Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
'Sundown' Rises as New Threat in Depleted Exploit Kit Landscape
New exploits and obfuscation tactics have made once second-tier EK a potent threat, researchers from Cisco Talos say.
Customized Malware: Confronting an Invisible Threat
Hackers are gaining entry to networks through a targeted approach. It takes a rigorous defense to keep them out.
Germany Creates Separate Military Wing for Cyber Command
The new unit to tackle cyberattacks will be launched next week and be located in Bonn with staff of 260.
Payment Card Industry Security Compliance: What You Need to Know
A quick refresher on all the different PCI SSC security standards that are relevant for organizations that accept electronic payments.
To Gain Influence, CISOs Must Get Security's Human Element Right
Focusing on certain elements of security in isolation can cause a false sense of security.
Should Trump Tackle Air-Gapped Critical Infrastructure?
MIT experts issue recommendations to the president, urging him to take elements of the electric grid and gas pipeline offline - but other security experts say that ship has sailed.
5 Ways CISOs Could Work Better with Their Cyber Insurers
Risk management has become increasingly important, making it crucial companies have good relationships with their insurance company.
Cisco Issues Advisory on Flaw in Hundreds of Switches
Vulnerability was discovered in WikiLeaks’ recent data dump on CIA’s secret cyber-offensive unit.
Ethical Hacking: The Most Important Job No One Talks About
If your company doesn't have an ethical hacker on the security team, it's playing a one-sided game of defense against attackers.
Twitter Counter Hack Uses Familiar Attack Mode
Experts advise users to be more aware of the potential downside of third-party apps.
What Your SecOps Team Can (and Should) Do
If your organization has all of these pieces in place, congratulations!
This Week On Dark Reading: Events Calendar
How to become a threat hunter, how to build a cybersecurity architecture that actually defends against today's risks, and much more...
IoT & Liability: How Organizations Can Hold Themselves Accountable
To avoid a lawsuit, your company needs to better understand the state of your infrastructure and the devices and applications within it. Here are five areas on which to focus.
WikiLeaks Says It Will Help Firms Thwart 'CIA Hack Tools'
Julian Assange follows up leak of alleged CIA cyber espionage hack tools with promise of assistance against these.
In a Cybersecurity Vendor War, the End User Loses
When vulnerability information is disclosed without a patch available, users are the ones really being punished.
A Real-Life Look into Responsible Disclosure for Security Vulnerabilities
A researcher gives us a glimpse into what happened when he found a problem with an IoT device.
Three Years after Heartbleed, How Vulnerable Are You?
You may have a problem lurking in your open source components and not know it. Start making a list...
Best Practices for Lowering Ransomware Risk
The first step is to avoid falling prey in the first place. That means teaching your entire organization - from IT staff to executive management - how not to be a victim.
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
