Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Boldest Cybersecurity Predictions For 2016
Forget the boring, safe predictions -- here instead are the most interesting, cringe-worthy, humorous, or otherwise shocking predictions for the coming year.
A Hidden Insider Threat: Visual Hackers
Ponemon experiment shows how low-tech white-hat hackers, posing as temps, captured information from exposed documents and computer screens in nearly nine out of ten attempts.
The InfoSec Gender Divide: Practical Advice For Empowering Women
There is no one-size-fits-all approach for women to succeed in IT security. What you need is a roadmap and a little help from your friends.
Security Talent Gap Threatens Adoption Of Analytics Tools
Finding qualified personnel with the right skillsets to configure and operate analytics platforms is a big challenge today, but workforce development, training, and more intuitive technology could help.
The CISO's New Best Friend & New Boss
What does the rise of the chief data officer and the digital risk officer mean for the chief information security officer?
Internet Of Things Christmas Security Survival Guide
Here's how CISOs, security researchers, and all security-minded folks in between can channel their healthy paranoia into helpful ways of protecting friends and family from IoT gifts.
Making Security Everyone’s Job, One Carrot At A Time
These five user education strategies will turn employee bad behavior into bulletproof policies that protect data and systems.
How ‘Digital Forensic Readiness’ Reduces Business Risk
These six real-world scenarios show how to turn reactive investigative capabilities into proactive, problem-solving successes.
The Lizard Squad: Cyber Weapon or Business?
Even a hacker with the noblest intentions can run afoul of the law by not following six important do’s and don’ts.
The Employee Password Habits That Could Hurt Enterprises
While education and efforts around online credentials are improving, password hygiene still has problems
How CISOs Can Reframe The Conversation Around Security: 4 Steps
Security professionals often complain that people are the weak link in the data security system. But in reality, they could be your biggest asset and ally.
How CISOs Can Change The Game of Cybersecurity
In the modern enterprise, chief information security officers need a broad mandate over security and risk management across all operational silos, not just the datacenter.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
