Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
New Study Reveals Only 11% of Information Security Managers Trust Security Level Of Their Applications
Quotium research shows large majority of security managers think their organizations' applications are still vulnerable to hacker attacks
Tenable Launches Security “App Store” For SecurityCenter 4.7
SecurityCenter 4.7 will provide searchable catalog of apps that can be used to customize the dashboard
Social Networks: Can Robots Violate User Privacy?
High-Tech Bridge experimented to verify how the 50 largest social networks, Web services, and free emails systems respect – or abuse - privacy of their users
HP Fortify Static Code Analyzer 4.0 Speeds Software Security Assessment By 10 Times
New solution also reduces false positives by 20 percent over previous versions of the product
Finjan Holdings Subsidiary Files Patent Infringement Lawsuit Against Blue Coat Systems
Finjan alleging infringement of patents relating to endpoint, Web, and network security technologies
StrikeForce Technologies Inc.'s GuardedID Keystroke Encryption Patent Granted
GuardedID encrypts every keystroke typed on a keyboard
Small Business Authority's Survey Shows Overwhelming Majority of Independent Business Owners Believe Their Website Is Secure
Findings from August survey is 86 percent of business owners feel that current website is secure
App Helps Secure Mobile Devices, Reports Security Status To Processor
SecurityMetrics MobileScan includes acquirer/ISO access to a Merchant Compliance Console
Gateprotect Firewall Gets Hardware Boost
GPO series has been equipped with the latest processors and more RAM
F-Secure Finds Women And Men Are Hard To Tell Apart In The Cloud
When asked how much digital content in terms of photos, videos, documents and other files they have on their devices, women are less likely to know
Xceedium Extends Privileged Identity Management Protection To VMware vShield And vCloud
Xsuite provides protection for both host systems running on the VMware hypervisor, and the vSphere and vCloud management consoles
Agiliance Adds BI Training Ror Its Risk Management Platform
Column Technologies, on behalf of Agiliance, will provide virtual and on-premise Jaspersoft training services to Agiliance RiskVision customers
Bloxx Announces Secure Sockets Layer Intercept (SSLI) Software Development Kit For Security Solution Providers
Aimed at security application developers seeking to add SSL traffic intercept capabilities to their Web content filtering, firewall, or UTM solutions.
Centrify Delivers Unified Identity Solution For Workplace Mac Users And Their Mobile Devices
Centrify User Suite, Mac Edition integrates on-premise and remote Macs and mobile devices with Microsoft Active Directory
Check Point Launches Cloud Emulation Sandboxing Service To Tackle Zero-Day Attacks
ThreatCloud Emulation cloud service is based on a global, companywide monthly quota of scanned files
HyTrust Raises $18.5 Million In Series C financing
Funding from new investors Intel Capital, Fortinet, VMware, and In-Q-Tel, with participation by existing investors Granite Ventures, Cisco, Trident Capital, and Epic Ventures
Dell SecureWorks Warns Of Hacktivists Launching Multiprong Cyberattacks, Not Just DoS Attacks
Hacktivists also launching SQLi and CSS attacks
WatchGuard Partners With NCP Engineering To Offer IPsec VPN Client For Microsoft Windows And Apple OS X Users
VPN technology simplifies setup and enables one-click remote access for end users
ElcomSoft Speeds Up Phone Password Breaker, Enables Real-Time iCloud Recovery
Forensic tool enables access to user data stored in Apple and BlackBerry mobile devices
U.S. Department of Homeland Security Awards HP Continuous Monitoring Services Contract
One-year contract has a ceiling of $6 billion
CounterTack Partners With South Korean Providers For APT Defense
CounterTack's endpoint protection platform, Sentinel, will play a critical role in countering the ongoing cyberattacks that threaten organizations in South Korea
Finjan Holdings Announces Reverse Stock Split
12-for-1 reverse stock split of the company's common stock will be effective at the opening of trading on Thursday
SSH Appoints New Americas President And CEO
Sami Ahvenniemi was most recently chairman of the SSH Communications Security board of directors
Mobile Banking Now 20% Of All Online Financial Transactions
