Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
'Have I Been Pwned' Code Base Now Open Source
Founder Troy Hunt also announces the platform will receive compromised passwords the FBI finds in its investigations.
Axis Fosters Work-From-Home Momentum with Zero Trust Network Access
SPONSORED: Watch now -- VPN and VDI, while still useful, lack the hardened security required to keep users secure. That's created an opening for Zero Trust network access.
Google Chrome Makes It Easier to Update Compromised Passwords
A new capability will use Google's Duplex technology to alert people when their passwords are compromised and help change them.
How to Mitigate Against Domain Credential Theft
Attackers routinely reuse stolen domain credentials. Here are some ways to thwart their access.
Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker
Understanding a few basics about how password crackers think and behave could help you keep your users safer.
Why You Should Be Prepared to Pay a Ransom
Companies that claim they'll never pay up in a ransomware attack are more likely to get caught flat-footed.
Cartoon Caption Winner: Greetings, Earthlings
And the winner of Dark Reading's April cartoon caption contest is ...
Defending Against Web Scraping Attacks
Web scraping attacks, like Facebook's recent data leak, can easily lead to more significant breaches.
Google Plans to Automatically Enable Two-Factor Authentication
The company plans to automatically enroll users in two-step verification if their accounts are properly configured.
Newer Generic Top-Level Domains a Security 'Nuisance'
Ten years of passive DNS data shows classic TLDs such as .com and .net dominate newer TLDs in popularity and use.
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
