Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
FTC Ups the Ante on Fighting Spam, Phishing
Federal Trade Commission report calls for authenticated email, reputation services, and better consumer anti-spam reporting tools
The Five Coolest Hacks of 2007
Nothing was sacred - not cars, not truckers, not even the stock exchange
ID & Access Management Cures Hospital's Password Pains
Lutheran Medical Center's new automated order-entry app sped up its move to single sign-on
Security's Biggest Train Wrecks of 2007
We've seen a boxcar o' breaches and break-ins this year, but these were the most grisly - and the hardest to take our eyes from
IT Consultant Hacks Former Client
Angered over business deal, consultant wipes out former client's customer database
Tech Insight: Microsoft's IPSec
Windows' built-in security capabilities offer endpoint alternative to NAP/NAC
Cisco Broadens Threat Picture With New Report
First-time annual study offers insights on human, physical aspects of security as well as attacks and vulnerabilities
Amid Confusion, Market for ID Theft Services Grows
Baffled by conflicting information, consumers increasingly drawn into web of 'theft prevention' offerings
Disney, Home Depot Get Poor Privacy Marks
Ralph Lauren is among the best, public interest group says
New Service Detects Backdoors in Software
Veracode identifies different types of these hidden programs in applications, adds a 'metal detector' for detecting them
Breaches Cause Skittish Attitudes Among Holiday Shoppers
Many consumers no longer sure of the security of their transactions, study says
End Users Flout Enterprise Security Policies
Separate studies show many users understand rules, but they break them anyway
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
