Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
How Facebook Bakes Security Into Corporate Culture
Security is everyone's responsibility at the famous social network. These five ingredients are what make up the secret sauce.
Security Geek Gift Guide
Whether you're looking for a gift to give at the IT department's holiday party, for your science-loving kids, or for a genuine friend in the cube beside you, these gifts are sure winners.
The Youthful Side Of Hacking
If the iconic 1955 movie Rebel Without a Cause was remade today, would James Dean be a computer hacker?
Cisco Cert Tracker Offline After Pearson VUE Breach
Third-party certification credential manager used by Cisco and others is taken down after malware infection.
We Need A New Word For Cyber
It’s time to find an alternative for 'cyber' (an adjective or noun) before the term – like 'google' -- becomes a verb.
Dark Reading Radio: A Cybersecurity Generation Gap
Millennials--especially young women--not pursuing careers in cybersecurity due to lack of both awareness and interest.
Solving Security: If You Want Something New, Stop Doing Something Old
Black Hat Europe keynoter Haroon Meer tells security pros to work smarter, think out of the box, and speak out to the C-suite.
Point of Entry: The Missing Link in the Security Hiring Gap
How misguided notions of capability and lack of access to enterprise tools discourage diversity in Infosec.
Machine Learning: Perception Problem? Maybe. Pipe Dream? No Way!
Guided by an organization's internal security experts,'algorithmic assistants' provide a powerful new way to find anomalies and patterns for detecting cyberthreat activity.
Cybersecurity Skills Gap: Too Good To Be True For Job Seekers?
New track at Black Hat Europe explores the special challenges of managing an information security career for both job hunters and job hirers.
What Flu Season Can Teach Us About Fighting Cyberattacks
Cybersecurity doesn't have to be an arms race towards complexity if we put people front and center of the solution.
Mature & Unconfident: The Best Information Security Teams Ever!
Security through maturity and humility is a workable philosophy with proven results for organizations that are willing to give it a try. Here’s why.
BYOD 2015: Data Loss, Data Leaks & Data Breaches
The growth of employee-owned devices in the workplace is placing new demands on enterprises struggling to protect both personal and professional data.
The Evolving Security Budget: 3 New Ways CISOs Prioritize Spending
New report shows increased spending and shifting priorities
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
