Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Tanium Announces Key Platform Enhancements to Help Customers Achieve Visibility, Management & Security Across Endpoints
Unified endpoint management and security breaks down organizational silos and provides IT teams with unprecedented visibility and control of their environment.
Allure Security Unveils Anti-Phishing Solution
Patented Technology Provides Early Detection of Web Spoofing to Help Enterprises Preserve Brand Reputation
Qualys Brings its Vulnerability Management Solution to the Next Level
Introducing VMDR: Vulnerability Management, Detection, and Response. VMDR delivers a continuous cycle of protection from a single pane of glass with built-in orchestration workflows and real-time vulnerability detection to prioritize, remediate, and audit across hybrid IT environments.
Financial Institutions on the Hook for Data Breaches this Holiday Shopping Season
American consumers will hold financial institutions accountable for compromised data regardless of who's at fault; Banks stand to lose nearly half of customer base, according to new study from Terbium Labs
Trend Micro Announces Winners of Global Capture the Flag Event
Fifth annual competition arms young professionals with critical industry skills.
Trend Micro Debuts Security Services Platform for Organizations Building Apps in the Cloud
Trend Micro Cloud One automates and simplifies cloud security to give organizations the flexibility they need to meet their most strategic cloud priorities.
IBM Launches Open Technology to Speed Response to Cyber Threats Across Clouds
Industry-first capability to hunt threats across security tools and clouds without moving data
Egnyte Announces New Layer In Its Industry-Leading Content Intelligence Engine
Advanced Metadata Capabilities to Accelerate Data Discovery and Boost Security
Google Collaborates with Fortanix to Deliver External Key Management System for Public Cloud
Businesses can migrate sensitive and private data to public cloud without giving up control of encryption keys.
Respond Software Launches First Responder Service to Automate Speed, Accuracy of MDR at Fraction of Cost
New Service Combines Proprietary Detection and Investigation Software with Human First Responders
Research: A third of the world's largest enterprises use inadequate data sanitization to prevent data breaches at end-of-life
Gaps in data sanitization knowledge and policies mean global enterprises are putting their organizations at risk of security and compliance breakdowns
NINJIO Introduces Security Awareness Training for SMBS
Company offers a subscription to animated micro-learning videos to help protect organizations with less than 100 employees from cyberattacks.
Kaspersky: More Senior Execs Making Cyber Decisions
Statistics support trend of IT security managers being a part of IT decision making discussions.
Trend Micro Launches Smart Factory Security Solutions
Offerings designed to provide enhanced visibility and protection for embattled industrial control system (ICS) environments.
MITRE Engenuity Announces the Center for Threat-Informed Defense
Thirteen organizations join Center as founding participants for R&D collaboration
Nuspire Security Researchers Discover 730% Increase in Emotet Activity
Recent quarterly threat report highlights the return of Emotet activity throughout Q3
Cybrary Lands $15 Million in Series B Funding
New Funding Propels Growth of Cybrary’s Online Workforce Development Platform Being Utilized by Nearly 3 Million Cyber Pros Today
Siemplify Integrates MITRE ATT&CK Framework into Security Operations Platform
The SOAR Provider aims to enable faster investigations and actionable insights by mapping with the global repository of attacker tools and techniques.
Cybervore Changes Direction, Introduces Fragglestorm™
A new cybersecurity tool aims to protect data from breaches and ransomware.
Jamf Launches Jamf Protect, Enterprise Endpoint Protection Built for Mac
Jamf Protect uses native Apple security tools and on-device analysis to give security teams visibility into their Mac fleet.
Fortress Launches Collaboration to Help Protect the Power Grid from Cyber Threats
Fortress Information Security launches the Asset to Vendor Network
(A2V), a new platform where electric energy companies can collectively
help reduce the costs of protecting the U.S. power grid from cyber
threats.
CISA Releases Cyber Essentials for Small Businesses and Governments
Set of cybersecurity best practices will enhance the nation's collective defense against cyber threats.
Cyxtera Technologies Announces Spin Out of Cybersecurity Business
New company powers comprehensive secure access and anti-fraud solutions
with offensive expertise
Mike Aiello appointed CEO of AppGate Inc.
Adaptiva's Evolve VM Now Scans for Every Vulnerability in the National Vulnerability Database Within 15 Minutes
Enterprises Protected by Unmatched Speed and Scale With Industry's First Complete Life Cycle Vulnerability Management Product
Fewer than half of cybersecurity professionals have a plan in place to deal with IoT attacks, despite the fact that ninety percent worry about future threats
New study from Neustar finds that 48% of organizations reported experiencing an attack on connected devices in the last year alone
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