CEB TowerGroup will detail security risks that accompany rapid adoption of mobile banking in an upcoming webinar
GlobalSign Auto Enrollment Gateway Provides Automated Certificate Life Cycle Management For Microsoft Active Directory
Solution automates enrollment, provisioning, and management of GlobalSign digital certificates for Windows environments
NCP Engineering Adds Ellipic Curve Crypto To Windows VPN Client And Gateway
New versions designed to help enterprise customers yield higher level of security
Soldier Convicted Of Espionage Sentenced Today
Pfc. Bradley E. Manning was found guilty of 20 offenses, including seven specifications of wrongful possession and transmission of national defense information
McAfee Quarterly Report Finds Increase In Mobile Threats
Android-based malware achieves a 35 percent growth rate not seen since early 2012
New Citrix Worx App Gallery Provides Secure Mobile Apps
Gallery has more than 100 committed third-party apps
Welsh, Carson, Anderson & Stowe To Acquire Alert Logic
New funds will be used to accelerate growth through both geographic and product line expansion
Rapid7 Launches 2 New Security Products
ControlsInsight and UserInsight focus on two core areas
Less Than Half Of IT Professionals Have Deployed Continuous Monitoring
Study examined security controls and spending
CloudLock Adds Support For Google+, Enabling Large Enterprises To Apply CloudLock's Security And Audit Controls To Google+
CloudLock's support for Google+ will help CIOs implement Google+ for their domain
Lookingglass And Ziften Partner To Deliver Threat Intelligence From The Internet To The Endpoint
Combination of Lookingglass’ ability to monitor threats on the Internet and internal enterprise network with Ziften’s endpoint visibility provides end-to-end cyberthreat intelligence
Panda Security Launches 2014 Range With Multidevice Protection
Panda Global Protection 2014 protects Windows, Mac, and Android
IBM Selected For DHS Cyber Initiative
CDM Program moves the nation’s networks to a more real-time approach for the combat of advanced threats
Mobile Phone Using FPC Fingerprint Technology Launched By Fujitsu With DoCoMo
Fujitsu F-07E Android smartphone has swipe sensor technology
NSA Creates Partnership With North Carolina State University
Laboratory for Analytic Sciences to focus on big data problems
IBM To Acquire Trusteer
New IBM Cybersecurity Software Lab in Israel will focus on mobile and application security, counterfraud, and malware detection
Newly Launched WebTitan Cloud, A Powerful Web Filtering Service For SMBs
New cloud-based Web filtering service enables companies to monitor, control, and protect users online
VMware Announces Expanded Analytics For Log Insight
Content packs enable VMware vCenter Log Insight to consume unstructured data from a wider variety of sources
Prosperoware Breaks New Ground In Managing Internal Data Security With Milan 3.0
Milan 3.0 adds capability to manage information security across multiple systems on a "need to know" basis
PCI DSS 3.0 Change Highlights
Version 3.0 to focus on flexibility, education and awareness, and security as a shared responsibility
CSC Offers GRC Solution As A Service
CSC Horizon integrates data and reporting from existing cybersecurity controls into one view
Avira Launches Free Android Anti-Virus 2.0 For Smartphones And Tablets
Free app offers antivirus scanning and removal
Fast Tracking AppSec Test Results - NT OBJECTives & Denim Group Partnership
ThreadFix is now integrated with NTOSpider application scanner
Joomla Exploit Results In Thousands Of Infected Systems, Targeted Attacks Against EMEA Banks
Versafe report summarizes the discovery of a vulnerability that had put Web sites hosted on the Joomla content management system at risk of being hijacked
Identity And Access Management (IAM) Market Worth $10.39 Billion By 2018
Report identifies drivers and restraints for this market with insights on trends, opportunities, and challenges
CounterTack Awarded Patent Extension For Next-Generation Endpoint Security In New Global Markets
Patent portfolio extended into Japan and Australia
Prolexic DDoS Protection Service Stops Attackers From Bringing Down 1ink.com e-Commerce Sites
1ink.com is an online retailer of replacement inkjet and laser toner cartridges
|
The 10 Most Impactful Types of Vulnerabilities for Enterprises TodayManaging system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
