Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Super Bowl Tech: A Supersized Role For Security
The cold weather has been the strongest story line throughout the entire NFL season. Sunday’s game will be no exception -- behind the scenes and on the field.
Finding The Balance Between Compliance & Security
IT departments can reduce security risks by combining the flexibility of ISO 27000 with the stringent requirements of PCI. Here’s how.
Red Or Blue, I'm Usually The Only Woman On The Team
Women are still few and far between in the cybersecurity field
For SMBs: How To Implement PCI DSS 3
How PCI DSS v3.0 requirements affect the management of service providers for SMBs
The Scariest End-User Security Question: What Changed?
Hitting employees over the head with fear, uncertainty, and doubt does little to help protect them from security threats. Is multi-factor authentication "by force" a better approach?
Data Security: 4 Questions For Road Warriors
Traveling with electronic gear containing sensitive data carries a greater security risk today than ever before.
Target Breach: Why Smartcards Won’t Stop Hackers
"Chip and PIN" smartcard adoption in the United States is long overdue. But the security improvement wouldn't have stopped Target’s BlackPOS malware attackers.
Future Shock: The Internet of Compromised Things
It’s doubtful that the average consumer would be aware that his or her refrigerator was participating in a DDoS attack. Even fewer would have any idea how to stop it.
Target Mocks, Not Helps, Its Data Breach Victims
The only thing consumers did wrong is to shop at Target. Why are they being blamed for the retailer's security failings?
Target Breach: 5 Unanswered Security Questions
Investigators have yet to explain how Target was hacked, whether BlackPOS malware infected its payment servers, and whether the same gang also struck other retailers.
HIPAA, SOX & PCI: The Coming Compliance Crisis In IT Security
New mandates around datacenter virtualization, enterprise apps, and BYOD will stretch IT security staffs and budgets to the max in 2014.
What Would Judge Leon Say About The 'Big 8'?
Why Apple, Facebook, Google, Microsoft, Twitter, and others' open letter against NSA spying practices rings of hypocrisy
Malware: More Hype Than Reality
Sure, malware exists, but is it really as bad as the news suggests?
What Healthcare Can Teach Us About App Security
The Centers for Disease Control protects people from health threats and increases the health security of our nation. It’s a mission that’s not so different from InfoSec.
Why IT Security RFPs Are Like Junk Food
Buying the latest security technology won't save you if your company isn't carrying out basic health checks.
NSA Fallout: Why Foreign Firms Won’t Buy American Tech
Mounting evidence points to billions of dollars in lost US business thanks to the NSA's collect-everything mindset.
Cloud Gazing: 3 Security Trends To Watch
The ultimate success of cloud computing depends on the security solutions we wrap around it.
Why I Pulled Out Of The RSA Conference
Dave Kearns can't abide RSA's reported dealings with the NSA or its suspect security practices.
How Cloud Security Drives Business Agility
Cloud computing represents a unique opportunity to re-think enterprise security and risk management.
Name That Toon: Contest Winners Named
We enjoyed all the laughs on the road to choosing the winner of our first cartoon caption contest. Check out the funniest entries.
3 Themes For Implementing PCI DSS 3.0 For SMBs
How the new PCI DSS v3.0 requirements affect the scope of cardholder data systems
Physical & Network Security: Better Together In 2014
How ready are you for the day you discover there are more networked IP security cameras than laptops in your infrastructure – and none adheres to 802.1x standards?
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
