.
Free New Tool for Building Blockchain Skills
Blockchain CTF helps pros build skills with simulations.
Google Adds Security Features to Gmail Face-lift
A redesigned Gmail brings new security measures to improve data protection and applications for artificial intelligence.
Despite Risks, Nearly Half of IT Execs Don't Rethink Cybersecurity after an Attack
A recent survey reveals a troubling degree of security inertia lurking among scores of organizations. But there are a few bright spots.
Cloud Misconceptions Are Pervasive Across Enterprises
Shadow IT is rampant at many organizations that rely upon cloud-delivered tools and services to enable remote work, according to a new study. Here's what security teams need to do about it.
'Stresspaint' Targets Facebook Credentials
New malware variant goes after login credentials for popular Facebook pages.
New Survey Shows Hybrid Cloud Confidence
Executives are mostly confident in their hybrid cloud security, according to the results of a new survey.
At RSAC, SOC 'Sees' User Behaviors
Instruments at the RSA Security Operations Center give analysts insight into attendee behavior on an open network.
Data Visibility, Control Top Cloud Concerns at RSA
As the traditional perimeter dissolves and sensitive data moves to the cloud, security experts at RSA talk about how they're going to protect it.
Microsoft to Roll Out Azure Sphere for IoT Security
Azure Sphere, now in preview, is a three-part program designed to secure the future of connected devices and powered by its own custom version of Linux.
INsecurity Conference Seeks Security Pros to Speak on Best Practices
Dark Reading's second annual data defense conference will be held Oct. 23-25 in Chicago; call for speakers is issued.
Large Majority of Businesses Store Sensitive Data in Cloud Despite Lack of Trust
Researchers report 97% of survey respondents use some type of cloud service but continue to navigate issues around visibility and control.
7 Non-Financial Data Types to Secure
Credit card and social security numbers aren't the only sensitive information that requires protection.
7 Steps to a Smooth, Secure Cloud Transition
Security leaders share their top steps to keep in mind as your organization moves data and applications to the cloud.
Uber Agrees to New FTC Settlement Over 2016 Breach Disclosure
Uber has agreed to an updated settlement with the FTC after news of its massive 2016 data breach.
Microsegmentation: Strong Security in Small Packages
A deep dive into how organizations can effectively devise and implement microsegmentation in a software-defined networking data center.
On-Premise Security Tools Struggle to Survive in the Cloud
Businesses say their current security tools aren't effective in the cloud but hesitate to adopt cloud-based security systems.
CA Acquires SourceClear
CA adds software composition analysis capabilities to Veracode lineup through acquisition.
Serverless Architectures: A Paradigm Shift in Application Security
"Serverless" forces software architects and developers to approach security by building it in rather than bolting it on. But there is a downside.
Best Buy the Latest Victim of Third-Party Security Breach
Retailer says customer payment and other information may have been exposed via the breach of [24]7.ai online chat provider.
Unpatched Vulnerabilities the Source of Most Data Breaches
New studies show how patching continues to dog most organizations - with real consequences.
Misconfigured Clouds Compromise 424% More Records in 2017
Cybercriminals are increasingly aware of misconfigured systems and they're taking advantage, report IBM X-Force researchers.
Active Cyber Defense Is an Opportunity, Not a Threat
If honest citizens can be tracked online with cookies and beacons that share where we are and what we are doing, then why should security professionals restrict their ability to hack attackers?
7 Deadly Security Sins of Web Applications
The top ways organizations open themselves up to damaging Web app attacks.
Hudson's Bay Brands Hacked, 5 Million Credit Card Accounts Stolen
The infamous Carbanak/FIN7 cybercrime syndicate breached Saks and Lord & Taylor and is now selling some of the stolen credit card accounts on the Dark Web.
Qualys Buys 1Mobility Software Assets
Qualys has purchased the software assets of 1Mobility for an undisclosed sum.
Is Security Accelerating Your Business?
With an ever-growing list of security and compliance requirements, security can hinder or slow business initiatives. Is your security department stuck in slow gear or can it go faster?
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
