Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Digital Reef Teams With Microsoft Partner FAST To Tame Unstructured Data
Partnership will provide FAST ESP and Microsoft Office SharePoint Server 2007 customers with "out-of-the-box" capabilities to support e-discovery, compliance, Office SharePoint Server 2007 management, data security, and storage initiatives
VASCO Launches DIGIPASS For Mobile Enterprise Security Edition
Solution allows for two-factor authentication using a mobile phone as authentication device
Retina-X Studios Unveils Mobile Spy Version 3.0 Software For Apple iPhone
Users can now track GPS locations, SMS messages, and calls of children or employees inside an SSL-secured online control panel
LogLogic Releases Database Security Solution
LogLogic Database Security Manager provides deep database activity monitoring, real-time illegal access quarantine and termination, as well as real-time and historical correlation across a broad range of other information sources
Go Daddy Provided 44% of All Net-New SSL Certs Issued In Past Year
Number doubles Verisign's, according to Netcraft's May 2009 Trends Report
Digital Reef Announces Partner Program
Program designed to offer Digital Reef's unstructured data management platform to more enterprises
Comodo Adds Server Protection To Endpoint Security Manager
Offering also includes remote and centralized management of Comodo Internet Security software on all networked PCs and servers
Stonesoft Introduces FW-1030 Firewall
Appliance provides data security for small enterprises and remote offices
VASCO Integrates Strong Host Authentication Into DIGIPASS Pin-Pad Authenticators
Strong host authentication combined with e-signature can help to prevent identity theft and man-in-the-middle attacks
Survey: How Security Views Web 2.0
A recent survey of 100 IT pros at Infosecurity Europe reveals trends in individual and corporate use of social media
Entrust Delivers SSL VPN Certificates For Check Point Customers
Users of Check Point Connectra secure remote access gateway now have a new way to set up Entrust SSL VPN certificates needed for encrypted sessions
Panel Speaks On Need For Privacy, Access, Identity For Healthcare Information
Event co-hosted by the Smart Card Alliance Healthcare and Identity Councils and the Secure ID Coalition
Survey: SMBs Hit By More Viruses In Q1
VASCO aXsGUARD Gatekeeper survey reveals major Internet threats in the first quarter of 2009
NitroGuard Rolls Out 10-Gbps Intrusion Prevention System
NitroGuard IPS provides enterprises with intrusion prevention and network flow collection at active throughputs of up to five gigabits per second
Survey: The Truth About Fudging Audits
Tufin Technologies releases results from its "Reality Bytes" security survey
Eleven Offers White-Label Integration Of Email Security Technology As A Managed Service
Solution enables carriers, hosters, and ISPs to integrate managed e-mail security services into their own portfolio for their customers
McAfee Airs First Episode Of Cybercrime Series
"H*Commerce: The Business of Hacking You" exposes techniques used by international cybercriminals
Panda Security Launches Panda Global Protection 2010 Beta
Anti-malware suite is aimed at home users
Symantec Study Reveals Green IT Now Essential IT Practice
The follow-up to the Green Data Center report provides insight into senior-level IT executives' plans for green IT strategies and solutions
Check Point Introduces New Line Of Security Management Appliances
Smart-1 appliances unify network, IPS, and endpoint security policy management and provide up to 12 TB of integrated storage
CIS Releases Secure Benchmark For Apple iPhone
Benchmark introduces consumers and enterprise security specialists to the security configuration features of the iPhone and how they can be used to reduce the probability of data stored on the device from becoming compromised
Secure Passage Offers Free Firewall Auditing Tool For PCI
Firewall Auditor 1.0 helps sysadmins evaluate firewall configurations, policies, and rules for security and compliance
White Paper: Data Breaches Continue, Yet Businesses Neglect Proper Security Measures
"The Legal Risks of Data Loss in the United States," a white paper commissioned by Becrypt, explores risks associated with losing data and other valuable and confidential information
Acunetix Upgrades Web Application Security Scanner
Acunetix WVS 6.5 performs file upload forms vulnerability checks'; also features new Login Sequence Recorder and Session Auto Recognition functionality
Veracode, SignaCert Partner For End-to-End Compliance
Collaboration provides organizations with insight into the authenticity, integrity, and security of software applications to implement centralized governance and controls to meet software compliance requirements
TeamLogic IT Announces New Managed Security Services For SMBs
Managed Security Services include protection from viruses, spyware, botnets, and phishing, along with control of network activities, such as spam and inappropriate Web surfing
Cyber Secure Institute Analyzes Virginia Health Database, UC-Berkeley Hacks
Institute demonstrates inherent risks in e-health, cites range of protections to ensure the privacy of data and the protection of individuals and families
Art of Defence Signs OEM Deal With Zeus To Secure Web Apps
Zeus Technology, provider of load balancing solutions, has partnered with Art of Defence to supply Web application security technology
V.i. Labs Upgrades Antipiracy Platform
New features help ISVs determine who is using their unlicensed software and where they are located
ICANN Develops Strategic Security Plan
Plan designed to enhance security, stability and resiliency of the Internet's naming and addressing systems
WatchGuard Extends Business Mobility With SSL VPN Appliance
WatchGuard SSL 100 VPN appliance provides remote and mobile workers with network access and application delivery
DPS Telecom Releases New RADIUS Authentication Feature For NetGuardian 832A G5
RADIUS provides a way to manage logins to many different types of equipment in one central location.
