• September 21, 2015 21 Sep'15

    Google wants sites to disable SSLv3 to boost Web security

    Google is trying to drag Web security into 2008 by asking sites to disable SSLv3 and RC4, and setting a minimum transfer security protocol of TLS 1.2.

  • September 21, 2015 21 Sep'15

    App Store iOS malware found after first large-scale attack

    For the first time, a large amount of iOS malware has made it past Apple's App Store security controls, potentially affecting hundreds of millions of users.

  • September 18, 2015 18 Sep'15

    Cisco router malware in the wild more widespread than first believed

    News roundup: Additional research shows a Cisco router implant affects more devices than originally reported. Plus: Let's Encrypt's first cert issued; Tor in the library; the mitigated (but not fixed) iOS AirDrop vulnerability.

  • September 18, 2015 18 Sep'15

    DHS audit details cyber mission failures and future efforts

    An internal audit of the U.S. Department of Homeland Security has been completed, detailing areas where its cyber mission has failed and what plans are in place to make improvements.

  • September 17, 2015 17 Sep'15

    Hacker groups shifting to corporate cyberespionage schemes

    There is a growing concern for cyberespionage in U.S. after a financially motivated hacker group stole inside information to make millions from insider trading schemes.

  • Sponsored News

    • Got Containers? You’ll Need a Way to Monitor Them

      The use of containers is growing rapidly. In a June 2016 survey conducted by Cloud Foundry and ClearPath Strategies, 64% of respondents said they plan to mainstream the use of containers in the next year. As the use of containers proliferates, it is essential to address monitoring to improve the performance, usage and troubleshooting of containers. However, effective monitoring requires an analytics-driven approach that not only informs developers and operations of what’s happening, but also offers those teams the ability to dig into their container usage and performance data to gain actionable insight. See More

    • Four Features to Look for in a Threat Intelligence Service

      Although threat intelligence platforms have been used for years by elite threat research teams at cybersecurity solutions vendors and consulting firms, they have only recently become commercially available as services. This article offers some advice on selecting a service that fits your enterprise, and specifies four features that you should seek out. See More

    • Avoid the Pain of Cloud Silos With Unified Management and Visibility

      Hybrid infrastructure is the result of a fundamental evolution of IT to the cloud, and it has become the norm for most midsize and larger organizations. As the prevalence of hybrid environments increases, one of the most confounding and troublesome problems to emerge is a lack of comprehensive management and visibility across the entire IT infrastructure—whether in the cloud or on premises. See More

    • A Threat Intelligence Service Case Study: The Escelar Trojan

      In this article we explore a case study: How Unit 42, Palo Alto Network’s threat intelligence and research team, used the AutoFocus threat intelligence service to detect and analyze the Escelar banking Trojan. See More

    View All Sponsored News
  • September 16, 2015 16 Sep'15

    Stolen credentials are key to avoiding breach detection

    A new report details how attackers can fly under the radar by using stolen credentials in order to avoid breach detection and forgoing the use of malware in malicious activity.

  • September 15, 2015 15 Sep'15

    Hackers hijack website analytics for black hat SEO and more

    A new report shows that hackers are manipulating the ownership settings of the Google Search Console in order to hijack website analytics for use in black hat SEO campaigns and more.

  • September 11, 2015 11 Sep'15

    Department of Energy latest victim of a government data breach

    The U.S. Department of Energy became the latest government cyberattack victim after a report disclosed the agency had suffered more than 1,000 cyberattacks in a four-year span.

  • September 11, 2015 11 Sep'15

    Cybersecurity Information Sharing Act has 'significant problems'

    A new version of the Cybersecurity Information Sharing Act is scheduled to go in front of the Senate this fall, but one expert said the bill has 'significant problems.'

  • September 10, 2015 10 Sep'15

    CAPTCHA-bypassing malware on Android apps found in Google Play Store

    Researchers found advanced CAPTCHA-bypassing malware on Android apps in the official Google Play Store, but Google downplayed the impact.

  • September 09, 2015 09 Sep'15

    IT pros don't get cybersecurity risks around certificate authorities

    A survey of IT professionals at the Black Hat conference shows that understanding of certificate authorities is low, and Venafi believes this could lead to cybersecurity risks.

  • September 08, 2015 08 Sep'15

    September 2015 Patch Tuesday: More critical Microsoft Office fixes

    Microsoft's September 2015 Patch Tuesday is available now and includes five critical bulletins, two of which tackle remote code execution flaws affecting Microsoft Office.

  • September 04, 2015 04 Sep'15

    DOJ Stingray rules require warrant to track mobile phones

    The U.S. Department of Justice announced the establishment of a new policy for cell-site simulator devices that will require law enforcement to obtain warrants in order to track mobile phones.

  • September 03, 2015 03 Sep'15

    OPM breach protection services on the way for 21.5M victims

    The contract for identity theft and credit protection services for OPM breach victims has been awarded, but protection notifications will not be going out to OPM victims until later this month.

  • September 02, 2015 02 Sep'15

    Deception may be next big IT security tool, or may be hype

    A new report claims that deception may become a big factor in the future of IT security tools, but one expert warns that the efficacy of such tactics can diminish with popularity.