Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
New Cybrary Feature Helps Leaders Translate Cybersecurity Skill Development into Meaningful Outcomes
Netacea Releases "Buying Bad Bots Wholesale: The Genesis Market" Report
New report uncovers the tactics used to steal and sell genuine digital fingerprints on the most popular deep web marketplace.
Cynet Activates Competitive Replacement Program for Customers Migrating to Cynet 360 XDR Platform
Under new initiative, organizations receive software at no charge until end of competitive product contract period.
Sift Streamlines Digital Trust & Safety Suite to Protect Merchants Against the Fraud Economy
New features deliver more control, transparency, and connection to combat fraud and accelerate growth.
Zerto Announces General Availability of Zerto for Kubernetes and New Public Cloud Capabilities
Unlocking continuous cloud protection for hybrid, public, and native cloud workloads.
Zerto Announces Zerto Backup for SaaS, Powered by Keepit
Protects data against accidental deletion, ransomware attacks, reduces compliance errors, and improves recoverability.
Zscaler Advances Zero Trust Security for the Digital Business
Security Innovations, Resources for CxOs and IT Practitioners, and Zero Trust Deployment Programs Overcome Security Barriers to Accelerate Digital Transformation
Mastercard to Acquire Ekata to Advance Digital Identity Efforts
New capabilities strengthen trust in every interaction through AI-powered identity verification reinforced by commitment to strong data management principles.
Kasada and GreyNoise Team up to Identify Which Potential Threats Demand Immediate Attention
Collaboration Brings Together Leading Internet Noise Detection and Bot Mitigation Companies, Providing Free Access to Real-Time Scanner, Attack and Bot Threat Information
$125M Growth Round Fuels Keyfactor & PrimeKey Merger to Bring Machine Identity Management to the Mainstream
Merger between certificate automation and certificate authority providers set to impact IAM strategy for enterprises.
Cado Security Closes $10M in Funding to Accelerate Adoption of Cloud-Native Digital Forensics Platform
Blossom Capital leads Series A investment round; Cado Security platform enables security teams to effectively investigate and respond to cyber incidents at cloud speed.
Vital Pandemic Industries Foster Unprecedented DDoS Attack Activity, NETSCOUT Threat Intelligence Report Finds
Record-setting 10 million-plus DDoS attacks and 22% increase in attack frequency; WISR survey findings reinforce impact of global DDoS extortion attack campaign.
1Password Launches Secrets Automation & Makes Acquisition to Protect Infrastructure Secrets
1Password expands focus to protect both human and machine secrets for companies worldwide.
Invicti Security Reports on Lost Year in Web Application Security
Covid-19, remote work, and economic headwinds interrupted progress, putting businesses and consumers at risk.
SafeGuard Cyber Raises $45M In Strategic Growth Financing Led By NightDragon
Digital risk protection platform secures communications across all third-party social media, collaboration, and mobile chat channels.
CloudKnox Uncovers Permissions Gap Across Enterprise Hybrid & Multi-Cloud Environments
Industry’s first State of Cloud Entitlements Report reveals significant security risk with more than 90% of organizations using less than 5% of permissions granted.
Beyond Identity Integration With Auth0 Enables Completely Passwordless Authentication
Beyond Identity now available on Auth0 Marketplace to eliminate user friction and credential-based attacks.
Announcing Zero Trust Authentication for Managed Devices & BYOD
Beyond Identity now integrates with Jamf, Microsoft Intune, and VMware Workspace ONE UEM, collecting additional device attributes to further expand risk-based authentication decisions.
ThreatQuotient Closes $22.5M in New Financing to Accelerate Innovation & Execution
Continued momentum in 2020 including record bookings, new customers and revenue growth garners attention of new investors.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
