Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Fraudsters use BBC real news as bait to steal users' identity
The URL takes you to the real BBC News website
BlackBerry Earns 'Full Operational Capability' with U.S. Department of Defense
Validation completes DISA’s certification process for BlackBerry 10 mobility management platform
Fortinet delivers FortiGate-VM on Amazon Web Services (AWS)
FortiGate-VM on AWS to Help Customers Extend Enterprise Security Into Their Public Cloud Deployments
New USB Enforced Encryption Device for Mac OS
Protects Key Corporate Data Copied from Apple Computers to Removable Storage Devices
FireEye Releases Comprehensive Analysis of 2013 Zero-day Attacks; Impact on Security Models
New Research Paper Offers Insight into Industry’s Leading Zero-day and Advanced Threat Detection Models
ThreatMetrix Secures $20 Million Series E Financing
Company Reveals Aggressive Plans to Expand the Largest Shared Global Identity Network
Is Your Tax Return Being Targeted by Cybercriminals?
With tax season underway, iovation cautions businesses and taxpayers
to safeguard personal data
BlackBerry Advances Security of its Multi-Platform Mobility Portfolio with New Cryptography Certification
FIPS 140-2 validation granted for Secure Work Space for iOS and Android
SANS Report Shows Jump In Attacks On Industrial Control Systems
More Breaches Identified; Vulnerability Detection Limited; Shared Responsibility
SANS Report Shows Jump In Attacks On Industrial Control Systems
More Breaches Identified; Vulnerability Detection Limited; Shared Responsibility
NSFOCUS DDoS Threat Report 2013: Nearly 28 Attacks Per Hour
'Hackernomics' drives smaller, shorter and repeated attacks for better efficiency
Liberty International Underwriters to Provide Network Activity Monitoring through BitSight Technologies for LIU Data Insure Policyholders
Insurer partners with BitSight Technologies to deliver big data analysis capabilities to policyholders
Alert Logic Adds Capabilities To Enhance Hybrid IT Security
Announces upgraded versions of its Alert Logic Threat Manager and Alert Logic Web Security Manager solutions
Synopsys Completes Coverity Acquisition
Companies intend to improve software quality and help ensure mission-critical applications are built to withstand increasing security threats
Parallels Survey Of IT Professionals Finds Macs Moving Beyond BYOD Phenomenon, Now Considered For Broader Corporate Deployment
Macs are in high demand, and those who already support them shared the top reasons why
Neurotechnology Announces Major Updates To Entire Biometric Product Line
Latest product versions include algorithm improvements for functionality enhancement and higher recognition accuracy
NetIQ Unveils NetIQ MobileAccess
Virtual appliance enables secure access from iOS or Android mobile devices
FireHost Names New CEO
Founder and former CEO Chris Drake will be CTO
Adblock Plus Expands Anti-Tracking Privacy Tool
EasyPrivacy filter blocks tracking resources, such as cookies, scripts, and tracking pixels
Lookout Appoints New CEO Jim Dolce
Founder John Hering will become executive chairman and have a day-to-day role at Lookout
Finjan Holdings Subsidiary Files New Patent Infringement Lawsuit Against Sophos
Alleges infringement of Finjan patents relating to endpoint, Web, and network security technologies
High-Bandwidth NTP Amplification DDoS Attacks Escalate 371 Percent in the Last 30 days
Prolexic Issues High Alert DDoS Attack Threat Advisory
IT Security Pros Abandoning Traditional Security Measures In Favor Of SMS-Based Two-Factor Authentication
Ponemon and Tyntec survey finds 68% believe username/passwords not enough
Latest Security Technology Market Research Study From 451 Research
Information security 2013 budgets continued a healthy multiyear run
New Data From PerspecSys Shows Without Security, Clouds Can't Reign
Survey results from RSA Conference show companies are not being proactive enough to protect sensitive data in the cloud
MTN Government Launches Social Media Threat Intelligence Managed Service
Solution identifies and analyzes malicious actors, threats, and targeted attacks against U.S. government leaders and agencies
HBGary Announces Advanced Endpoint Security, Incident Detection And Enhanced User Efficiency With Active Defense 1.4
Active Defense 1.4 includes enhanced filtering, customized Web-based dashboards
Robert Anderson, Jr. Named To Lead FBI Criminal, Cyber, Response, And Services Branch
He will be responsible for all criminal and cyber investigations worldwide
AlephCloud Gets Patent for Keeping Content Private from Cloud Providers
Invention Enables Cloud Providers to Supply Encryption for Multi-Party Collaboration that only the Content Owner Controls
Wave Joins The FIDO Alliance
FIDO specifications will support a full range of authentication technologies
CloudLock Announces Compliance For Google+
CloudLock customers can now leverage one social networks while applying security and compliance policies to protect data
New AppRiver Survey: IT Security Pros Care More About Malware Than NSA Spying
More than half of respondents report cybercrime from external sources as most problematic
FireEye Issues Secondary Public Offering
Announcement follows IPO in September and $1 billion acquisition of Mandiant
IPR International Partners With AFORE To Offer Encryption As A Service (EaaS)
Encryption solutions are available at the storage, virtual machine, file, and application levels
New IT Security Survey Results -- Top Reasons To Monitor Users
BalaBit IT Security survey about use of privileged identity management (PIM) and privileged activity monitoring (PAM) technology
TraceSecurity Announces Mutual Referral Partnership With Rackspace
Rackspace signed on with TraceSecurity as a referral partner last December
New Technique Targets C Code To Spot, Contain Malware Attacks
Practical Root Exploit Containment tool refines anomaly detection
Belkin Secures Computing Enviornment With Webcam Adapter, USB Peripheral Switch
New products help mitigate cyberthreats and improve network safety for government agencies, financial institutions, and others
Bromium Labs Finds YouTube Ads Serving Malware
Team discovers classic drive-by download attack on YouTube infecting users by exploiting client software vulnerabilities
InformationWeek And Dark Reading Present SECURITY
Half-day event to address new, sophisticated attacks being launched against enterprises
Informatica And Imperva Partner To Deliver Layered Database Privacy And Security
Imperva will resell Informatica's data masking technology
Identity Finder, Verdasys Team
Companies to integrate Identity Finder's Sensitive Data Manager enterprise solution with Verdasys' Digital Guardian and Managed Service for Information Protection offering
Security Processor Increases Data Center Security
Freescale announces support from Silicom and Green Hills Software for its C29x crypto coprocessor
BlackBerry Introduces New Products And Services
Announcements are part of BlackBerry’s ongoing strategy to stabilize the company and restore customer confidence
Entrust Integrates Biometric Fingerprint Authentication
Entrust IdentityGuard 10.2 Feature Pack 1 will include 3M Cogent biometric fingerprint capture and verification technology
Cisco And NineSigma Announce $300,000 Grand Challenge To Secure Internet Of Things
Cisco is seeking solutions for malware defense, security credential management, and privacy protection
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
