After SecurID breach, RSA looks to repair its image

While the RSA SecurID breach cost EMC’s security division more than $60 million, executives admit it could take years to restore its tarnished image.
Critical Windows 7 zero-day vulnerability surfaces

Danish vulnerability clearinghouse Secunia is warning of a highly critical memory corruption zero-day vulnerability that could be targeted by attackers. Proof-of-concept code has been published.
How to bolster BIOS security to prevent BIOS attacks

BIOS attacks can be thwarted by implementing NIST guidelines for BIOS security.
NMAP NSE tutorial: ID network assets, vulnerabilities

In this screencast, expert Mike McLaughlin offers an NMAP NSE tutorial for enterprise network asset and vulnerability identification.

Configuration Management Planning

Essential Knowledge
News
Tips
Expert Advice
Definitions
Multimedia
All

Quiz: Reinventing defense in depth

This quiz is part of SearchSecurity.com’s Intrusion Defense Security School lesson, Reinventing defense in depth. Reinforce your knowledge of the key concepts of this lesson by taking the five-question quiz below. Quiz
CISSP Essentials training: Domain 10, Operations Security

Discover everything you need to know to ace the CISSP® exam with our first series of SearchSecurity.com Security School webcasts focused on CISSP training. Each lesson corresponds to a specific domain in the CISSP exam's "Common Body of Knowledge" --... Security School
Technical Security Architecture

Security Architectural Mo
Protection Mechanisms

Security Architectural Mo
The Protection Process

Security Architectural Mo
SecurityEXPERT eases device configuration but requires the UpdateEXPERT patching tool

Learn how St. Bernard's SecurityEXPERT automates deployment and enforcement of strong security configurations across Windows and Unix devices, based on industry best practices. However, it lacks customized reporting and requires the UpdateEXPERT patc... Review

RSA SecurID breach: Executives attempt to repair tarnished image

While the RSA SecurID breach cost EMC’s security division more than $60 million, executives admit it could take years to restore its tarnished image. News | 16 Jan 2012
Critical Windows 7 zero-day vulnerability could lead to iFrame attacks

Danish vulnerability clearinghouse Secunia is warning of a highly critical memory corruption zero-day vulnerability that could be targeted by attackers. Proof-of-concept code has been published. News | 20 Dec 2011
NIST guidelines seek to minimize risk of BIOS attacks

Amid emerging attack methods and the rollout of a new generation of BIOS, NIST offers guidelines to help enterprises reduce the risk of BIOS attacks. News | 21 Sep 2011
Maiffret: Configuration changes, attack mitigation can reduce attack surface

A new report produced by noted security researcher Marc Maiffret outlines free steps companies can take to greatly reduce the attack surface. News | 05 May 2011
LANDesk Software acquired by private equity firm

Thoma Bravo said it signed an agreement to buy LANDesk Software from Emerson Electric to further build out its security market portfolio. Article | 23 Aug 2010
EMC adds configuration management with Configuresoft acquisition

EMC said it would move Configuresoft into its Resource Management Software Group. The software could detect configuration changes in both virtual and physical environments. Article | 27 May 2009
McAfee to acquire Solidcore Systems for whitelisting

The $47 million deal adds Solidcore's whitelisting technology to McAfee's product line up. Article | 15 May 2009
Misconfiguration issues could have contributed to Hannaford breach

Hannaford takes heat from officials who believe the supermarket chain was slow in disclosing its breach. Meanwhile, one of Hannaford's security vendors gets defensive. Article | 19 Mar 2008
Misconfigured networks create huge security risks

Security experts say IT pros should be more concerned about the risks created by misconfigured networks than all the flaws and exploit code they read about. Article | 05 Mar 2008
Private sector should learn from government insecurity

The State Department hearings drew attention to the serious security problems that plague government networks. Federal security improvements will help push private sector progress. Column | 26 Apr 2007
See More: News on Configuration Management Planning

NMAP NSE tutorial: Network asset and vulnerability identification

In this screencast, expert Mike McLaughlin offers an NMAP NSE tutorial for enterprise network asset and vulnerability identification. Tip
Best practices for enterprise database compliance

Successful enterprise database compliance means, for starters, access must be tightly controlled and monitored. Charles Denyer covers key database compliance essentials. Tip
2006 Products of the Year: Vulnerability management

