Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
The U.S. chipmaker is adding hardware to the arsenal of tools available to defend against destructive and costly ransomware attacks. [Read More]
Researchers show how Google’s Titan security keys can be cloned via a side-channel attack, but conducting an attack requires physical access to a device for hours and it’s not cheap. [Read More]
Encrypted Client Hello (ECH) aims to address the shortcomings of Encrypted Server Name Indication (ESNI). [Read More]
NSA urges NSS, DoD, and DIB network owners to enhance their cybersecurity posture. [Read More]
The combined entity offers more than a half-dozen security solutions for data security risk detection and cyber-attack protection, response, and recovery. [Read More]
The business communications platform acknowledged an “incident” causing major disruptions to cybersecurity teams around the world. [Read More]
An attack method discovered in 2017 that defeats Google’s audio-based reCAPTCHA using a speech-to-text API has once again been resurrected. [Read More]
The threat actor behind the SolarWinds hack targeted a US think tank earlier this year and it used a clever trick to bypass MFA and access emails. [Read More]
Private equity firm Thoma Bravo announces strategic growth investment in Venafi and acquires a majority stake in the company in a deal valuing it at $1.15 billion. [Read More]
The new financing round was led by Canvas Ventures. Previously, Skyflow raised $7.5 million in a seed round led by Foundation Capital. [Read More]
- 1 of 79
- ››
FEATURES, INSIGHTS // Identity & Access
Ultimately, organizations must assume that bad actors are already in their networks. And consumers must realize they’re constant targets.
Today’s dynamic threatscape requires security professionals to adjust to an ever-expanding attack surface.
The tactics, techniques, and procedures (TTPs) used in the Twitter attack were not much different than in the majority of other data breaches and serve as valuable lessons for designing a modern cyber defense strategy.
Let’s look at some real-world examples of the identity management challenges remote work is creating, and at what it means to rethink identity governance and lifecycle to meet those challenges.
The integration of identity with security is still work in progress, with less than half of businesses having fully implemented key identity-related access controls according to a research study.
Today’s economic climate exacerbates risks of insider threats, as pending furloughs or pay cuts may tempt employees to exfiltrate data to secure a new job, make up for income losses, etc.
With IT budgets being cut back in response to the economic contraction caused by the current health crisis, security teams need to deliver more with less.
Static passwords lack the ability to verify whether the user accessing data is authentic or just someone who bought a compromised password.
If there’s one thing you can be sure of about user authentication methods today, it’s that determining the best choice isn’t as simple or straightforward as it used to be.
As the technology and tools to leverage stolen credentials advance, defenders should seek out innovative new ways to proactively flag exposed passwords leveraging insights gleaned from illicit communities and open-web dumps.
- 1 of 10
- ››
Get the Daily Briefing
- Enterprise Credentials Publicly Exposed by Cybercriminals
- Drupal Updates Patch Another Vulnerability Related to Archive Files
- Multi-Cloud Network Security Provider Valtix Raises $12.5 Million
- Microsoft Details OPSEC, Anti-Forensic Techniques Used by SolarWinds Hackers
- Cisco Patches Critical Vulnerabilities in SD-WAN, DNA Center, SSMS Products
- Amazon Awards $18,000 for Exploit Allowing Kindle E-Reader Takeover
- Scanning Activity Detected After Release of Exploit for Critical SAP SolMan Flaw
- 'LuckyBoy' Malvertising Campaign Hits iOS, Android, XBox Users
- In a Remote Work Era, a People-First Approach Keeps Threat Intelligence Teams on Track
- Snort 3 Becomes Generally Available
Copyright © 2020 Wired Business Media. All Rights Reserved. Privacy Policy