Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Closing The Gap Between Security & Networking Ops: 5 Best Practices
If your factions are warring, there’s a lot you can do about it. Here’s how -- and why you can’t afford to wait.
Code Theft: Protecting IP At The Source
Your corporate assets are at risk and every day that you avoid taking action shortens the time until your IP will be leaked. Here are six steps toward better data security.
How To Put Data At The Heart Of Your Security Practice
First step: A good set of questions that seek out objective, measurable answers.
The First 24 Hours In The Wake Of A Data Breach
There is a direct correlation between how quickly an organization can identify and contain a data breach and the financial consequences that may result.
Internet of Things: Anything You Track Could Be Used Against You
Lawyers – not security advocates – have fired the first salvos over wearable tech privacy. The results may surprise you.
Finding The ROI Of Threat Intelligence: 5 Steps
Advice from a former SOC manager on how to leverage threat intel without increasing the bottom line.
Time’s Running Out For The $76 Billion Detection Industry
The one strategy that can deliver the needle to the security team without the haystack is prevention.
Detection: A Balanced Approach For Mitigating Risk
Only detection and response can complete the security picture that begins with prevention.
How I Learned To Love Active Defense
Yes, traditional cyber defenses can be effective. They just need to be a little more active.
Mobile App Security: 4 Critical Issues
Securing the mobile workforce in the age of BYOD is no easy task. You can begin with these four measures.
The Insiders: A Rogues Gallery
You can defend against an insider threat if you know where to look.
The End Of Whac-A-Mole: From Incident Response To Strategic Intelligence
In the face of mounting cybercrime, hacktivism, and espionage, network defenders need to transform their tactical IR groups into full-scale cyber intelligence teams.
Inside A Vicious DDoS Attack
What it's really like to fend off a relentless distributed denial-of-service attack.
Dark Reading Radio: Firewall Smackdown
Is there a future for the venerable firewall? Security CEOs Asaf Cidon of Sookasa and Jody Brazil of FireMon debate the issues in our latest radio show.
Black Hat For Beginners: 4 Tips
What happens in Vegas stays in Vegas. But for newbies, these helpful hints will make sure you get the most out of the Black Hat USA experience.
Creating Your Own Threat Intel Through ‘Hunting’ & Visualization
How security analysts armed with a visual interface can use data science to find hidden attacks and the ‘unknown unknowns.’
The Role of the Board In Cybersecurity: ‘Learn, Ensure, Inspect’
Board members of the most forward-thinking U.S. companies are not just throwing money at the mounting problem of managing cyber risk.
Twitter Chat: How To Prepare For A Cyberattack
Join the GTEC and Dark Reading Twitter chat, "Is It Possible to Prepare for a Cyber Attack?" on Wednesday, July 8 from 2-3pm EST, using the #GTECCHAT hashtag.
The Rise Of Social Media Botnets
In the social Internet, building a legion of interconnected bots -- all accessible from a single computer -- is quicker and easier than ever before.
In The Cyber Realm, Let’s Be Knights Not Blacksmiths
Why the Internet of Things is our chance to finally get information security right.
Why We Need In-depth SAP Security Training
SAP and Oracle are releasing tons of patches every month, but are enterprises up to this complex task? I have my doubts.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
