• July 30, 2015 30 Jul'15

    Xceedium turns deaf ear, triggers vulnerability disclosure

    Swiss research group modzero disclosed a vulnerability that enabled remote attacks on Xceedium's Xsuite privileged access manager.

  • July 29, 2015 29 Jul'15

    The same Chinese hackers linked to United, Anthem and OPM breaches

    Sources claim the same Chinese hackers are behind the attacks on United Airlines, Anthem Health Services and the U.S. Office of Personnel Management.

  • July 29, 2015 29 Jul'15

    Security operations centers could be key to better security

    Video: Security operations centers are critical to continuous network monitoring and detecting data breaches. Eric Cole discusses SOCs and the role security automation plays in them.

  • July 27, 2015 27 Jul'15

    Another government data breach: U.S. Census Bureau admits to hack

    The U.S. Census Bureau admits that it was attacked and had data exfiltrated from its systems. One expert says this latest government data breach is another example that federal systems are not safe from attack.

  • July 27, 2015 27 Jul'15

    Valve fixes Steam password bug that led to compromised accounts

    A glaring error in the Steam password recovery system allowed hackers to take over accounts for Valve's popular gaming platform.

  • Sponsored News

    • RAND Model Quantifies Staying Power of Security Technologies

      When you estimate the ROI of a new security technology, you usually assume that it will provide the same value year after year. But the RAND Corporation has developed a sophisticated new model of the costs and benefits of cybersecurity which has produced a surprising result. See More

    • Is Your Active Directory Cloud Ready?

      Many companies today are considering a move to the cloud. Organizations may believe that a hosted service, such as Office 365, will be easier and or cheaper to maintain than on-prem email. Also, Microsoft and other industry leaders may have influenced a move. Whatever the reason, moving to the cloud isn’t as easy as it appears and results are often mixed if you haven’t adequately prepared your Active Directory. See More

    • Top 4 Reasons Why Security and Networking Are Coming Together

      Until recently cybersecurity and networking could be treated as separate domains, with different devices, different management tools and different staffs. But that approach won’t fly today. This paper discusses why security needs to be integrated into networking equipment, monitoring and management. See More

    • Examining the Active Directory’s Role in Governance, Risk, and Compliance

      When it comes to governance and compliance, much of the IT staff’s effort is often focused on individual systems. Administrators work meticulously to ensure that mail servers, file servers, database servers, and other resources adhere to both internal security standards and regulatory requirements. The one thing that each of these systems has in common however, is its reliance on Active Directory. First introduced in 2000 as a replacement to the Windows NT domain structure, Active Directory was originally designed to manage network resources. Now, Active Directory works as a centralized authentication and access control mechanism, and consequently plays a vital role in the organization’s overall security. See More

    View All Sponsored News
  • July 24, 2015 24 Jul'15

    Alleged car hack prompts call for vehicle security act, DMCA exemption

    News roundup: A wireless car hack demonstration has pushed vehicle security legislation and DMCA exemptions into the spotlight, and prompted a manufacturer recall. Plus: Hacking Team update; DHS email issues; and smartwatches vulnerable to attack.

  • July 24, 2015 24 Jul'15

    HP scares IT teams with Windows Phone critical vulnerabilities

    HP's Zero Day Initiative has disclosed four critical vulnerabilities found in Internet Explorer that could lead to remote code execution, but mistakenly labeled them as affecting Windows desktop rather than Windows Phone.

  • July 23, 2015 23 Jul'15

    National Guard breach highlights the risk of accidental data exposure

    The National Guard reported an accidental data exposure affecting thousands of former and current employees was not related to the OPM breach.

  • July 22, 2015 22 Jul'15

    Hackers targeting .NET shows the growing pains of open source security

    According to researchers, malware makers have been targeting .NET since Microsoft made the software open source. And experts debate to what extent open source security can be maintained.

  • July 21, 2015 21 Jul'15

    Microsoft releases out-of-band patch for Windows zero-day

    A Windows zero-day affecting a wide swath of Microsoft products has been found in the Hacking Team data leak, so Microsoft has released an out-of-band patch to fix the vulnerability.

  • July 20, 2015 20 Jul'15

    Black Hat and Google speak out against Wassenaar Arrangement

    The Wassenaar Arrangement is a multilateral export control association aimed at controlling a wide range of goods, including intrusion software. However, Black Hat and Google believe the proposed rules will have a negative impact on security.

  • July 17, 2015 17 Jul'15

    DOJ takes down Darkode, but for how long?

    The U.S. Department of Justice, in coordination with 20 countries, has taken down the computer hacking forum known as Darkode, but experts say the community is already rebuilding.

  • July 17, 2015 17 Jul'15

    Subway app reverse engineering highlights uptick in mobile app safety

    News roundup: Are the tides turning on mobile app safety? One white hat hacker's attempt to reverse-engineer the Subway app offers surprising results. Plus: CloudFlare Transparency Report; another call to eliminate RC4; Black Hat attendant survey.

  • July 16, 2015 16 Jul'15

    Flash Player security failures turn up the hate

    There have been calls for the death of the Adobe Flash Player for years either due to performance issues or the threat of exploit. But with a recent rash of zero-day vulnerabilities, those calls are getting louder.

  • July 15, 2015 15 Jul'15

    More Flash zero-day bugs follow Hacking Team breach

    Researchers discovered two more vulnerabilities in Adobe Flash player stemming from the breach of Italian surveillance software vendor Hacking Team.