Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
US Should Help Private Sector 'Active Defense,' But Outlaw Hacking Back, Says Task Force
Task Force at George Washington University suggests ways for government to clear up legal quagmires, improve tools, keep us all out of trouble.
The 4 Biggest Mistakes Businesses Make Trying To Secure Endpoints
Sure, it's tempting to chase whatever collaboration technology is hot at the moment, but this can cause serious data security risks.
Malvertising Trends: Don’t Talk Ad Standards Without Ad Security
How malvertising marries the strengths and weaknesses of the complex digital advertising ecosystem perfectly – and what online publishers and security leaders need to do about it.
US GOP Senate Committee Allegedly Target Of Russian Hackers
Dutch researcher finds NRSC web store among 5,900 e-commerce sites infected with malware designed to steal payment card details.
Guccifer Sent Back To Romanian Prison
Hacker, who exposed private email server of Hillary Clinton, will return to US in 2018 to serve 52-month jail term.
Hacking Voting Systems: A Reality Check
Can democracy be hacked? Yes, but not in the way you might think.
IoT Default Passwords: Just Don't Do It
The rise of the Internet of Things makes the use of default passwords especially perilous. There are better options.
France's TV5Monde Was Victim Of Vicious Cyberattack In 2015
Hackers, allegedly Russians, targeted encoder systems in an attempt to destroy the network and cause major technical and financial damages.
UN Watchdog: Nuclear Plants Disrupted By Cyberattack
IAEA director Yukiya Amano says cyber threats to nuclear plants are "not an imaginary risk."
Cyber Hunters, Incident Response & The Changing Nature Of Network Defense
Or how I learned that network defense needs to evolve from a game of "stumbled upon" to "search and discover."
US Formally Accuses Russia Of Stealing DNC Emails
No word on what sanctions, if any, are coming.
IoT DDoS Attack Code Released
Mirai malware could signal the beginning of new trend in using Internet of Things devices as bots for DDoS attacks.
Hackers Attacked Voter Registration Systems Of 20 US States, Says Official
US Homeland Security Department calls for scan of election websites and improve security even as FBI probes Russian involvement.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
