Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Basic Baselining For Quick Situational Awareness
Baselines can be extremely valuable in knowing what's going on within your network, but they can't help if they're not created -- start with the basics
UBS Finds Risk Management Stress Test Costly
UBS failed to stop a single rogue trader from racking up $2 billion in losses. Yet, some experts argue that banks overall may be better than others at managing risk.
Sinkholing For Profit
Concerns over the legality and ethics of security organizations that profit from their sinkhole operations
Does Cybercrime Pay?
Turning a profit in today's underground economy remains tough. Here's why.
Authentication Reality Check
Two-factor authentication products slow to catch on
On Trusting Certificate Authorities
The time has come for a way to vet CAs by reputation
Authentication With Hardware
Needed: a unified way for users to log in websites regardless of the device they are using
FFIEC Goes Beyond Traditional Authentication
The FFIEC recommends that organizations provide additional business and fraud detection controls to offset weaknesses in authentication technology
Pro Pen Testing: The Zero-Knowledge Approach
Special care must be taken in a penetration test that locates targets with 'zero-knowledge'
McAfee + NitroSecurity: SIEM Merger Done Right
McAfee showcases the perfect security company merger by bringing out a SIEM offering that better anticipates an increasingly hostile world
Advanced Threats And Scenario-Based Penetration Testing
Why your pen-test efforts probably aren't preparing you for the worst
DerbyCon Fosters Community -- Videos Available Online
DerbyCon's successful first year reminds us of what the security community is all about: sharing and learning from others, promoting new ideas, and advancing the art of security
Steve Jobs And Tech Security
Apple's products continue to highlight what relatively secure operating system environments look like.
Most Consumers Don't Lock Mobile Phone Via PIN
44% of respondents say its's too much of a hassle, new survey reports.
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
