Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Free and open Certificate Authority (CA) Let’s Encrypt announced this week that it has issued more than 1 million certificates since issuing its first Digital Certificate last year. [Read More]
Multi-vector denial of service (DDoS) attacks are increasing in frequency, complexity and size, Arbor Networks’ 11th Annual Worldwide Infrastructure Security Report (WISR) reveals. [Read More]
The Tor Project will launch an invite-only bug bounty program via the HackerOne platform in 2016 [Read More]
A blockchain is essentially a shared, encrypted "ledger" that cannot be manipulated, offering promise for secure transactions that allow anyone to get an accurate accounting of money, property or other assets. [Read More]
Microsoft announced that it plans on removing trust on root certificates issued by 11 Certificate Authorities (CAs) in January 2016. [Read More]
Symantec will invest $50 million to boost its cyber security services business globally, with a specific focus on the Asia-Pacific region. [Read More]
ThreatConnect, an Arlington, VA.-based threat intelligence platform platform provider, has closed a Series B Funding round in excess of $16 Million. [Read More]
Hackers breached the systems of anti-adblocking service PageFair and used the access to deliver malware [Read More]
Researchers have found a way to bypass Microsoft EMET mitigations with one shot via the WoW64 Windows subsystem. [Read More]
ThreatQuotient launched ThreatQ, a threat intelligence platform designed to manage and correlate threat data from external sources with internal security and analytics solutions. [Read More]

FEATURES, INSIGHTS // Security Architecture

rss icon

Tim Layton's picture
While we must continue to use defensive technologies because they help address the level of white noise that has become part of the cost to operate in our hyper-connected, digitized world, we can’t stop there.
Joshua Goldfarb's picture
There are many contextual details that differentiate cyber threat information from threat intelligence. Only with the proper context can data be considered intelligence, rather than simply information.
Joshua Goldfarb's picture
Taking a look at security from a different vantage point that allows us to correlate activity by user, rather than by system alone gives us a very different perspective.
Scott Simkin's picture
When vendors and individuals attempt to keep threat intelligence private, they limit the ability of the entire group to identify and mitigate new threats as they are developed and launched against organizations.
Joshua Goldfarb's picture
Rather than proceed step by step through the process of building and maturing a security operations function, security teams often want to move immediately into very advanced topics.
Alan Cohen's picture
Today’s network perimeter is increasingly not a single physical or virtual place, yet much of the industry debate is still focused on the perimeter.
Jason Polancich's picture
Without a solid base in knowing who you are as a target and what’s going on around you at all times, everything else you do is essentially a half-measure.
Rafal Los's picture
Security leaders struggle to replicate successes from one enterprise to another largely because they are starting from scratch at every new turn.
Joshua Goldfarb's picture
The question of build or buy is not a new one, but it is one that does not adequately suit the implementation of a security solution.
Joshua Goldfarb's picture
Tree rings occur when the growing season ends and growth stops. To avoid stagnation, a security organization must never stop growing.