Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Optiv Security Introduces Enterprise Lab Focused on IoT in IT
Lab to address client concerns; will identify, assess, and mitigate IoT device security challenges.
Zscaler and CrowdStrike Extend Zero Trust Security from Devices to Business Applications
Security cloud giants expand global strategic partnership to provide organizations with seamless, dynamic, and data and identity-centric protection through new integrations.
McAfee MVISION Cloud Native Application Protection Platform Now Generally Available
McAfee MVISION Cloud Native Application Protection Platform offers an integrated platform to secure cloud native applications with a risk-based application and data context.
AdaptiveMobile Security Details Major Security Flaw in 5G Core Network Slicing Design
Security vendor details 5G vulnerabilities and is working with industry to provide mitigation prior to widespread deployments.
Tempered Combines Strengths With Nozomi Networks to Deliver Industry-Leading IoT/OT Security
Solution integration offers AI-powered threat visibility, analysis and remediation along with military-grade encryption, policy enforcement and simplified policy management.
JumpCloud Takes Employee Onboarding from Hours to Seconds with Zero-Touch Enrollment
Integration of Apple MDM delivers advanced device management capabilities to IT teams from the directory platform, eliminating the need to adopt separate solutions for MDM and identity and access management (IAM).
Semperis Releases Free Security Assessment Tool, Purple Knight, to Combat Systemic Attacks Exploiting Active Directory Vulnerabilities
Purple Knight Exposes Critical Security Gaps – Organizations Score an Average of 61%, Usually Failing the First Evaluation
Joint Statement from the Departments of Justice and Homeland Security Assessing the Impact of Foreign Interference During the 2020 U.S. Elections
No Evidence Found that a Foreign Government Manipulated Any Election Results
Bitwarden Delivers New Trusted Way to Share Sensitive Data
The new tool for direct sharing, Bitwarden Send, allows users to transmit data directly to others, while maintaining security and limiting exposure.
Intel Study: Transparency and Security Assurance Drive Preference
Organizations are more likely to purchase technologies and services from companies that are transparent about ongoing security assurance.
Lightspin Announces Enhanced Cloud Contextual Security
Features ready-made dynamic remediation, real-time end-to-end monitoring, smart alerting, and risk analysis for the full DevOps life cycle.
Pathlock Secures $20 Million Strategic Growth Investment; Announces Rebrand from Greenlight Technologies
New capital positions Pathlock as the market leading solution enabling Zero Trust across critical apps and infrastructure; accelerates product advancements and recruitment.
DataGrail Raises $30M Led by Felicis Ventures
Deep integration with expansive ecosystem of hundreds of popular business systems removes the complexity and costs associated with privacy regulations. DataGrail adds leaders such as Dexcom and WWE to an impressive roster of existing customers.
Forescout Further Enhances Management Team With Appointment of Wael Mohamed as CEO
Mohamed brings proven track record of driving innovation, alliances and growth. Greg Clark to partner with Mohamed to continue Forescout's mission to actively defend the Enterprise of Things.
StorCentric Announces Nexsan Assureon Cloud Edition
Ideal for protecting data and backups from cyberattacks and ransomware and implementing regulatory and corporate compliance.
SAFE Identity Announces Internet of Medical Things Working Group
Group will establish industry standards for securely credentialing medical devices.
Sequitur Labs Expands EmSPARK Security Suite Deployment Options
New EmSPARK Security Solutions provide pre-built options for manufacturers requiring IoT device protection.
Cynet Reviews the Top 6 Most Notable Cyber Attacks of 2020
2020 cyber pandemic wreaks havoc on organizations of every size.
PerimeterX Raises $57M in Growth Capital Funding to Fuel Expansion Into New Geographies & Verticals
50 new customer wins propel revenue milestones and record year.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
