Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
The Disconnect Between Cybersecurity & the C-Suite
Most corporate boards are not taking tangible actions to shape their companies' security strategies or investment plans, a PwC study shows.
6 Tips to Protect Against Technical Support Fraud
Just when you’re having fun over the holidays and not paying attention, you can be hit with a tech support scam. Here's how to stay safe into the new year.
CISOs Play Rising Role In Business
CISO hiring trends show more external hires, longer tenures, and an increase in MBAs as tech pros are required to understand the business.
CISO Holiday Miracle Wish List
If CISOs could make a wish to solve a problem, these would be among the top choices.
Be a More Effective CISO by Aligning Security to the Business
These five steps will you help marshal the internal resources you need to reduce risk, break down barriers, and thwart cyber attacks.
Top 8 Cybersecurity Skills IT Pros Need in 2018
Cloud security architecture skills to customer-service savvy are among the key IT security skills needed next year as CIOs ramp up hiring.
Why Hackers Are in Such High Demand, and How They're Affecting Business Culture
White hat hackers bring value to organizations and help them defend against today's advanced threats.
8 Steps for Building an IT Security Career Path Program
A cybersecurity career-path program can help with talent retention and recruitment.
Automation Could Be Widening the Cybersecurity Skills Gap
Sticking workers with tedious jobs that AI can't do leads to burnout, but there is a way to achieve balance.
5 Reasons the Cybersecurity Labor Shortfall Won't End Soon
The number of unfilled jobs in our industry continues to grow. Here's
why.
What Slugs in a Garden Can Teach Us About Security
Design principles observed in nature serve as a valuable model to improve organizations' security approaches.
6 Personality Profiles of White-Hat Hackers
From making the Internet safer to promoting their security careers, bug bounty hunters have a broad range of motivators for hacking – most just like the challenge.
Tips for Writing Better Infosec Job Descriptions
Security leaders frustrated with their talent search may be searching for the wrong skills and qualifications.
Security Geek Gift Guide
Fun gifts for cybersecurity co-workers and bosses alike.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
