Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
The company will use the investment to expand marketing and sales initiatives and accelerate product roadmap. [Read More]
Facebook said Wednesday that Apple's iPhone privacy changes, which allow users to block tracking, significantly affected its advertising revenues because less data could be collected. [Read More]
Netgear warns that an attacker on the same network as a vulnerable device could intercept and manipulate router traffic to execute code as root. [Read More]
VMware releases an urgent security patch for a flaw in its vCenter Server product and warned users to expect public exploit code within minutes of disclosure. [Read More]
Endpoint security platform Kolide gets a fresh round of capital from venture capital investors. [Read More]
In addition to one-on-one phone call encryption, Zoom announces Verified Identity and a Bring Your Own Key (BYOK) offering. [Read More]
The patch comes exactly one week after the Redmond, Wash. software giant acknowledged the CVE-2021-40444 security defect and confirmed the existence of in-the-wild exploitation via booby-trapped Microsoft Office documents. [Read More]
Tenable makes its priciest acquisition to date and expands its product portfolio with capabilities to detect security problems in code before they become operational security risks. [Read More]
Cisco warns that these vulnerabilities could be exploited by attackers to reboot devices, elevate privileges, or overwrite and read arbitrary files. [Read More]
A critical security flaw in HAProxy could lead to HTTP request smuggling attacks, allowing attackers to bypass security controls and access sensitive data without authorization. [Read More]
FEATURES, INSIGHTS // Compliance
Jalal Bouhdada, Founder and Principal ICS Security Consultant at Applied Risk, discusses the implications of the new EU Directive on Security of Network and Information Systems (NIS)
Why do we seem to need layer upon layer of regulation and guidance to try to ensure a more secure business world? Is it working?
Reducing the amount of personal data subject to GDPR is a critical step towards minimizing the amount of risk that GDPR will expose.
The PCI DSS 3.2 should greatly help companies reduce third party vendor risk, and is starting to shift from just a check-the-compliance-box activity to a more continuous compliance model.
To understand why return on Access Governance is lower versus other security technologies, we first need to understand why Access Governance is implemented in the first place.
To achieve continuous compliance and monitoring, organizations are forced to automate many otherwise manual, labor-intensive tasks.
The NIST Cybersecurity Framework is an important building block, but still just the first step towards implementing operationalized defenses against cyber security risks.
U.S tech giants are playing a game of high-stakes global brinksmanship around who has rights to control their data, which impacts their European growth prospects, business models, and ultimately stock valuations.
The oversight for the protection of healthcare information is only getting tighter, and it is incumbent upon the security teams to ensure healthcare professionals have all the tools necessary to improve patient outcomes, while we worry about keeping the bad guys away.
With the release of PCI-DSS 3.0, organizations have a framework for payment security as part of their business-as-usual activities by introducing more flexibility, and an increased focus on education, awareness and security as a shared responsibility.
Get the Daily Briefing
- 'Critical Severity' Warning for Malware Embedded in Popular JavaScript Library
- REvil Ransomware Gang Hit by Law Enforcement Hack-Back Operation
- Microsoft Introduces Security Program for Non-Profits
- US Intel Warns China Could Dominate Advanced Technologies
- Organizations Can Now Try Out End-to-End Encrypted Microsoft Teams Calls
- Facebook Introduces New Tool for Finding SSRF Vulnerabilities
- After Nation-State Hackers, Cybercriminals Also Add Sliver Pentest Tool to Arsenal
- Snap's Stock Drops as iPhone Privacy Controls Pinch Ad Sales
- Critical Vulnerabilities Found in AUVESY Product Used by Major Industrial Firms
- Cookie Theft Malware Used to Hijack YouTube Accounts
Copyright © 2021 Wired Business Media. All Rights Reserved. Privacy Policy