Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Cyber Boot Camp: Lessons Learned
What happens when 50 young people spend a week in the trenches with cybersecurity researchers from ESET? One picture is worth a thousand words. Here are seven.
Startup 'Stealth Worker' Matches Businesses With Security Talent
New online service helps businesses looking for part-time security professionals fill specific job needs.
Closing The Gap Between Security & Networking Ops: 5 Best Practices
If your factions are warring, there’s a lot you can do about it. Here’s how -- and why you can’t afford to wait.
What 30 Classic Games Can Teach Us about Security
Information security experts share their thoughts on how participating in games and sports helped hone their professional skills.
New Phishing Campaign Leverages Google Drive
Researchers believe technique is geared to take over Google SSO accounts.
Smartwatches Could Become New Frontier for Cyber Attackers
Every single smartwatch tested in a recent study by HP had serious security weaknesses.
Internet of Things: Anything You Track Could Be Used Against You
Lawyers – not security advocates – have fired the first salvos over wearable tech privacy. The results may surprise you.
Finding The ROI Of Threat Intelligence: 5 Steps
Advice from a former SOC manager on how to leverage threat intel without increasing the bottom line.
CISOs Caught In A Catch-22
Chief information security officers are considered 'accountable' for breaches while not always in charge of all infosec strategy and purchases, new report shows.
10 Trends In Infosec Careers And Staffing
Employment stable for job-seekers, but staffing gaps persist for employers who need better security teams to counter threats
The Insiders: A Rogues Gallery
You can defend against an insider threat if you know where to look.
Poor Priorities, Lack Of Resources Put Enterprises At Risk, Security Pros Say
In Black Hat survey, security professionals say misplaced enterprise priorities often leave them without the time and budget they need to address the most critical threats.
Black Hat For Beginners: 4 Tips
What happens in Vegas stays in Vegas. But for newbies, these helpful hints will make sure you get the most out of the Black Hat USA experience.
Why We Need In-depth SAP Security Training
SAP and Oracle are releasing tons of patches every month, but are enterprises up to this complex task? I have my doubts.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
