• September 18, 2015 18 Sep'15

    DHS audit details cyber mission failures and future efforts

    An internal audit of the U.S. Department of Homeland Security has been completed, detailing areas where its cyber mission has failed and what plans are in place to make improvements.

  • September 17, 2015 17 Sep'15

    Hacker groups shifting to corporate cyberespionage schemes

    There is a growing concern for cyberespionage in U.S. after a financially motivated hacker group stole inside information to make millions from insider trading schemes.

  • September 16, 2015 16 Sep'15

    Stolen credentials are key to avoiding breach detection

    A new report details how attackers can fly under the radar by using stolen credentials in order to avoid breach detection and forgoing the use of malware in malicious activity.

  • September 15, 2015 15 Sep'15

    Hackers hijack website analytics for black hat SEO and more

    A new report shows that hackers are manipulating the ownership settings of the Google Search Console in order to hijack website analytics for use in black hat SEO campaigns and more.

  • September 11, 2015 11 Sep'15

    Department of Energy latest victim of a government data breach

    The U.S. Department of Energy became the latest government cyberattack victim after a report disclosed the agency had suffered more than 1,000 cyberattacks in a four-year span.

  • Sponsored News

    • RAND Model Quantifies Staying Power of Security Technologies

      When you estimate the ROI of a new security technology, you usually assume that it will provide the same value year after year. But the RAND Corporation has developed a sophisticated new model of the costs and benefits of cybersecurity which has produced a surprising result. See More

    • Is Your Active Directory Cloud Ready?

      Many companies today are considering a move to the cloud. Organizations may believe that a hosted service, such as Office 365, will be easier and or cheaper to maintain than on-prem email. Also, Microsoft and other industry leaders may have influenced a move. Whatever the reason, moving to the cloud isn’t as easy as it appears and results are often mixed if you haven’t adequately prepared your Active Directory. See More

    • Top 4 Reasons Why Security and Networking Are Coming Together

      Until recently cybersecurity and networking could be treated as separate domains, with different devices, different management tools and different staffs. But that approach won’t fly today. This paper discusses why security needs to be integrated into networking equipment, monitoring and management. See More

    • Examining the Active Directory’s Role in Governance, Risk, and Compliance

      When it comes to governance and compliance, much of the IT staff’s effort is often focused on individual systems. Administrators work meticulously to ensure that mail servers, file servers, database servers, and other resources adhere to both internal security standards and regulatory requirements. The one thing that each of these systems has in common however, is its reliance on Active Directory. First introduced in 2000 as a replacement to the Windows NT domain structure, Active Directory was originally designed to manage network resources. Now, Active Directory works as a centralized authentication and access control mechanism, and consequently plays a vital role in the organization’s overall security. See More

    View All Sponsored News
  • September 11, 2015 11 Sep'15

    Cybersecurity Information Sharing Act has 'significant problems'

    A new version of the Cybersecurity Information Sharing Act is scheduled to go in front of the Senate this fall, but one expert said the bill has 'significant problems.'

  • September 10, 2015 10 Sep'15

    CAPTCHA-bypassing Android malware found in Google Play Store

    Researchers found advanced CAPTCHA-bypassing Android malware in the official Google Play Store, but Google downplayed the impact such malware may have had.

  • September 09, 2015 09 Sep'15

    IT pros don't get cybersecurity risks around certificate authorities

    A survey of IT professionals at the Black Hat conference shows that understanding of certificate authorities is low, and Venafi believes this could lead to cybersecurity risks.

  • September 08, 2015 08 Sep'15

    September 2015 Patch Tuesday: More critical Microsoft Office fixes

    Microsoft's September 2015 Patch Tuesday is available now and includes five critical bulletins, two of which tackle remote code execution flaws affecting Microsoft Office.

  • September 04, 2015 04 Sep'15

    DOJ Stingray rules require warrant to track mobile phones

    The U.S. Department of Justice announced the establishment of a new policy for cell-site simulator devices that will require law enforcement to obtain warrants in order to track mobile phones.

  • September 03, 2015 03 Sep'15

    OPM breach protection services on the way for 21.5M victims

    The contract for identity theft and credit protection services for OPM breach victims has been awarded, but protection notifications will not be going out to OPM victims until later this month.

  • September 02, 2015 02 Sep'15

    Deception may be next big IT security tool, or may be hype

    A new report claims that deception may become a big factor in the future of IT security tools, but one expert warns that the efficacy of such tactics can diminish with popularity.

  • September 01, 2015 01 Sep'15

    Warnings, neglect and a massive OPM breach

    Why no one should have been surprised by the government data hack.

  • September 01, 2015 01 Sep'15

    Chip and PIN migration slow as EMV deadline approaches

    A major deadline for EMV card adoption is just one month away. Can chip-and-PIN and chip-and-signature technology improve payment card security and reduce fraud?

  • August 31, 2015 31 Aug'15

    Qualcomm claims new mobile SoC will feature zero-day detection

    Qualcomm announced that its next flagship chipset will include Smart Protect, a feature designed for machine learning and zero-day detection on mobile devices.