Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Second Democratic Party Website Hacked
In a DNC-like attack, pro-Russian hackers broke into a website belonging to the Democratic Congressional Campaign Committee -- and reportedly also the Clinton campaign website.
5 Things We Know So Far About The DNC Hack
The plot thickens this week as Donald Trump openly calls on Russia to release Hillary Clinton’s emails. All roads appear to lead to Russia in the DNC -- and now possibly the DCCC -- hacks.
Multiple Major Security Products Open To Big Vulns Via 'Hooking Engines'
Black Hat USA talk will show how flawed implementation of hooking techniques are putting security and other software at risk.
How To Stay Safe On The Black Hat Network: ‘Don’t Connect To It’
Black Hat attendees may have changed their titles and now carry business cards but hackers gotta hack and there’s no better place to do it than Black Hat.
Russia Likely Behind DNC Breach, Says FBI
Motive behind DNC hack and leak is possibly to tilt election in favor of Trump, say US officials.
New Portal Offers Decryption Tools For Some Ransomware Victims
Nomoreransom.org, a joint initiative between Europol, the Dutch National Police, Kaspersky Lab and Intel Security, offers help in getting encrypted data back.
How Jihadists Operate Online And Under The Radar: Report
Secure browsers, VPNs, protected email apps, and mobile security apps are just tip of iceberg, Flashpoint report shows.
Auto Industry ISAC Releases Best Practices For Connected Vehicle Cybersecurity
Goal is to provide car manufactures with guidelines for protecting modern vehicles against emerging cyber threats
Tools & Training To ‘Hack Yourself’ Into Better Security
How to teach your blue team to think like the red team when your network is under attack and time is your most valuable asset.
Majority Of Companies Say Trade Secrets Likely Compromised
About 60 percent of companies in a survey by Ponemon and Kilpatrick Townsend say at least some of their trade secrets are likely in the hands of rivals
Ransomware Victims Rarely Pay The Full Ransom Price
The purveyors of cyber-extortion schemes often willing to negotiate their ransom fees, F-Secure study finds.
UK Rail Hit By Four Cyberattacks In One Year
No disruption to rail network caused, hackers appear to be nation-states, says cybersecurity firm Darktrace.
Meet The Teams In DARPA's All-Machine Hacking Tournament
"Autonomous security" is DARPA's latest game. Its Cyber Grand Challenge will culminate at DEF CON with a contest to see which of these seven finalists' machines will automatically detect and remediate the most security vulnerabilities.
Context-Rich And Context-Aware Cybersecurity
An adaptive threat-prevention model is quickly replacing traditional, unintegrated architectures as security teams work to achieve a sustainable advantage against complex threats.
Adobe Fixes 52 Vulnerabilities In Flash
Updated version fixes CVEs that allowed remote code execution on affected machines.
Fiat Chrysler Launches Bug Bounty Program
Platform will be leveraged to identify and resolve security issues in automobile software.
What I Expect to See At Black Hat 2016: 5 Themes
Over the years, Black Hat has morphed from a little show for security researchers to a big conference that attracts everyone from black-hat hackers to C-level security execs. Here's what piques my interest this year.
Profiles Of The Top 7 Bug Hunters From Around the Globe
'Super hunters' share a common goal: to find the most high impact valid bugs before a bad guy does.
Does Defense In Depth Still Work Against Today’s Cyber Threats?
Yes. But not for much longer unless the industry shifts to an automated security and zero trust model.
NATO Ambassador: How The Ukraine Crisis Fits Cyber War Narrative
Kenneth Geers previews his Black Hat talk and discusses the strategic military maneuvers governments can make within cyberspace.
Big Business Ransomware: A Lucrative Market in the Underground Economy
Why lock and/or pilfer a person’s files worth hundreds of dollars when corporate data is infinitely more valuable?
China’s Economic Cyber-Spying Drops Post Sept Talks: US Official
U.S. Assistant Attorney General John Carlin's statement finds support in FireEye report of a 90% fall in China-based hacking.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
