SearchSecurity
New & Notable
News
COVID-19 threats rising as overall cybercrime holds steady
Overall cybercrime activity isn't necessarily going up amid COVID-19, experts say. However, coronavirus-themed emails are becoming the dominant form of phishing attacks.
Evaluate
Putting MFA in context: Pros and cons of biometrics
Hoping for a passwordless future? Multifactor authentication using biometrics may be the answer. Consider biometric authentication's pros, cons and implications before deploying.
Manage
How to threat model service mesh
In microservices and service mesh environments, communications don't follow static paths. As such, security teams must update their application threat modeling methods.
Manage
How to implement a strong COVID-19 cybersecurity plan
Cybercriminals aren't slowing down during the coronavirus pandemic, and neither can your security. Learn what are the biggest threats and how to stop them cold.
Download: Your Complete Guide to IAM
Utilize this 66-page IAM guide to help you stay on top of the latest best practices and techniques. Security expert Michael Cobb explores the risks and rewards of biometrics measures and multifactor authentication, how organizations can assess if it is time to modernize IAM strategies, and much more.
Trending Topics
-
Emerging threats Manage
How to implement a strong COVID-19 cybersecurity plan
Cybercriminals aren't slowing down during the coronavirus pandemic, and neither can your security. Learn what are the biggest threats and how to stop them cold.
-
Windows security News
Another critical flaw discovered in Microsoft's SMB protocol
Microsoft disclosed a new remote code execution vulnerability associated with the Microsoft Server Message Block 3.1.1 (SMBv3) protocol, but there's currently no patch available.
-
PCI DSS Evaluate
Explore the next-generation firewall marketplace
Explore some of the top NGFWs currently on the market -- based on features and user reviews -- to help you make a buying decision
-
Encryption technology Get Started
How symmetric and asymmetric encryption algorithms differ
Explore the differences between symmetric vs. asymmetric encryption algorithms, including common uses and examples of both, as well as their pros and cons.
-
Security industry trends Evaluate
Managing expectations when buying AI-based products
Vendors and customers must be aware of potential gaps between expectations and reality in the sale or purchase of AI cybersecurity products, AI security expert advises.
-
CISSP Get Started
Passing the CISSP exam: How hard is it?
Want to become a CISSP? Here's everything you need to know, such as how difficult the exam is, tips for studying, what's needed to obtain a passing score and more.
Topics Covered
-
Data security technology and strategy (5) +
-
Enterprise identity and access management (8) +
-
Enterprise network security (9) +
- DDoS attack detection and prevention
- Endpoint protection and client security
- IoT security issues
- IPv6 security and network protocols security
- Network Access Control technologies
- Network device security: Appliances, firewalls and switches
- Secure remote access
- Software-defined security best practices
- VPN security
-
Information security certifications, training and jobs (2) +
-
Information security program management (7) +
- Government information security management
- Information security incident response
- Information security laws, investigations and ethics
- Information security policies, procedures and guidelines
- Security automation systems, tools and tactics
- Security industry market trends, predictions and forecasts
- Security vendor mergers and acquisitions
-
Information security risk management (3) +
-
Information security threats (5) +
-
Network threat detection (4) +
-
Platform security (3) +
-
Security audit, compliance and standards (4) +
-
Software and application security (9) +
- Application attacks (buffer overflows, cross-site scripting)
- Application firewall security
- Database security
- Microsoft Patch Tuesday and patch management
- Open source security tools and software
- Productivity apps and messaging security
- Secure SaaS: Cloud application security
- Secure software development
- Social media security risks
-
Web security tools and best practices (3) +
-
Wireless and mobile security (4) +
Featured Authors
Find Solutions For Your Project
-
Evaluate
Your IoT security forecast for 2020
The future of IoT security will be driven by technological and societal shifts. Learn how regulatory efforts, biometrics and edge computing will affect IoT markets this year.
-
Putting MFA in context: Pros and cons of biometrics
-
Managing expectations when buying AI-based products
-
All you need to know about your DLP options
-
-
Problem Solve
Pandemic fuels cybercrime and coronavirus phishing scams
Organizations must account for a sharp uptick of coronavirus phishing scams in their pandemic and business continuity plans. Learn about the trend here, with steps for mitigation.
-
What are the biggest threats to IoT risk management?
-
Stop buffer overflow attacks from compromising your enterprise
-
The DIE Triad could fill gaps in the Cyber Defense Matrix
-
-
Manage
How to threat model service mesh
In microservices and service mesh environments, communications don't follow static paths. As such, security teams must update their application threat modeling methods.
-
How to implement a strong COVID-19 cybersecurity plan
-
4 tips to keep remote workers -- and your enterprise -- secure
-
How privacy compliance rules will affect IT security
-
-
E-Handbook | March 2020
How to implement a strong COVID-19 cybersecurity plan
Download -
E-Handbook | February 2020
Advanced cybersecurity fraud and how to fight it
Download -
E-Zine | February 2020
Getting the most from cyberthreat intelligence services
Download -
E-Handbook | January 2020
Put application security testing at the top of your do-now list
Download -
E-Handbook | November 2019
Raise enterprise network visibility, and security rises too
Download
Information Security Basics
-
Get Started
Know your standards and vocab before taking the CISA exam
The CISA certification is proof of an auditor's knowledge and skills. However, the exam isn't easy and requires some heavy learning -- especially when it comes to vocabulary.
-
Get Started
CISA practice questions to help prepare
Ready to take the Certified Information Systems Auditor exam? Use these CISA practice questions to test your knowledge of the audit process job practice domain.
-
Get Started
asymmetric cryptography (public key cryptography)
Asymmetric cryptography, also known as public-key cryptography, is a process that uses a pair of related keys -- one public key and one private key -- to encrypt and decrypt a message and protect it from unauthorized access or use.
Multimedia
-
Evaluate
Your IoT security forecast for 2020
-
-
Vendor Resources
- What Is Application Security? –Data Sheet
- 5 Ways to Boost Agility by Transforming Workforce Identity –Resource
- The Hard Truth About Winning Against Cyber Threats –White Paper
Blog: Security Bytes
-
Google focuses more on steering the Android ship than righting it
Google's security and privacy upgrades to Android are mostly forward-thinking changes, readying for a future that is inevitable but unclear, rather than ways to improve security today.Continue Reading
-
At RSAC 2019, speculative execution threats take a back seat
The Meltdown and Spectre vulnerabilities loomed large last year, but RSAC 2019 will have little fodder on speculative execution threats and side channels attacks.Continue Reading
-
More Security Bytes Posts
Marriott Starwood data breach notification de-values customers
Are US hacker indictments more than Justice Theater?
Breaking down Dell's "potential cybersecurity incident" announcement
-
News
View All -
Email and messaging threats
COVID-19 threats rising as overall cybercrime holds steady
Overall cybercrime activity isn't necessarily going up amid COVID-19, experts say. However, coronavirus-themed emails are becoming the dominant form of phishing attacks.
-
Hacker tools and techniques: Underground hacking sites
Insurance giant Chubb investigates possible breach
Insurance giant Chubb confirmed it is investigating an incident that may involve the Maze ransomware group, which claims to have stolen sensitive data from the company.
-
Cyberespionage and nation-state cyberattacks
Chinese nation-state group executes cyberespionage campaign
A dual cyberespionage and cybercrime group known as APT41 exploited vulnerabilities in Citrix NetScaler/ADC and other products in an extensive, global threat campaign.