Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Juniper Networks Releases New Mykonos Security Software To Stop Web Attacks
Mykonos software uses attacker's behavior against them
Updated Map And Inventory of Europe's "Digital Fire Brigades" With 173 Computer Emergency Response Teams Listed
An updated version of the Inventory of CERT activities in Europe is also available
Symplified And Qubera Partner On Identity Management For Cloud, SaaS And Mobile Apps
Qubera Solutions will provide Symplified solutions to customers that need to unify IAM for premises-based, cloud, and mobile applications
Plixer And Enterasys Networks Enhance BYOD Security And Reporting
Webcast reveals methods to leverage NetFlow reporting and mobile IAM features
RSA Archer eGRC Platform Expanded
Newest release includes a Regulatory Management solution
StillSecure To Offer Managed Security Services For Rackspace Cloud Customers
Cloud Network Security Appliance allows customers to spin up a managed security cloud server within their public cloud infrastructure
Panorama9 Integrates With Zendesk To Offer Enterprise-Grade IT Management In The Cloud
Integration turns issues detected by Panorama9 into Zendesk tickets
McAfee Finds One In Every Six Personal Computers Have Zero Protection
Vulnerability poses a threat not just to those unprotected computers, but to anyone connected to them
FireMon Delivers Security Posture Management
Security Manager 6.0 combines risk analysis with configuration management, enforcement, and auditing of network devices
Jennifer Granick To Direct New Civil Liberties Center At Stanford Law School Center For Internet And Society
Granick is a renowned expert in computer crime and security, electronic surveillance, privacy, data protection, copyright and technology regulation
Elliptic Technologies Joins FIDO Alliance
Hardware Enforced Security with Elliptic’s tVault™ Provides Seamless Protection of Authentication Secrets.
New Report Reveals Major Shift In CSO Role And New Trends For Risk-Based Security Practices
Wisegate report discusses how IT organizations can up their security game
FoxT ServerControl Achieves Oracle Validated Integration With Oracle Identity Management
New Web services-based connector from FoxT enables data interchange between Oracle Identity Manager and FoxT ServerControl
Total Defense Announces New Cloud Security Platform
Total Defense Cloud Security for Web and email protection
Trend Micro Pioneers Integration Of Data-Loss Prevention (DLP) Across The Enterprise
Trend Micro Control Manager provides central management that's newly integrated for both data and threat protection
Execs To Study Cyber Security In New NYU-Poly Master's Degree Track
Curriculum covers fundamentals of information security management
User-Generated Content Singled Out In Military Dating Hack
Imperva releases May Hacker Intelligence report
ICSA Labs Launches First Testing Program Of VPN Security For Mobile Device
Mobile Device VPN Security available for wireless carriers and mobile device manufacturers
Intel Introduces Cloud-Based Identity Solution For Salesforce And Other Cloud Applications
Solution will help enterprise users utilize their Salesforce credentials to access popular cloud applications
Nominum Mobile Security Solution Protects Both The User And The Network
Leverages essential Domain Name System (DNS) to reduce latency and network failure
General Dynamics And Samsung Team To Deliver Secure Wireless Products
Companies will provide mobile users with commercial off-the-shelf wireless products that enable secure Internet browsing and access to government networks
Cyber-Ark Partners With Carahsoft To Deliver IT Security Solutions To Government Sector
Cyber-Ark’s solutions are positioned to help government organizations meet FISMA requirements
Guidance Software Launches Encas App Central
EnCase App Central is a new marketplace for digital investigation apps
WatchGuard Continues Pattern Of Strong Growth
Company notes five consecutive quarters of double-digit growth
Lookingglass Announces New Cyber Threat Alert And Warning Capability, CyberHUD
CyberHUD monitors global networks for resiliency, threats, malware, routing hijacks and malicious actor’s tools, tactics, and procedures
Copiun TrustedShare for Good Is First to Provide Secure Access To SharePoint And File Servers From Smartphones And Tablets
Copiun has teamed up with Good to develop a technology that meets federally mandated data security standards in the U.S.
