Security Management Strategies for the CIO
Email Alerts
-
Expert advocates for more effective pen tests, less complex security
A security expert warns organizations against buying the latest and greatest security technology and advocates for more effective pen testing at InfoSec World Conference and Expo 2012. News | 02 Apr 2012
-
Longstanding network security problems plague enterprises, Trustwave finds
While organizations focus on mobile security and other emerging threats, an analysis of more than 2,000 penetration tests conducted by Trustwave found older threats often overlooked. News | 07 Feb 2012
-
Nothing funny about SCADA and ICS security
A researcher calls the state of industrial control system security “laughable” and warns of the consequences of unpatched critical infrastructure that is reachable over the Internet. News | 06 Feb 2012
-
Adobe makes pitch for defensive security research to cripple exploit writing
Adobe security and privacy director Brad Arkin urges the security industry to develop technologies that make exploit writing costly. News | 03 Feb 2012
-
Sophos software design, implementation critically flawed, says researcher
A researcher says poor Sophos software security leaves many open doors, notably cryptographic and attack-mitigation weaknesses in Sophos’ AV engine. News | 04 Aug 2011
-
Chromebook security in question due to flawed Google Chrome extensions
Cross-site scripting flaws enable security researchers to bypass Chromebook security and silently steal sensitive data by hijacking browser sessions. News | 03 Aug 2011
-
Security lab, pen testing key to proactive, creative cybersecurity
IT officers at different federal agencies recommend giving "the nerds, the geeks, and the young people" a chance to pen test systems. News | 04 May 2011
-
As cyberattacks increase, so does need for penetration testing
The rise in cyberattacks highlights the need for robust penetration testing of government networks. News | 20 Apr 2011
-
Hackers find McAfee.com website vulnerabilities
More than a dozen errors at McAfee.com and its software download site could lead to cross-site scripting or other attacks, according to a group of hackers that discovered the flaws. Article | 29 Mar 2011
-
Core Security launches CISO-level pen testing software
The new Core Insight pen testing suite can lay out the history of testing campaigns and the relative threat level of an enterprise's systems. Article | 15 Dec 2010