Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
From Russia With Love: A Slew of New Hacker Capabilities and Services
A review of the Russian underground by Trend Micro reveals it to be the world’s most sophisticated.
Anthem Breach Linked To Black Vine Group & Beijing InfoSec Firm
Health insurer's breach of 80 million records attributed to 'well-resourced cyberespionage group' Black Vine. Could they also be behind breaches at OPM and United Airlines?
Code Theft: Protecting IP At The Source
Your corporate assets are at risk and every day that you avoid taking action shortens the time until your IP will be leaked. Here are six steps toward better data security.
Chrysler Recalls 1.4 Million Vehicles After Jeep Hacking Demo
National Highway Traffic Safety Administration will be watching to see if it works.
Angler Climbing To Top Of Exploit Heap
Exploit kit dominates the field, making up 82 percent of all exploit kits currently used.
How I Learned To Love Active Defense
Yes, traditional cyber defenses can be effective. They just need to be a little more active.
The Insiders: A Rogues Gallery
You can defend against an insider threat if you know where to look.
The End Of Whac-A-Mole: From Incident Response To Strategic Intelligence
In the face of mounting cybercrime, hacktivism, and espionage, network defenders need to transform their tactical IR groups into full-scale cyber intelligence teams.
Hacking Team 0-Day Shows Widespread Dangers Of All Offense, No Defense
While the Italian surveillance company sells government agencies high-end zero-day proof-of-concept exploits, it secures root systems with the password 'P4ssword.' What's vulnerability commoditization got to do with it?
The Role of the Board In Cybersecurity: ‘Learn, Ensure, Inspect’
Board members of the most forward-thinking U.S. companies are not just throwing money at the mounting problem of managing cyber risk.
Cybercriminal Group Spying On US, European Businesses For Profit
Symantec, Kaspersky Lab spot Morpho' hacking team that hit Apple, Microsoft, Facebook and Twitter expanding its targets to lucrative industries for possible illegal trading purposes.
The Rise Of Social Media Botnets
In the social Internet, building a legion of interconnected bots -- all accessible from a single computer -- is quicker and easier than ever before.
FBI Offering $4.3 Million For Help Finding Cyber Most-Wanted
Big prize still going to whomever can help find Gameover ZeuS mastermind.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
