Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
It's True: Compliance Can Be Good For Your Business
The best insurance for your organization is often the processes required for compliance
Bots: Stand Up And Be Counted
A new FCC-backed initiative will gather real ISP data on infected bot machines, but will it make a dent on the botnet scourge?
Web Encryption That Works
SSL technology isn't perfect, but it can be an effective security tool for your organization. Here are four tips for optimizing its performance
Five Dangerous Compliance Assumptions
Many businesses fool themselves about their compliance problems
Another Hurdle For IPsec
Some organizations are taking a second look at IPsec for more security, but, like SSL, it also relies on a flawed trust model
Being A Security Bully Does Not Make You Compliant
Compliance is not a tool for dodging work or dismissing business needs
Avoid Putting IT In A GRC Vacuum
When infosec pros are asked to set security and compliance policies with no line-of-business input, problems are inevitable
Five Tactical Security Metrics To Watch
Wondering how secure the corporate network is? Here's five operational security metrics that can help. First of a two-part series
'Factory Outlets' Selling Stolen Facebook, Twitter Credentials At Discount Rates
Are cybercriminals' inventory overstocked? New bulk sales pitch could be an indication, researchers say
Slide Show: Technologies That Are Changing The Sports Security Game
Digital technology is increasingly playing a major role in sports security operations
Compliance And 'The Little Guys'
Small and midsize businesses often let the cost of compliance obscure important benefits
How To Spot A Fake Facebook Profile
Barracuda Networks gathers telltale characteristics of the phony Facebook 'Friend'
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
