Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Dear Cyber Criminals: We’re Not Letting Our Guard Down in 2015
Next year, you’ll keep exploiting vulnerabilities, and we’ll make sure our systems are patched, our antivirus is up to date, and our people are too smart to click the links you send them.
Backoff Malware Validates Targets Through Infected IP Cameras
RSA report on Backoff dives deeper into clues about the POS software and hints at attackers potentially located in India.
Time To Rethink Patching Strategies
In 2014, the National Vulnerability Database is expected to log a record-breaking 8,000 vulnerabilities. That's 8,000 reasons to improve software quality at the outset.
5 Pitfalls to Avoid When Running Your SOC
The former head of the US Army Cyber Command SOC shares his wisdom and battle scars about playing offense not defense against attackers.
Sony Cancels Movie, US Confirms North Korea Involvement, But Were Bomb Threats Empty?
After the Sony hackers issue threats of physical violence and 9/11-style attacks, The Interview is being killed before it even premieres. But would the attackers have really blown up theaters?
The New Target for State-Sponsored Cyber Attacks: Applications
Skilled hackers are now using simple web application vulnerabilities like SQL Injection to take over database servers. Are you prepared to defend against this new type of threat actor?
Sony Warns Media About Disclosure, Staff About Fraud, 'Bond' Fans About Spoilers
A wrapup of the latest Sony attack fallout.
2014: The Year of Privilege Vulnerabilities
Of the 30 critical-rated Microsoft Security Bulletins this year, 24 involved vulnerabilities where the age-old best practice of "least privilege" could limit the impact of malware and raise the bar of difficulty for attackers.
Ekoparty Isn’t The Next Defcon (& It Doesn’t Want To Be)
Unlike American security conferences that offer a buffet of merchandise, meals, and drinks, Ekoparty, in Buenos Aires, is every bit as functional -- with a little less fluff.
Hiring Hackers To Secure The Internet Of Things
How some white hat hackers are changing career paths to help fix security weaknesses in consumer devices and business systems.
'Inception' Cyber Espionage Campaign Targets PCs, Smartphones
Blue Coat report details sophisticated attacks mainly against Russian targets, and Kaspersky Lab calls new campaign next-generation of Red October cyber spying operation.
Sony Hackers Knew Details Of Sony's Entire IT Infrastructure
While trying to simultaneously recover from a data breach and a wiper attack, Sony watches attackers publish maps and credentials for everything from production servers to iTunes accounts.
Why ‘Regin’ Malware Changes Threatscape Economics
Never before have attackers been able to deploy a common malware platform and configure it as necessary with low-cost, quick-turnaround business logic apps.
With Operation Cleaver, Iran Emerges As A Cyberthreat
A hacker group's actions suggest that it is laying the groundwork for a future attack on critical infrastructure targets.
FBI Warning Shows Targeted Attacks Don't Just Steal Anymore
An FBI advisory points to an increasing trend of destructive malware for activist, anti-forensics purposes.
Breaking the Code: The Role of Visualization in Security Research
In today’s interconnected, data rich IT environments, passive inspection of information is not enough.
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
