SearchSecurity
New & Notable
News
Detailed BlueKeep RCE explanation posted
After a description for building a remote BlueKeep exploit is posted on GitHub, experts warn that attacks in the wild are becoming more likely and users need to patch.
Problem Solve
3 steps to effective user access reviews
User entitlement reviews ensure employees only have access to essential systems and unauthorized employees -- or miscreants -- don't. Learn how to conduct an audit of user privileges.
News
New research bypasses 'pure AI' malware detection
Security researchers developed a method to make "pure AI" antimalware products classify malware as benign, but it is unclear what antimalware solutions could be considered "pure AI."
News
FTC, states agree to settle Equifax breach complaint
Under the settlement with the FTC and state attorneys general, Equifax will fork over at least $575 million in civil penalties and provide credit monitoring services to consumers.
3 Ways SOAR Can Combat the Cybersecurity Skills Shortage
What are some of the strategies that your organization has implemented to help combat the cybersecurity skills gap? Mike Chapple, senior director of IT at University of Notre Dame explains how log processing, threat intelligence and account lifecycle management can help alleviate the shortage of qualified pros and have teams work smarter, not harder.
Trending Topics
-
Emerging threats News
Detailed BlueKeep RCE explanation posted
After a description for building a remote BlueKeep exploit is posted on GitHub, experts warn that attacks in the wild are becoming more likely and users need to patch.
-
Windows security Manage
How to bypass a Windows kernel protection feature
Security researchers demonstrated how a new fileless attack technique can bypass a Windows kernel protection feature at Black Hat 2018. Find out how the technique works.
-
PCI DSS Evaluate
Explore the next-generation firewall marketplace
Explore some of the top NGFWs currently on the market -- based on features and user reviews -- to help you make a buying decision
-
Encryption technology Problem Solve
How will cryptography adapt to the post-quantum world?
Post-quantum cryptographic algorithms are aimed at securing encrypted data against super-powerful computers in the future, but will they even be necessary? Hanno Böck explains.
-
Security industry trends Problem Solve
Creative hiring managers can close security skills gap
Hiring managers are widening the pool of candidates in response to the cybersecurity skills shortage. Learn how a parks and recreation background can be an asset in threat hunting.
-
CISSP Evaluate
Creative ways to earn CISSP CPEs
Who says you can't have fun while earning CPE credits to maintain your CISSP certification? Check out the top 10 creative ways to meet CISSP continuing education requirements.
Topics Covered
-
Data security technology and strategy (5) +
-
Enterprise identity and access management (8) +
-
Enterprise network security (9) +
- DDoS attack detection and prevention
- Endpoint protection and client security
- IoT security issues
- IPv6 security and network protocols security
- Network Access Control technologies
- Network device security: Appliances, firewalls and switches
- Secure remote access
- Software-defined security best practices
- VPN security
-
Information security certifications, training and jobs (2) +
-
Information security program management (7) +
- Government information security management
- Information security incident response
- Information security laws, investigations and ethics
- Information security policies, procedures and guidelines
- Security automation systems, tools and tactics
- Security industry market trends, predictions and forecasts
- Security vendor mergers and acquisitions
-
Information security risk management (3) +
-
Information security threats (5) +
-
Network threat detection (4) +
-
Platform security (3) +
-
Security audit, compliance and standards (4) +
-
Software and application security (9) +
- Application attacks (buffer overflows, cross-site scripting)
- Application firewall security
- Database security
- Microsoft Patch Tuesday and patch management
- Open source security tools and software
- Productivity apps and messaging security
- Secure SaaS: Cloud application security
- Secure software development
- Social media security risks
-
Web security tools and best practices (3) +
-
Wireless and mobile security (4) +
Featured Authors
Have a question for an expert?
Please add a title for your question
Get answers from your peers on your most technical Information Security challenges.
Meet all of our Information Security experts
Find Solutions For Your Project
-
Evaluate
Introduction to secure email gateways
Email security gateways protect enterprises from threats such as spam and phishing attacks. This article explains how these products get the job done
-
Discover email security requirements and best practices
-
Understanding identity and access management benefits
-
How to hack the cybersecurity gender gap
-
-
Problem Solve
3 steps to effective user access reviews
User entitlement reviews ensure employees only have access to essential systems and unauthorized employees -- or miscreants -- don't. Learn how to conduct an audit of user privileges.
-
Creative hiring managers can close security skills gap
-
The top 3 security challenges with Office 365
-
Hackers plan for incident response counterstrategies
-
-
Manage
Mastercard CTO explains strategy of cybersecurity with AI
Mastercard CTO Kush Saxena describes his approach to cybersecurity and AI as two-fold. Learn how AI and machine learning impacts the cybersecurity practice in the enterprise.
-
Boost application security in DevOps with DevSecOps
-
How should you care for a cybersecurity strategy?
-
5 ways to buoy incident response plans in a digital world
-
-
E-Handbook | June 2019
Why user identity management is a security essential
Download -
Buyer's Handbook | May 2019
How to select and implement a next-gen firewall
Download -
E-Handbook | May 2019
Why EDR technologies are essential for endpoint protection
Download -
E-Zine | May 2019
Conquering cloud security threats with awareness and tools
Download -
360 Guide | April 2019
Inside the 'Master134' malvertising campaign
Download
Information Security Basics
-
Get Started
How to be effective in the role of a CISO
Success in the role of CISO requires security experts to wear many hats. Couple that with changes in compliance regulations and sophisticated cyberthreats, and CISOs are left with a full plate.
-
Get Started
Trojan horse (computing)
In computing, a Trojan horse is a program downloaded and installed on a computer that appears harmless, but is, in fact, malicious.
-
Get Started
Learn how to defend against island hopping attacks
Hackers know better than to directly attack a well-defended target; learn how they use island hopping attack strategies to elude defenders -- and how best to repel them.
Multimedia
Vendor Resources
- Are Your Security Controls Yesterday's News? –White Paper
- SOC 2 Network Security Compliance for Kubernetes Platforms –White Paper
- The DevOps-Ready Security Program –White Paper
Blog: Security Bytes
-
Google focuses more on steering the Android ship than righting it
Google's security and privacy upgrades to Android are mostly forward-thinking changes, readying for a future that is inevitable but unclear, rather than ways to improve security today.Continue Reading
-
At RSAC 2019, speculative execution threats take a back seat
The Meltdown and Spectre vulnerabilities loomed large last year, but RSAC 2019 will have little fodder on speculative execution threats and side channels attacks.Continue Reading
-
More Security Bytes Posts
Marriott Starwood data breach notification de-values customers
Are US hacker indictments more than Justice Theater?
Breaking down Dell's "potential cybersecurity incident" announcement
-
News
View All -
Emerging cyberattacks and threats
Detailed BlueKeep RCE explanation posted
After a description for building a remote BlueKeep exploit is posted on GitHub, experts warn that attacks in the wild are becoming more likely and users need to patch.
-
Endpoint protection and client security
New research bypasses 'pure AI' malware detection
Security researchers developed a method to make "pure AI" antimalware products classify malware as benign, but it is unclear what antimalware solutions could be considered "pure AI."
-
Data security breaches
FTC, states agree to settle Equifax breach complaint
Under the settlement with the FTC and state attorneys general, Equifax will fork over at least $575 million in civil penalties and provide credit monitoring services to consumers.