Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
China Cybersecurity Firm Linked With Country’s Intel Agency For Espionage
Boyusec is working with China’s intelligence services and military to doctor security products for spying, says Pentagon report.
Georgia Tech Gets $17 Million Defense Deal For Cyberattack Attribution
US Department of Defense awards research to work on technique for quick attribution of cyberattack with hard evidence.
Atlanta Attorney’s Office Gets Cybercrime Unit
New cell created after arrest and extradition of two Nigerians from Malaysia in alleged phishing attacks on US.
Balancing The Risk & Promise Of The Internet Of Things
You can't defend against something you don't understand. So make sure you consider IoT's risks before embracing its functionality.
Ransomware Surveys Fill In Scope, Scale of Extortion Epidemic
Half of all surveyed organizations have been hit with ransomware campaigns in the last year, many more than once
Insider Threat: The Domestic Cyber Terrorist
It is dangerously naive for business and government leaders to dismiss the risk of radicalized privileged users inside our critical industries.
Adobe To Pay $1 Million Compensation In Data Breach Case
Personal data of more than 500,000 consumers from 15 states were stolen in the 2013 breach of Adobe server.
'Snoopers’ Charter' Set To Become Law In UK
Surveillance bill goes through British Parliament and awaits only the Royal assent to become law before the year ends.
Internet Of Things 'Pollutants' & The Case For A Cyber EPA
Recent IoT-executed DDoS attacks have been annoying, not life threatening. Should device makers be held liable if something worse happens?
Dark Reading Radio: 'Bug Bounties & The Zero-Day Trade'
Join us, HackerOne's Alex Rice, and Veracode's Chris Wysopal for the next episode of Dark Reading Radio, today, Wednesday Nov. 16, at 1pmET.
Back To Basics: Maximizing Cybersecurity Capabilities
A number of prevention techniques that have existed for years remain fundamental components of any modern security program.
The 7 Most Significant Government Data Breaches
Mega compromises at federal and state agencies over the past three years has compromised everything from personal data on millions to national security secrets.
Dark Reading Virtual Event Seeks To Break Security Myths, Conventional Wisdom
Three keynotes, two panel sessions offer new ways to think about enterprise information security.
Learning To Trust Cloud Security
Cloud-centric computing is inevitable, so you need to face your concerns and be realistic about risks.
Changing IoT Passwords Won't Stop Attacks. Here's What Will.
The solution will take an industry-wide effort, it won't happen overnight, and the problem is not the users' fault!
US Governors Affirm Confidence In Cybersecurity Of Election Systems
Statement from National Governors Association say presidential election outcome will accurately reflect voters’ choice.
Ex-FBI Chief Reviews Security For Booz Allen After NSA Contractor Arrest
Robert Mueller hired after Booz Allen staff arrested for allegedly stealing classified information at NSA.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
