Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
D-Link patches two remote code execution and two XSS vulnerabilities in its Central WiFiManager access point management tool [Read More]
Splunk unveils Splunk for Industrial IoT, a solution designed to help organizations secure ICS, monitor and diagnose equipment, and predict downtime [Read More]
The US Justice Department's lawsuit to block a California law aimed at ensuring all online data to be treated equally sets up a legal clash over so-called "net neutrality" and the authority to regulate the internet. [Read More]
Cyberattacks leveraging the remote desktop protocol (RDP) have been on the rise for the past couple of years, fueled by the emergence of dark markets selling RDP access, the FBI warns. [Read More]
The PureVPN client for Windows is impacted by a couple of vulnerabilities that result in user credential leak, a Trustwave security researcher has discovered. [Read More]
Microsoft has released a new set of DDoS mitigation tools for Azure, which the company says will provide customers with increased visibility and support when their computing resources are under attack. [Read More]
Rapid7 adds automation and orchestration capabilities to its Insight Platform, and new automation functionality to vulnerability management and incident response tools [Read More]
According to a survey of claimed hackers, the most common method of hacking used by the respondents (56.03%) is social engineering -- it's easier and a lot cheaper than using a zero-day exploit. [Read More]
Forcepoint has announced a new business unit focusing on securing industrial control systems (ICS) and critical infrastructure. [Read More]
A cyber-espionage group believed to be operating out of China has been using a digitally signed network filtering driver as part of recent attacks, Kaspersky Lab reports. [Read More]
- 1 of 130
- ››
FEATURES, INSIGHTS // Network Security
These seven processes should be automated in order to save valuable time during incident response and security investigation procedures, and help organizations improve their overall cybersecurity posture.
To ensure that your existing IPS solution doesn’t become a weak link in your security strategy, you should be constantly tracking and evaluating its effectiveness—especially older, legacy solutions.
By implementing these measures organizations can limit their exposure to remote access-based cyber threats, while supporting agile business models such as remote work and outsourced IT.
In security, one of our goals should always be to broaden our perspective, field of view, and horizons to minimize the risk that we will be blindsided by something we didn’t see coming.
When an organization controls its security technology portion size, it enables the organization to better address strategic requirements and to work far more efficiently.
The principles of automation and orchestration are necessary to counter the skills and resource gap, and their impact is amplified when applied across the broader picture of cybersecurity, compliance, risk and case management.
Stopping DDoS attacks is not a matter of improving security of IoT devices. Enterprises need to take responsibility and be better at identifying and preventing DDoS attacks as they happen in real time.
Forward Secrecy (sometimes called Perfect Forward Secrecy or PFS), is a cryptographic technique that adds an additional layer of confidentiality to an encrypted session, ensuring that only the two endpoints can decrypt the traffic.
The rapid proliferation of connected things is leaving networks exposed with more potential entry points that are vulnerable to attack.
SecOps and NetOps are starting to put aside their differences and find ways to work better together. As Gartner reports, these once distinct groups have begun to realize and accept that alignment is not a nice to have, but a business imperative.
- 1 of 46
- ››
SecurityWeek Daily Briefing
- Flaws Open Telepresence Robots to Prying Eyes
- NFCdrip Attack Proves Long-Range Data Exfiltration via NFC
- Apple's Revamped Privacy Website Offers Users Access to Their Data
- Google Pixel 3 Improves Data Protection with Security Chip
- 'Operation Oceansalt' Reuses Code from Chinese Group APT1
- 3 Public Cloud Security Myths Debunked
- Facebook Launches 'War Room' to Combat Manipulation
- Ex-Virginia Teacher Charged in 2014 'Celebgate' Hacking
- Tumblr Vulnerability Exposed User Account Information
- Ex-Equifax Manager Gets Home Confinement for Insider Trading
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy