Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Gigamon Announces Reseller Agreement With Fishnet
Fishnet Security partners with Gigamon to offer modern IT security infrastructure
One In Three Top-Trending Search Topics Return Malicious Results, Finds Norton Study
To counter these SEO poisoned threats, Norton has
introduced Norton Safe Web Lite
RSA Survey: Only 2 Percent Of Organizations Have Suffered 'Serious' Incident Due To Mobile Use
Security concerns associated with cloud computing also a top concern
U.S. Department of State Joins Other Key Government Agencies In Adopting PhoneFactor
PhoneFactor provides authentication for remote workers
McAfee To Acquire tenCube
tenCube is the provider of the WaveSecure mobile security service
Semtek Announces Open Licensing Of Cipher Hidden Encryption For Point Of Sale Devices
ViVOtech will install Semtek's device-level encryption technologies in the ViVOpay line of products
Radiant Logic Enhances Contextual Security Via XACML
RadiantOne VDS Context Edition 5.3 expands support for protocols
SPYRUS Announces Mac and Linux Support For High Assurance Encrypting Flash Drives
Secured By SPYRUS technology implements the cryptographic base approved by the United States DoD to protect both unclassified information and most classified information
Symplified Unveils Enhancements To Identity And Access Management Platform
Solution spans both cloud and on-premise user stores
Veracode Announces VERAFIED Mark Of Software Security
New mark indicates software has been independently assessed for the CWE/SANS Top 25 Most Dangerous Software Errors
CoreTrace Launches User-Focused Application Whitelisting Tool
BOUNCER 6.0 features intuitive administration and application intelligence
Cloud Security Alliance Announces New User Certification
CCSK is already gaining broad industry support from numerous organizations
Open Security Foundation Offers Clearinghouse For Cloud Security Resources
Cloutage website's goal is to provide unbiased knowledge and security resources on cloud computing so that organizations properly manage information security risks
SecureWorks And Dell Partner To Provide Information Security Services To SMB Market
Services will be available by the end of the year
Panda Security, Defence Intelligence Help Bring Down Butterfly Botnet Author
Two security firms identified Iserdo by analyzing the software behind the Mariposa botnet
Symantec Earnings Announcement -- Q1 2011
Symantec achieved better than expected first quarter results in each of its key financial metrics
Hitachi ID Systems Releases Password Manager 7.0
Authentication management solution has connectors to both on-premise and cloud-based applications
Microsoft, Adobe Collaborate To Protect Against Online Threats
Microsoft Active Protections Program to include vulnerability information sharing from Adobe
Imperva Launches Hacker Intelligence Initiative
HII researchers will conduct and release research on attacks
Sports Sites Are Top Targets In 'America's Most Wanted' List
AVAST virus lab experts offer tips to stay protected during the summer
Cellcrypt Launches Secure Mobile Phone Conference Calling
New service delivers encrypted calls and authenticates participants
New 2011 Consumer Solutions From Panda Security Utilize Power Of User Community For Lighter, Faster Protection
New solutions feature 50 percent improvement in performance when running on Windows 7 environments
AT&T Extends Security Consulting Service With New Certification Program
Program offers a single-service approach to assess the security posture of a business
Red Lambda's FireGrid UTM Network Security Software Debuts Today
FireGrid UTM combines telemetry-based user and traffic identification with the massively scalable characteristics of its AppIron Grid Platform
eTelemetry's New Locate 5.0 Reduces Need For Manual IP Address
Collaborative device registration system eliminates manual reporting of all devices
Redspin Delivers Expanded HIPAA Security Assessment Service For Healthcare Providers
Redspin's HIPAA security assessment service helps healthcare providers answer fundamental questions regarding their information security, privacy and compliance programs
Commtouch Acquires Antivirus Division Of Authentium
Command antivirus includes technology to protect against spyware, Trojan downloaders
AT&T Announces New Managed Security Features
AT&T Security Center portal enables customers to perform a multitude of network management and administrative tasks
Webroot Unveils Webroot Internet Security Complete
Webroot Internet Security Complete delivers four key benefits
dataguise Partners With Statscom
Companies to deliver advanced security technology for federal government agencies
Security BSides Announces 2010 Speaker Line-Up
Goal of Security BSides is to foster communication and collaboration while increasing the level of conversation
Accuvant And WhiteHat Security Forge Strategic Alliance
The new partnership leverages WhiteHat Security's SaaS-based website vulnerability management platform and Accuvant LABS'
application security services
PacketMotion Adds Internal Firewall Eliminator
SourceSync extends UAM capabilities over the encrypted activities of privileged administrator
Ping Identity Calls For A Password Non-Proliferation Treaty
Ping Identity CEO Andre Durand challenged a group of Internet industry leaders to work together to solve the protocol and architectural challenges of identity management in the cloud
SlimWare Utilities Launches 'Yelp For Apps'
SlimWare Utilities products are available for a limited beta trial period at www.slimwareutilities.com
NitroSecurity: Stuxnet Is Tip Of SCADA Exploit Iceberg
NitroSecurity recommends the following defensive best practices
SonicWALL Shareholders Approve Merger Agreement With Thoma Bravo And Ontario Teachers' Pension Plan
Merger is expected to close today
Core Security Gains NIST SCAP Validation
IMPACT Pro users can now export information in an XML format using SCAP standards
Short URLs In Spam Reach Historical Peak: MessageLabs Intelligence Report
Average daily values also show a significant increase
SecureWorks Partners With MAD Security
Companies will jointly offer a Secure Architecture for Federal Enterprises program to federal government agencies
Xceedium Inc. Names Glenn C. Hazard Chairman And CEO
Hazard has a strong track record having served as CEO at both venture-funded and publicly held companies
Check Point Software Technologies Reports Record Second Quarter 2010 Financial Results
Highlights include $261.1 million in total revenue, an increase of 17 percent
White Paper: Corporate Ignorance Of Phishing May Prove Catastrophic
New Red Condor white paper examines the damage to corporate economics and reputation in the event of a phishing attack
Oracle Announces Identity Management 11G
Oracle Identity Management 11g provides developers with shared services for identity administration and password management
Survey: German IT Security Spending Remains Constant
German companies responding to economic crisis by economizing on IT security, says eleven
Large, Midsize, And Small Organizations Selecting Zscaler Cloud Security
Integrated email and Web security replaces legacy appliances
Go Daddy, DynDNS.com And NamesBeyond Support DNSSEC-Signed .ORG Domain Names
Registrar customers now can sign domain name with DNSSEC validation keys
World's Fastest Malware Analysis Appliance Debuts At Black Hat USA 2010
ValidEdge Malware Intelligence System 1100 offers security response teams actionable intelligence
Protecode Launches System 4 For Identifying Open Source Content
Scanning solution matches source code against a list of 450,000 open-source software projects
Keycorp Signs Agreement With Nice Actimize To Prevent Consumer And Business Fraud
Technology to be used to further protect clients, enhance client experience
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