NetAuthority Launches, Radically Transforming Device Authentication
Company positioned to solve challenges associated with mass adoption of strong authentication solutions
Varonis Research Uncovers What IT Security Wants Most From Big Data
More than two-thirds of those surveyed think Big Data should be a strategic priority
Check Point Report: More Than Half Of Targeted Attacks Driven By Financial Fraud
Denial-of-service attacks and botnets pose increased risk to organizations, with successful attacks costing businesses over $100,000 per incident
Veracode Infographic On Cybersecurity Risks In Public Companies
Infographic follows up to the company’s State of Software Security Report
Agiliance Automates Security Assessment Of Gov Cloud Services
Announces availability of Federal Risk and Authorization Management Program (FedRAMP) Content Pack
Infoglide And BusinessForensics Partner For Fraud, Risk Management Solutions
Infoglide’s Identity Resolution Engine software will enhance capabilities across BusinessForensic’s suite of fraud detection and risk management products
Agnitum: PC Security Test shows Antivirus Products Being Left Behind
PC Security test reveals users of 64-bit Windows Anti-Viruses are being left behind
Paymetric Deploys Secure Mobile Payments
Partners with Velocitor Solutions to offer merchants with mobile sales forces a solution to secure payment transactions from their mobile devices
New Research From Fidelis Security Systems And IANS Shows Heightened Need For Advanced Threat Defense
Survey underscores the heightened risk associated with content-layer threats
ICASI Releases Update To XML Framework For Reporting IT System Vulnerabilities
Enhancements in CVRF 1.1 offer users a more comprehensive and flexible format
Viewfinity Releases Next-Gen Privilege Management Software
Viewfinity Privilege Management 4.0 automatically sets policies for rights and privileges
Arxan Introduces End-to-End Protection Of Java And Native Apps
Enhances Mobile Application Protection Suite to include multilayered, end-to-end protection for Android applications
How The Social Security Administration Making Online Access To Earnings Secure For Consumers
Experian fraud prevention services help SSA provide consumers with secure and convenient online access to their Social Security earnings and benefit information
RSA Helps Accelerate Adoption Of Encryption Key Management Interoperability With KMIP-Enabled Solution
Integrates KMIP 1.0 in RSA Data Protection Manager
SEALs, Spies, Security, Celebrity: Suits And Spooks Anti-Conference Comes To Los Angeles
Third conference brings together individuals from the U.S. intelligence community with innovative thinkers from a wide variety of disciplines
Comodo And TeleSign Partner To Deliver Intelligent Authentication
Announce joint layered security solution combining digital certificates and out-of-band phone-based authentication
Information Services Group Joins Cloud Security Alliance
ISG will align services to best practice frameworks, contribute to definition of standards
Identropy Sets Its Sights On The Emerging IDaaS Market
Expands management team
Newly Published ControlScan White Paper Educates Small Merchants On Top Five Data Security Best Practices
White paper designed to help small merchants become a less likely target for data thieves
Digital Defense Identifies Vulnerability On Epicor Software Interface
Vulnerability could potentially be leveraged by an attacker to execute arbitrary SQL commands
McAfee and Intel Announce Critical Infrastructure Protection
Companies have provided a blueprint for a comprehensive solution of multiple products that create layers of security
Application Security, Inc. Pledges $1 Million Of Database Security Software To Help Enterprises Battle Data Breaches
Companies that choose to take advantage of the offer will receive a free one-year license of AppSecInc’s database security scanning and assessment tool
Beazley Brings State Of The Art Data Breach Protection For Small Firm
BBR Select aimed at smaller firms with revenues of less than $10 million
ForeScout And Fiberlink Team On Fully Integrated NAC And MDM Solution
ForeScout MDM combines cloud-based mobile device management services, comprehensive device support, and unified security control
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