TrustPort Enhances AV PC Security
TrustPort PC Security enhanced with new methods of shredding sensitive data
SSH Communications Security Introduces Tectia Guardian Solution
Offering enables real-time session and file transfer monitoring with intrusion detection system (IDS) or data loss prevention (DLP) integration capabilities
10-Strike Software Releases 10-Strike Connection Monitor Pro 1.6
Real-time monitoring prevents malware infection over shared folders in Windows
RSA Integrates with Cisco Mobility Solutions
Companies combine security intelligence with geolocation technology to enhance threat identification, response
Almost 30,000 Videos On YouTube Contain Comments With Links To A Malicious Web Page
Automation tools are being used based on large number of videos affected, according to PandaLabs
Survey: Workaholics Now Working 2-6 Hours A Week In Bed
Survey uncovers a staggering number of obsessed workers are taking their laptops to bed, much to their partners' annoyance
Online Trust Alliance Issues Draft Principles For Online Trust
Principles help establish business practices that provide consumer, e-commerce, online marketing protection
RSA Rolls Out Trio Of Security Products Aimed At Midsize Businesses
Offerings comprise two-factor authentication, security information and event management (SIEM), and data loss prevention (DLP)
Verizon Business Adds New 'Cloud-Based' Security Enhancements
New Asset Assurance is a SaaS-based service that combines device monitoring, alarming, fault isolation, root-cause analysis, service-level reporting, and IT service management
Verizon Unveils Verizon Software Token 1.0 For RSA SecurID
Two-factor authentication eliminates need for hardware token while maintaining high security standards for accessing corporate networks
Half Of Social Networking Sites Keep Users' Photos After Deletion: Study
University of Cambridge study examined 16 popular Web sites that host user-uploaded photos,including social networking sites, blogging sites, and dedicated photo-sharing sites
Poll: Interop Attendees Strong Despite Sluggish Economy
Budgets are actually expected to increase by 3 percent over the next 12 months, according to Network Instruments poll at Interop Las Vegas
Gartner: Feds Must Play Stronger Cybersecurity Role
Cybersecurity strategy should focus on using public policy and the government's buying power to accelerate progress in eliminating vulnerabilities that enable attacks versus simply driving increased reporting of attacks, report says
Barracuda Networks Announces SSL VPN For SMBs
Barracuda SSL VPN 180 supports up to 15 concurrent users with with no per user fees
SECNAP Delivers Email Security From The Cloud
Virtual Private SpammerTrap provides email security in the cloud for clients who prefer not to purchase or maintain their own hardware
eleven: Spam Volume Has Doubled Since April 1
Growth constitutes twice the amount of spam as compared to before the spam hoster McColo was cut off in November 2008
RBS WorldPay Back On Visa, MasterCard List Of PCI DSS Validated Service Providers
Validated compliance with PCI DSS, conducted by Verizon Business/Cybertrust
Exobox Launches 'Data Watchdog' Facebook Group
Free platform aimed at companies and organizations to report suspected data leaks that compromise governance, risk, and compliance policies
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
