Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
It's True: Compliance Can Be Good For Your Business
The best insurance for your organization is often the processes required for compliance
Why BYOD Doesn't Always Work In Healthcare
Security and screen layout problems make it difficult to let
clinicians bring their own tablets and smartphones to work.
RSA Conference, One Year Later
How I hope history has reshaped this year's RSA Conference one year after one of the most significant breaches in the past decade
Can You Train A Great Penetration Tester?
The hacker mindset can't be taught -- it must be developed and refined over time
Bots: Stand Up And Be Counted
A new FCC-backed initiative will gather real ISP data on infected bot machines, but will it make a dent on the botnet scourge?
Don't Be Fooled By Buzzwords, Flash, And Empty Promises
Heading to San Francisco for RSA, BSides and AGC? Make sure you know how to navigate the vendor gauntlet
Free Anti-Virus Software Fails To Charm Enterprises
As free AV gains popularity with consumers, could Symantec and McAfee ever be chased from their top spots in the enterprise?
'Do Not Track' Won't Save You From Yourself
Just because you now have a Consumer Privacy Bill of Rights, don't assume you have privacy.
Five Dangerous Compliance Assumptions
Many businesses fool themselves about their compliance problems
Can You Delete A Database?
Data and databases keep growing, but there's a security tradeoff
Disclosure Clouded By Obscurity
Shockingly, the responsible disclosure debate rears its head once again, and amazingly enough some vendors still don't get it. Guess we'll never learn
Google's Privacy Invasion: It's Your Fault
If we really wanted privacy, we would turn off JavaScript, block ads, and browse in privacy mode through an anonymous proxy. But we would rather have free services.
What's Behind The Storage Startup Boom?
Conditions have been ripe for new storage companies to launch. We're now seeing the fruits of their labor.
What Makes A Top Storage Startup?
IT professionals need to keep an eye on the recent boom in innovative, new storage firms. Here's why.
The Financial Industry's Effect On Database Security
Security requirements for the financial-services industry differ from other industries
Linux Live Environments: Cool Tools Even For Windows Folks
Preconfigured Linux environments provide powerful tools to aid in pen testing, mobile security testing, malware analysis, and forensics
Being A Security Bully Does Not Make You Compliant
Compliance is not a tool for dodging work or dismissing business needs
Been Caught Stealin'
Emergence of machine to machine (M2M) devices makes life easier for thieves and hackers -- and more dangerous for victims
On Determining Online Identities
Forging a stronger tie between the sign-on process and the actual known user who owns that particular account
Between Source Code And Cyanide
What the Symantec source-code leak really means
On Determining Online Identities
Detecting Online User Identities
RSA Weakness and e-Commerce Authentication
RSA key weakness
How Can We Gracefully Update Crypto?
Cryptographic methods at any point in time will become weak at some point due to the advances made in computing
Online And Physical User Identities
Some data-owning businesses are getting into the Internet authentication market -- and that's good news
I'm Sorry I Called Your Baby Ugly ... But It Is
Your product's user interface may not be as appealing as you might think -- and it might just be jeopardizing its adoption
A Response To NoSQL Security Concerns
Three key takeaways from a recent webcast about database security in the NoSQL database movement
Passive Network Fingerprinting; p0f Gets Fresh Rewrite
Passive network analysis can reveal OS, service, and even vulnerabilities -- just by sniffing the network
Compliance And 'The Little Guys'
Small and midsize businesses often let the cost of compliance obscure important benefits
Where's My 'Minority Report' Dashboard?
Why haven't user interfaces for security products taken advantage of human movement technologies?
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
