Firewalls

Bd07d58f0d31d48d3764821d109bf165

Vulnerability Management: Just Turn It Off! PART III

August 20, 2014 Added by:Tripwire Inc

In our third and final post of this series, Tripwire’s Vulnerability and Exposure Research Team (VERT) highlights four more unnecessary risks that often appear in even the most secure networks.

Comments  (0)

E595c1d49bf4a26f8e14ce59812af80e

‘BadUSB’ Malware Leaves Terrible Taste at Black Hat 2014

August 19, 2014 Added by:Patrick Oliver Graf

If awards were given out at Black Hat 2014, one nominee for “Exploit of the Conference” would have won in a runaway – the “BadUSB” exploit.

Comments  (0)

C940e50f90b9e73f42045c05d49c6e17

More Dot-Gov Sites Found Compromised

August 19, 2014 Added by:Malwarebytes

With the number of .gov sites we have seen that are insecure, it pays for users to be careful of potential risks they may encounter when visiting them.

Comments  (0)

E595c1d49bf4a26f8e14ce59812af80e

It’s Time for Retailers to Tell Point-of-Sale Hackers to ‘Back Off’

August 14, 2014 Added by:Patrick Oliver Graf

It’s Groundhog Day all over again for retailers, following the U.S. Department of Homeland Security’s warning that they could, once again, be exploited by malicious actors.

Comments  (0)

201d6e4b7cd0350a1a9ef6e856e28341

The Real Cost of Control System Cyber Security – And it isn’t Cheap

August 13, 2014 Added by:Joe Weiss

There is still a prevailing view that control system cyber security is not real and the cost of addressing it is not commensurate with the 'benefits'.

Comments  (0)

7ddc1f3000a13e4dfec28074e9e7b658

Google Boosts Secure Sites in Search Results

August 11, 2014 Added by:Electronic Frontier Foundation

In a bold and welcome move to protect users, Google announced on Wednesday that they have started prioritizing sites offering HTTPS (HTTP over TLS) in their page ranking algorithm.

Comments  (0)

E595c1d49bf4a26f8e14ce59812af80e

Poor Communication Leads to Defeat on the Network Security Battlefield

August 11, 2014 Added by:Patrick Oliver Graf

During wartime, information can create just as much of an advantage for one side as the size of an army or the weapons they hold. That is, as long as this information is accurate, passed along to the right people and then acted upon quickly.

Comments  (0)

Ebb72d4bfba370aecb29bc7519c9dac2

“Stop The Pain” Thinking vs the Use Case Thinking

August 07, 2014 Added by:Anton Chuvakin

As I’ve written many times, SIEM is a “force multiplier”, but this definition implies that you have something to multiply. If you have 0 capabilities, a purchase of a SIEM tool will still leave you at – you guessed it!—0.

Comments  (0)

201d6e4b7cd0350a1a9ef6e856e28341

Another Washington Think Tank Paper on Critical Infrastructure - Another Miss

August 07, 2014 Added by:Joe Weiss

As with the other papers, the paper chairs reflect the upper strata in political Washington. Unfortunately, like the other papers, there is a lack of control system expertise that has been applied even though I was told more than 200 people worked on the paper.

Comments  (0)

B64e021126c832bb29ec9fa988155eaf

Retail POS System Compromised Through Video Security System

August 06, 2014 Added by:Dan Dieterle

Recently I was talking with a Retail Point of Sale (POS) software expert and was told how a POS system was hacked by an attacker that had gained access to the network through a video security system.

Comments  (0)

B146ded37e4d5e29224d7d0f33a0dc5e

The Science Behind DDoS Extortion

August 04, 2014 Added by:Dan Holden

Well-known names such as Evernote and Feedly have all fallen victim to extortion attacks, but these companies are just the tip of the iceberg when it comes to this very lucrative criminal activity.

Comments  (0)

Default-avatar

Windows Meets Industrial Control Systems (ICS) Through HAVEX.RAT – It Spells Security Risks

July 31, 2014 Added by:Cyphort

Since the first report on Havex RAT’s involvement with Industrial Control Systems (ICS) emerged last month, ICS operators were reminded to what extent malware authors will go to intrude their systems.

Comments  (1)

B689dd1362bef7eb372a540d3b6e6287

Is it Cheaper to Keep it? Reevaluating Your IAM Solutions

July 31, 2014 Added by:Identropy

The most difficult hurdle to get over can be coming to terms with the fact that the selected solution is not delivering the expected value and deciding to move forward in search of a new solution.

Comments  (0)

201d6e4b7cd0350a1a9ef6e856e28341

Real Hacks of Critical Infrastructure are Occurring – Information Sharing is Not Working

July 30, 2014 Added by:Joe Weiss

My database of actual ICS cyber incidents is >350 and growing. I certainly hope people wake up before it is too late.

Comments  (0)

93c815429fc1ab15a9295a4f55989ae0

Multipath TCP - Black Hat Briefings Teaser

July 29, 2014 Added by:Neohapsis

Multipath TCP: Breaking Today’s networks with Tomorrow’s Protocols. is being presented at Blackhat USA this year by Me (Catherine Pearce @secvalve) as well as Patrick Thomas @coffeetocode. Here is a bit of a tease, it’s a couple of weeks out yet, but we’re really looking forward to it.

Comments  (1)

0a8cae998f9c51e3b3c0ccbaddf521aa

Ad Hoc Security's Surprisingly Negative Residual Effect

July 29, 2014 Added by:Rafal Los

Security is fraught with the ad-hoc approach. Some would argue that the very nature of what we do in the Information Security industry necessitates a level of ad-hoc-ness and that to try and get away from it entirely is foolish.

Comments  (0)

Page « < 1 - 2 - 3 - 4 - 5 > »