August 2019

• August 29, 2019 29 Aug'19

  Varied options to solving the cybersecurity skills shortage

  There are no easy answers for the cybersecurity skills shortage facing the industry, other than working harder to diversify and expand the workforce, according to ESG's Jon Oltsik.  Continue Reading

• August 29, 2019 29 Aug'19

  Browse the best email security products for your enterprise

  Finding the best email security product is vital to protect companies from cyberattacks. Here's a look at the current market leaders.  Continue Reading

• August 29, 2019 29 Aug'19

  Suspect in Capital One breach indicted for additional intrusions

  The alleged Capital One hacker, Paige Thompson, was charged with additional counts of fraud and abuse for stealing data from more than 30 other organizations.  Continue Reading

• August 29, 2019 29 Aug'19

  How to navigate the often challenging CISO career path

  There's no clear-cut path to becoming a CISO. However, the right security certifications, an ever-questioning attitude and a strong network of CISO peers can help prepare you for the journey.  Continue Reading

• August 28, 2019 28 Aug'19

  VMware's internal Service-defined Firewall reimagines firewalling

  VMware's internal firewall uses a global view of known-good behavior at the network and host level to minimize the attack surface for on-premises and cloud environments.  Continue Reading

• August 28, 2019 28 Aug'19

  Imperva security incident exposes cloud WAF customer data

  Imperva told its cloud WAF customers to change passwords and SSL certificates after a security incident exposed data and potentially put customers at risk for further attacks.  Continue Reading

• August 28, 2019 28 Aug'19

  Breaking into cybersecurity careers through nontraditional paths

  Some DEF CON attendees discussed their nontraditional paths into cybersecurity and how networking and being eager to learn can bridge the gap between experience and job requirements.  Continue Reading

• August 26, 2019 26 Aug'19

  Defending against the most common wireless network attacks

  The most common wireless network attacks change over time, but not that much. Find out which tactics still work for attackers and how to defend against them.  Continue Reading

• August 26, 2019 26 Aug'19

  Puppet launches its first vulnerability remediation product

  Puppet Remediate is a vulnerability remediation product that shares data between security and IT ops, provides risk-based prioritization and offers agentless remediation.  Continue Reading

• August 23, 2019 23 Aug'19

  Carbon Black acquisition bolsters VMware's security play

  VMWare announced an agreement to acquire endpoint security vendor Carbon Black in an effort to boost its cloud security offerings; the all-cash deal is valued at $2.1 billion.  Continue Reading

• August 23, 2019 23 Aug'19

  Securing IoT involves developers, manufacturers and end users alike

  Who's to blame for the IoT security problem: manufacturers creating devices, end user deploying them or governments not creating legislation enforcing security measures?  Continue Reading

• August 23, 2019 23 Aug'19

  DARPA unveils first SSITH prototype to mitigate hardware flaws

  DARPA is still in the early prototype stages of its SSITH program, but the aim is to develop an open source chip able to block hardware attacks and reduce the need for software patches.  Continue Reading

• August 23, 2019 23 Aug'19

  What's the best way to prevent XSS attacks?

  To prevent cross-site scripting attacks, software developers must validate user input and encode output. Review characters to filter out, as well as sources and sinks to avoid.  Continue Reading

• August 22, 2019 22 Aug'19

  Certified Information Systems Auditor (CISA)

  Certified Information Systems Auditor (CISA) is a certification issued by ISACA to people in charge of ensuring that an organization's IT and business systems are monitored, managed and protected; the certification is presented after completion of a...  Continue Reading

• August 21, 2019 21 Aug'19

  The difference between zero-day vulnerability and zero-day exploit

  A zero-day vulnerability isn't the same as a zero-day exploit. Learn the difference between these two zero-day terms, as well as why they should be high priority on any CISO's patching list.  Continue Reading

• August 21, 2019 21 Aug'19

  Texas ransomware attack hits 22 municipalities, demands $2.5M

  Ransomware attacks hit 22 municipalities around Texas, most of which appear to be smaller local governments, but the details surrounding the attacks are still unclear.  Continue Reading

• August 20, 2019 20 Aug'19

  KNOB attack puts all Bluetooth devices at risk

  Security researchers discovered a way to force Bluetooth devices to use easy-to-crack encryption keys, which could lead to man-in-the-middle attacks and information leaks.  Continue Reading

• August 20, 2019 20 Aug'19

  New network traffic analysis tools focus on security

  Companies have used traffic data analytics to improve bandwidth and network performance. Now, though, a new class of tools taps network data to improve security.  Continue Reading

• August 20, 2019 20 Aug'19

  Network traffic analysis tools secure a new, crucial role

  Gartner just produced its first-ever guide to network traffic analytics security tools. Learn how the analysis of network traffic is broadening to include network security.  Continue Reading

• August 20, 2019 20 Aug'19

  Why is patch management important?

  Borderless networks present new challenges for security pros. Andrew Froehlich explains how this trend makes patch management even more important.  Continue Reading