Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Alert Logic Announces Security Solutions for Google Cloud Platform
Alert Logic first to deliver IDS and log management capabilities to Google cloud customers
Experian Launches Platform For Managing Cross-Channel Fraud Risk
Precise ID® with FraudNet provides a single view of a consumer’s identity across devices.
Bayshore Networks Extends PallatonCapabilities for High-Value IP Protection
Security requirements mandated by corporate boards are driving advanced policy features
Cyber security and big data innovator ThetaRay closes $10m oversubscribed series B funding round
GENERAL ELECTRIC, JVP, AND POALIM CAPITAL MARKETS CONTINUE TO SUPPORT THE COMPANY'S GROWTH, TOGETHER WITH NEW FINANCIAL INVESTORS
Microsoft and Akamai Join Forces in First Cyber-Security Focused Accelerator in Israel
The partnership strengthens the existing collaboration between Microsoft and Jerusalem Ventures Partners (JVP)
Business and IT Emerge as Essential Allies in the Move to Social IDs and 'Bring Your Own Identity'
New Research from the Ponemon Institute and CA Technologies Shows Value of BYOID, Focus on Mobile and Web Users with Desire for Increased Security
IT Security Pros Surveyed: Poor password management leaves accounts open to attack
Lieberman Software survey reveals security professionals don’t practice what they preach when it comes to passwords
New Windows App to Detect WiFi Security
Easy-to-Use, Free App is Available Today for Windows 8 PCs and Surface Tablets
Global Study: Nearly 30 Percent of Security Professionals Would Completely Overhaul Their Current Enterprise Security System Given Resources & Opportunity
New Ponemon Institute survey uncovers communication roadblocks, inefficient security systems and lack of security education for employees
Half of Security Professionals Think Java Applications are Vulnerable to Attacks
Insecure Coding and Third Party Libraries Pose Biggest Threats According to Waratek Survey of Attendees at Gartner Security & Risk Management Summit
ZeroFOX to Spotlight Social Risk Management at Black Hat 2014
Will Highlight the Dangers of Botnets and Social Vulnerabilities from Innovation City
Solutionary SERT 2014 Q2 Threat Intelligence Report: Amazon-Hosted Malware Nearly Triples in First Half 2014
Out of 21,000 Analyzed, 10 Internet Service Providers Host 52 Percent of Malware
39 Percent of IT Organizations Experienced More Than Two Significant Security Incidents
As incidents increase, cybersecurity confidence undermined by contradicting investments
General Dynamics Fidelis Cybersecurity Solutions Joins Forces with Microsoft to Further Protect Customers
As a member of the Microsoft Active Protections Program, General Dynamics Fidelis will enhance threat protection for Fidelis XPS customers by receiving vulnerability information faster.
NIST Advisory Group Releases Report on Cryptography Expertise and Standards Process
VCAT specifically addressed NIST's interactions with the NSA.
Avira Opens R&D Digital Security Lab in Northern California
Team of 5 Envisions New Security Concepts for Avira’s Worldwide Focus on Mobile
International Hacker Pleads Guilty To 2011 Global Cyberattack
Conspirators Stole $14 Million Within 48 Hours
Malwarebytes Raises $30 Million in Series A Funding from Highland Capital Partners
Next-generation endpoint security company aims for continued innovation and growth to protect consumers and enterprises from advanced online threats
KnowBe4 Acts on Security Threat Concerns with Ransomware Warranty
High Stakes Cyber-Ransom Likely to Become the New Norm with Mobile Devices as Prey.
AVAST Test Results: What People Leave Behind When Selling Their Phone Online
Deleting files is not enough – overwriting data is the only way to remove personal information.
OpenDNS Cuts Through Security Noise Overload to Pinpoint Targeted Attacks
New Functionality Provides Insights to Prioritize Incident Response, Using Context From Predictive Intelligence Based on Global Traffic Patterns
Anturis Launches New IT Monitoring Solution
with Java Application Monitoring and Parallels Plesk Uptime Monitor
Brainloop Partners with Microsoft to Bring Dox to Windows 8.1
New app will support access to Brainloop Dox; enables clients to use secure software on tablets
Tripwire and NovaTech Announce Technology Partnership and Integration
Collaboration provides secure configuration management on all ICS, SCADA and business assets.
CoSoSys Connects the Dots between Cloud Storage Services and Cloud-Based Data Loss Prevention
Global Security Vendor Foresees an Increase in Cloud-Based DLP Adoption Due to Mobile Workforce and Ease-of-Use
TraceSecurity Releases New Version Of TraceCSO
New Release Focuses on Risk and Efficiency Enhancements to Improve IT GRC Management for enterprises of all sizes.
MobileIron Powers Mobile First IT with Insight Tablet App for EMM
New Capabilities Unchain IT from the Desktop and Protect User Privacy
Barracuda Extends Next-Generation Firewall for the Mid-market
New Barracuda Firewall version 6.5 Combines Advanced Application Control, Customizable User Interface, and Affordable Pricing.
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
