Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Not Much To Learn From The Second Kick Of The Mule
Repeating compliance and security failures shows a lack of progress
FTC Sets Consumer Data Collection Limits
As Spokeo gets fined $800,000, FTC tries to enforce differences between consumer-reporting services and people-search services, which gather and sell large amounts of publicly accessible personal data.
Patching Goes Up In Flames
The Flame malware throws the integrity of patching into question, which creates quite a quandary for those trained to patch early and often. This represents a significant inflection point for security -- or does it?
Flame: Reading Between The Ones And Zeros
As more information about Flame is revealed, let's consider what we might infer from Flame's composition
Deduplication Performance: More Than Processing Power
Storage performance problems can't be solved by just throwing more processing power at them.
Logging Smarter, Not Just Harder
The problem is not just Big Data -- it's variable data. We attempt to find the answer in late-night commercials
Ironman And Captain America Fight Over Compliance
Defending your company requires both warriors and soldiers
Don't Blame Me, I'm Just An Employee
If you're looking for a cure for mishandling of sensitive data, then look no further than your own management team
LinkedIn: Making Insecure Connections
The recent breach of millions of LinkedIn passwords highlights an all-too-common issue
When Is A Breach Not A Breach?
Monitoring: It's not just for breaches anymore -- and actually it never was. Here are some of the other uses for security monitoring
The Truth Is Not Believable
Too many businesses don’t want to know about their compliance problems
Was U.S. Government's Stuxnet Brag A Mistake?
Some lawmakers accuse Obama administration of failing to manage its secrets, but Stuxnet now stands as a warning of America's cyber-warfare capabilities.
Systems Are Not Compliant; Organizations Are Compliant
IT cannot make your organization compliant
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