We asked. You answered. Here are your choices for best vulnerability management product of the year. Tip
Configuresoft's Enterprise Configuration Manager v4.7

Information Security magazine's contributing editor, Mike Chapple, reviews Configuresoft's Enterprise Configuration Manager v4.7. Tip
Five ways to simplify the vulnerability management lifecycle

Learn how to quickly and accurately quantify your exposure, communicate that exposure and deploy resources to remediate. Tip
Quiz: Vulnerability management

Test your knowledge of vulnerability management process and methodology with this quiz by Shon Harris, CISSP. Tip
Products of the Year: Vulnerability management

Information Security magazine unveils its best vulnerability management products of 2005. Tip
Week 19: Configuration Management (CM)

In this week's column, Bard offers some tips on configuration management. Tip
Security templates -- the key to simplified deployment

Security templates could be the key to simplifying security deployments. Tip
Applying Windows 2000 Service Pack 2

Tip

How to bolster BIOS security to prevent BIOS attacks

BIOS attacks can be thwarted by implementing NIST guidelines for BIOS security. Answer
Is laptop remote wipe needed for effective laptop data protection?

Expert Michael Cobb explains how laptop remote wipe technology can ease data loss fears, but shouldn’t be solely relied upon. Answer
How does 'arbitrary code' exploit a device?

Ask the Expert
Corporate antivirus benchmarks

Ask the Expert
McAfee installation error

Ask the Expert
Configuring a server for VPN and Internet access

Ask the Expert
Installing software on SOHO appliances

Ask the Expert
De-activating telnet command

Ask the Expert
Dynamic Host Configuration Protocol and security

Ask the Expert
Configurating the Axent Enterprise Security Manager

Ask the Expert

policy server

A policy server is a security component of a policy-based network that provides authorization services and facilitates tracking and control of files... Word

Default deny security: How to implement a positive security model

What is 'default deny' security? How difficult is the implementation process, and how could you sell it to executives? In this video, expert Mike Rothman explains how a positive security model works and how to decide if it's right for your enterprise... Video

RSA SecurID breach: Executives attempt to repair tarnished image

While the RSA SecurID breach cost EMC’s security division more than $60 million, executives admit it could take years to restore its tarnished image. News
Critical Windows 7 zero-day vulnerability could lead to iFrame attacks

Danish vulnerability clearinghouse Secunia is warning of a highly critical memory corruption zero-day vulnerability that could be targeted by attackers. Proof-of-concept code has been published. News
How to bolster BIOS security to prevent BIOS attacks

BIOS attacks can be thwarted by implementing NIST guidelines for BIOS security. Answer
NMAP NSE tutorial: Network asset and vulnerability identification

In this screencast, expert Mike McLaughlin offers an NMAP NSE tutorial for enterprise network asset and vulnerability identification. Tip
Best practices for enterprise database compliance

Successful enterprise database compliance means, for starters, access must be tightly controlled and monitored. Charles Denyer covers key database compliance essentials. Tip
NIST guidelines seek to minimize risk of BIOS attacks

Amid emerging attack methods and the rollout of a new generation of BIOS, NIST offers guidelines to help enterprises reduce the risk of BIOS attacks. News
Is laptop remote wipe needed for effective laptop data protection?

Expert Michael Cobb explains how laptop remote wipe technology can ease data loss fears, but shouldn’t be solely relied upon. Answer
Maiffret: Configuration changes, attack mitigation can reduce attack surface

A new report produced by noted security researcher Marc Maiffret outlines free steps companies can take to greatly reduce the attack surface. News
Quiz: Reinventing defense in depth

This quiz is part of SearchSecurity.com’s Intrusion Defense Security School lesson, Reinventing defense in depth. Reinforce your knowledge of the key concepts of this lesson by taking the five-question quiz below. Quiz
Default deny security: How to implement a positive security model

What is 'default deny' security? How difficult is the implementation process, and how could you sell it to executives? In this video, expert Mike Rothman explains how a positive security model works and how to decide if it's right for your enterprise... Video
See More: All on Configuration Management Planning

About Configuration Management Planning

Configuration management and configuration management databases (CMDBs) have quickly become indispensable tools for security professionals. Get the latest news and tactics on the configuration management process, tools and software.

Latest Headlines

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

Resource Centers

Blogs

Configuration Management Planning

About Configuration Management Planning

More from Related TechTarget Sites