- June 05, 2014
Patched soon after Heartbleed, a new widespread OpenSSL vulnerability could expose potential victims to man-in-the middle attacks.
- June 04, 2014
Despite a torrent of recent Internet Explorer zero-days, experts cautioned that the flaws aren't a true gauge of the browser's security.
- June 03, 2014
According to one researcher, most enterprise wireless networks are likely vulnerable to Cupid, a proof-of-concept based on the Heartbleed attack.
- June 02, 2014
Threat intelligence can shine a light on important security holes.
- May 30, 2014
For enterprises, the sudden shuttering of the disk-encryption utility TrueCrypt highlights the risk of using open source security tools.
- May 27, 2014
Carnegie Mellon's new certificate aims to arm managers with the necessary skills to develop an insider threat program from scratch.
- May 23, 2014
When comparing NGFW appliances, experts say that enterprises should focus on products that meet specific needs, not just those with the most features.
- May 21, 2014
Though notified of the IE zero day months ago, Microsoft failed to address the vulnerability before it was made public.
- May 21, 2014
As attackers increasingly target e-commerce websites, vulnerable applications and third-party plug-ins represent an easy avenue of exploitation.
- May 20, 2014
A new survey finds that, despite the huge looming threat of malicious insiders, many enterprises fail to implement proper privileged user controls.