Security Training
“For me? You shouldn’t have. No, really…”
June 18, 2015 Added by:Malwarebytes
More often than not, the sad truth is that if you’re worrying after the creation stage, you’ve probably left it too late and those juicy secrets are going to escape. Deploying a healthy dose of caution before setting digital pen to paper is always going to pay off.
Comments (0)
OPM Breach: Where is the Data Going?
June 16, 2015 Added by:Peter Zavlaris
The OPM breach has drawn national attention and rightfully so. However, at first blush the attack seems typical of a particular threat actor that continues to successfully breach large organizations and steal PII.
Comments (0)
Fear Nothing: The Gamers Approach To Building a SOC
June 16, 2015 Added by:Seth Geftic
While it is not a silver bullet, the security teams that are most successful at defending their organizations have done so by standing up (or at least outsourcing) their own Security Operations Center (SOC).
Comments (0)
Cloud Security: It’s in the Cloud - But Where? (Part I)
June 15, 2015 Added by:Steve Durbin
Organizations are becoming increasingly dependent on their use of cloud services for business benefit both internally and when working with third party suppliers across multiple jurisdictions. However, while these services can be implemented quickly and easily, organizations need to have a clearer understanding of where their information is stored and how reliable these services are.
Comments (0)
Once More on Insta-Fail Security Policies – Rant Alert!
June 15, 2015 Added by:Anton Chuvakin
For a while, I was under impression that my deep disdain for “insta-FAIL security policies” (i.e. those written without any chance of ever being complied with, even during the policy-writing process) knows no equal.
Comments (0)
Security 2020: What Direction is Cyberspace Heading?
June 15, 2015 Added by:Dan Lohrmann
By almost any measure, cyber danger doubled last year and hackers are now breaking into enterprise systems, stealing sensitive data and causing business disruption at an unprecedented pace.
Comments (0)
Online Self-Policing: Check Yourself Before You Wreck Yourself
June 11, 2015 Added by:Lisa Huff
As we post to Facebook and Twitter, and share pictures via Instagram or Pinterest, we don’t stop to think about how our posts or pictures could come back to haunt us later in life.
Comments (0)
Prioritizing Patch Management Critical to Security
June 09, 2015 Added by:Brian Prince
Recent stats from the Verizon Data Breach report showed that many of the most exploited vulnerabilities in 2014 were nearly a decade old, and some were even more ancient than that.
Comments (0)
IT Security: Evolving to a Risk-Based Approach
June 09, 2015 Added by:Tripwire Inc
For those involved with securing privileged information, the news of the latest big breach plastered on every TV, website and newspaper commonly elicits a pair of simultaneous reactions: relief that it’s not your organization and dread that it could be the next time.
Comments (0)
Change Controls Are Still Necessary
June 08, 2015 Added by:Rebecca Herold
Over the years in the security classes I’ve taught, I’ve covered the importance of program change control management, and I wanted to continue the discussion here because as important as it is, it typically does not get the attention it deserves in most organizations.
Comments (0)
Trust-Based Security Models Ineffective: Researchers
June 04, 2015 Added by:Eduard Kovacs
The trust-based foundations of whitelisting make it more difficult for organizations to properly protect their networks against cyber threats, Kaspersky Lab researchers have warned.
Comments (0)
Concerns over Brand Security are Escalating
June 03, 2015 Added by:Peter Zavlaris
The unprecedented technological advancement seen over the last two decades has become a double-edged sword. As a result, information security has gone from being a tertiary IT function to a significant operational risk.
Comments (0)
Two's (Or More) Company: How to Use Two-Factor Authentication the Right Way
June 03, 2015 Added by:Patrick Oliver Graf
These days, you need a password to access every aspect of your digital life, and we all know how problematic that can be.
Comments (0)
Zero-Day Export Regulation Proposal Released for Public Comment
June 01, 2015 Added by:Anthony M. Freed
The U.S. Department of Commerce’s Bureau of Industry and Security (BIS) has released the proposal for regulatory control of the export of malware and zero-day exploits for a sixty-day public comment period, and the reaction from the security community and other interested parties is already definitively negative.
Comments (0)
Take Control of the Unsupervised BYOD Party
May 28, 2015 Added by:Michael Kienzle
Is your company’s BYOD (Bring Your Own Device) policy leaving your IT team feeling a bit uneasy? If so, perhaps it’s time for a CYOD or Choose Your Own Device policy.
Comments (0)
New Global Initiative Aims at Securing Smart Cities
May 28, 2015 Added by:Eduard Kovacs
Security researchers, companies and organizations have joined forces in a new non-profit global initiative whose goal is to secure smart cities.
Comments (0)
- Every Business Can Have Visibility into Advanced and Sophisticated Attacks
- 4 Cybersecurity Tips for Staying Safe During the World Cup
- Machine Learning vs. Deep Learning in Cybersecurity – Demystifying AI’s Siblings
- Building a Strong, Intentional and Sustainable Security Culture
- The 3 Must Knows of Sandboxing
- Valve Patches 10-Year Old Flaw in Steam Client
- Infrastructure Under Attack
- How to Prevent Cloud Configuration Errors
- SOC Automation: Good or Evil?
- Can Organisations Turn Back Time after a Cyber-Attack?