Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Romanian National Gets Three Years For Hack Scheme
Mircea-Ilie Ispasoiu was arrested for international hacking plot that involved wire fraud and aggravated identity theft.
Improving The Security Conversation For CIOs, CISOs, & Board Members
Cybersecurity is a top priority among enterprise leaders, but it's difficult for them to communicate with IT and security teams if they lack an understanding of key security concepts.
7 Factors That Make Security Organizations More Effective
(ISC)2 members have plenty of technical chops, but IANS research found they need to focus more on how infosec aligns with the business.
Snowden: Hollywood Highlights 2 Persistent Privacy Threats
Oliver Stone’s movie shows us that while most of us have nothing to hide, we all have information worth protecting – both technically and constitutionally.
Florida Man Charged With Hacking Linux Servers
Donald Austin allegedly stole credentials of Linux employee to hack four company servers and install rootkit and Trojan software.
What Smart Cities Can Teach Enterprises About Security
The more you simplify your security program while still being effective, the better, says San Diego’s chief information security officer. Here’s his three-step process.
The Time Is Now To Address The Cybersecurity Talent Shortage In Unique Ways
Cultivating talent from unaccustomed outlets will benefit all of us.
Top Colleges For Cybersecurity
Check out these respected post-secondary U.S. cybersecurity education programs at both undergraduate and graduate levels.
France's Online Criminal Underground Built On Foundation Of Distrust
French criminals seeking black market goods and services -- cyber and otherwise -- have to look in darker shadows and work harder to prove their felonious credibility.
Israeli Teenagers Held For Allegedly Running Hacking Service
The two 18-year-olds were responsible for more than 150,000 DDoS attacks which earned them around $600,000 in two years, say reports.
Security Certifications Highly Valued But Not Always Verified
New study shows IT leaders place the greatest value on cybersecurity certifications, but nearly half rarely confirm legitimacy of new hires' credentials.
Government Accelerates Cyber Hiring
The federal government is looking to add 3,500 more cyber and IT workers by January 2017.
HackProof Systems Challenges Hackers To Breach Server Security
Company invites hackers to penetrate its new security technology and win $5,000.
Defining The Common Core Of Cybersecurity: Certifications + Practical Experience
Security certifications are necessary credentials, but alone won’t solve the industry’s critical talent gap.
The New Security Mindset: Embrace Analytics To Mitigate Risk
Sure, conducting a penetration test can find a weakness. But to truly identify key areas of risk, organizations must start to think more creatively, just like today’s hackers.
How IT Departments Can Manage The Security Skills Shortage
A lack of skilled cybersecurity talent is putting organizations at risk. Which skills are in highest demand, and how can IT managers secure the right people to protect their information?
How To Talk About Security With Every C-Suite Member
Reframe your approach with context in order to get your message across.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
