Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
How I Would Secure The Internet With $4 Billion
In an open letter to President Obama, a member of the Open Web Application Security Project tells why pending legislation on threat-intel sharing doesn’t go far enough.
FUD Watch: The Marketing Of Security Vulnerabilities
I’m all for raising awareness, but making designer vulnerabilities, catchy logos and content part of the disclosure process is a step in the wrong direction.
Escalating Cyberattacks Threaten US Healthcare Systems
Electronic health records are prime targets because healthcare organizations lack the resources, processes, and technologies to protect them. And it’s only going to get worse.
State-Sponsored Cybercrime: A Growing Business Threat
You don’t have to be the size of Sony -- or even mock North Korea -- to be a target.
DR Radio: Incident Response War-Gaming
Learn how to practice the post-breach panicking.
Cyber Threat Analysis: A Call for Clarity
The general public deserves less hyperbole and more straight talk
Data Encryption In The Cloud: Square Pegs In Round Holes
Conventional encryption is a surefire solution for protecting sensitive data -- except when it breaks cloud applications. “Format-preserving” encryption could change all that.
5 Signs Credentials In Your Network Are Being Compromised
Where should you start to keep ahead of attackers using insiders to steal corporate secrets or personal identifiable information? Check out these common scenarios.
Hacking Airplanes: No One Benefits When Lives Are Risked To Prove A Point
In the brave new world of self-driving cars and Wifi-enabled pacemakers, everything we do as information security professionals, everything we hack, every joke we make on Twitter, has real, quantifiable consequences.
Why We Can't Afford To Give Up On Cybersecurity Defense
There is no quick fix, but organizations can massively reduce the complexity of building secure applications by empowering developers with four basic practices.
The Cybercrime Carnival in Brazil: Loose Cyberlaws Make for Loose Cybercriminals
Brazil loses over $8 billion a year to Internet crime, making it the second-largest cybercrime generator in the world.
When Encrypted Communication Is Not Good Enough
For the vast majority of conversations -- on paper, by phone or computer -- encryption is a perfectly adequate form of protection. Unless, of course, a life or livelihood is at stake.
Taking A Security Program From Zero To Hero
Breaking the enigma of InfoSec into smaller bites is a proven method for building up an organization’s security capabilities. Here are six steps to get you started.
Vulnerability Disclosure Deja Vu: Prosecute Crime Not Research
There is a lesson to be learned from a locksmith living 150 years ago: Attackers and criminals are the only parties who benefit when security researchers fear the consequences for reporting issues.
Protecting The Data Lifecycle From Network To Cloud
Enterprises are pushing more sensitive and regulated data into the public cloud than ever before. But the journey carries many new risks.
Deconstructing Mobile Fraud Risk
Today’s enterprise security solutions don’t do enough to manage BYOD risk, credit card theft and the reputational damage resulting from a major data breach.
Building a Stronger Security Strategy: 6 Tips
CIO offers his formula for achieving the right balance between data security and employee productivity and convenience
Nine Years Later, IT Security Is Even More Important To Business
As Dark Reading celebrates its ninth year of publication, the security industry prepares for its next round of evolution.
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
