Features

Features

• Elastic Stack Security tutorial: How to create detection rules

  This excerpt from 'Threat Hunting with Elastic Stack' provides step-by-step instructions to create detection rules and monitor network security events data.  Continue Reading

• Elastic Security app enables affordable threat hunting

  New to threat hunting in cybersecurity? Consider using the open code Elastic Stack suite to gather security event data and create visualizations for decision-makers.  Continue Reading

• The components and objectives of privacy engineering

  Privacy engineering helps organizations balance business and privacy needs, while mitigating the impact of data breaches. Learn about its components and objectives.  Continue Reading

• The intersection of privacy by design and privacy engineering

  Data privacy concerns are widespread. Privacy by design and privacy engineering help organizations balance privacy with utility and usability. Learn how.  Continue Reading

• Ultimate guide to secure remote access

  This comprehensive secure remote access guide outlines the strategies, tools and best practices to provide anywhere access while protecting data, systems and users.  Continue Reading

• Tools to conduct security chaos engineering tests

  Security teams are becoming curious about how chaos engineering can benefit them. Read about the security chaos engineering tools available for early adopters.  Continue Reading

• API security strategies must evolve to include API protection

  An API security strategy must include the ability to protect APIs post-deployment, but questions abound about ownership, which tools to use and how to get started.  Continue Reading

• Why chaos engineering testing makes sense for cybersecurity

  Using the concept of chaos engineering, teams can determine whether systems perform as intended in time of need. But how does it relate to security?  Continue Reading

• Ransomware trends, statistics and facts in 2021

  Supply chain attacks, double extortion and RaaS were just a few of the ransomware trends plaguing 2021.  Continue Reading

• Amid explosive growth, API security a growing concern

  APIs are expanding exponentially across the technology landscape and creating a vast attack surface that enterprise security teams are struggling to understand and defend.  Continue Reading

• 5 cybersecurity personality traits for a successful career

  In this excerpt of 'Confident Cyber Security,' author Jessica Barker outlines five cybersecurity personality traits employers look for in job candidates.  Continue Reading

• How to start a career in cybersecurity from the human side

  Discover how the co-founder of an infosec consultancy and author of 'Confident Cyber Security' started her career and became a leader in the human nature side of security.  Continue Reading

• How to use Python for privilege escalation in Windows

  Penetration testers can use Python to write scripts and services to discover security vulnerabilities. In this walkthrough, learn how to escalate privileges in Windows.  Continue Reading

• Why hackers should learn Python for pen testing

  The authors of 'Black Hat Python' explain the importance of learning Python for pen testing, how it helps create scripts to hack networks and endpoints, and more.  Continue Reading

• The complete guide to ransomware

  Organizations in every industry can be targets of cybercrime for profit. Get expert advice on ransomware prevention, detection and recovery in our comprehensive guide.  Continue Reading

• 4 types of ransomware and a timeline of attack examples

  There are four main types of ransomware, but many examples of ransomware strains. Learn how the ransomware types work, and review notable ransomware attacks and variants.  Continue Reading

• The history and evolution of ransomware

  Ransomware has evolved from a malicious floppy disk demanding $189 in ransom to a trillion-dollar industry with ransom for rent, sophisticated techniques and big-name victims.  Continue Reading

• How to use Ghidra for malware analysis, reverse-engineering

  The Ghidra malware analysis tool helps infosec beginners learn reverse-engineering quickly. Get help setting up a test environment and searching for malware indicators.  Continue Reading

• Get started with the Ghidra reverse-engineering framework

  Malware analysts use Ghidra to examine code to better understand how it works. Learn what to expect from the reverse-engineering framework, how to start using it and more.  Continue Reading

• 6 reasons unpatched software persists in the enterprise

  Patching is like flossing -- everyone knows they should do it, yet too few do it often and well. Explore why unpatched software is still ubiquitous, despite the risks.  Continue Reading

• How to prepare for the CIPP/US exam

  The co-authors of a CIPP/US study guide offer advice on the IAPP certification, including career benefits, how to prepare and how the U.S. exam differs from other regions' exams.  Continue Reading

• Top 10 ransomware targets in 2021 and beyond

  One in three organizations suffered ransomware attacks in a single year, according to research. And, while some industries are taking particularly hard hits, no one is safe.  Continue Reading

• Experts debate XDR market maturity and outlook

  Is extended detection response still all buzz and no bite? Experts disagree on whether XDR qualifies as a legitimate market yet or still has a ways to go.  Continue Reading

• SolarWinds CEO: Breach transparency 'painful' but necessary

  SolarWinds CEO Sudhakar Ramakrishna discusses his company's ongoing breach investigation, shares lessons learned from the attack and cautions IT pros on zero trust.  Continue Reading

• Why companies should use AI for fraud management, detection

  AI is involved in many cybersecurity processes. Now it's making inroads in fraud management and detection. The benefits, however, are not without AI's nagging bias challenge.  Continue Reading

• 17 ransomware removal tools to protect enterprise networks

  Check out this list of ransomware removal platforms to detect possible security threats, block attacks, and erase any malware lingering on devices and enterprise networks.  Continue Reading

• 3 ransomware detection techniques to catch an attack

  It's not enough to protect a company's system from ransomware. Reduce damage from attacks with these three ransomware detection methods.  Continue Reading

• Malware analysis for beginners: Getting started

  With the cybersecurity industry struggling to fill open positions, now is the time to start in the field. Infosec expert Dylan Barker shares what you should know to be a malware analyst.  Continue Reading

• Top static malware analysis techniques for beginners

  Malware will eventually get onto an endpoint, server or network. Using static analysis can help find known malware variants before they cause damage.  Continue Reading

• How privacy engineers promote innovation and trust

  Forward-thinking companies are hiring privacy engineers. Could your organization benefit? Uncover how these experts promote innovation and fortify customer trust.  Continue Reading

• The differences between open XDR vs. native XDR

  With extended detection and response, security teams get improved threat analytics and response capabilities. Here's what they need to know to choose the right type of XDR.  Continue Reading

• How to prepare for the CompTIA CySA+ exam

  The author of the CompTIA CySA+ certification guide offers advice on how to prepare for the exam, discusses the benefits of the cert and more.  Continue Reading

• Keycloak tutorial: How to secure different application types

  IT pros and developers can secure applications with the open source IAM tool Keycloak. When you don't need to worry about passwords, it reduces the potential attack surface.  Continue Reading

• Secure applications with Keycloak authentication tool

  As we look toward the future of authentication, open source tools, such as Keycloak, provide companies a way to secure applications to its specific needs.  Continue Reading

• Cybersecurity investments surge in 2021 as VCs go all in

  Venture capital firms have flooded the cybersecurity market this year with investment dollars for young startups and established vendors alike. What's behind this surge?  Continue Reading

• 5 IAM trends shaping the future of security

  The importance of identity and access management cannot be denied. However, the same old tools can't properly secure today's complex environments. These IAM trends are here to help.  Continue Reading

• 10 of the biggest ransomware attacks of 2021 -- so far

  Between hefty ransom demands, major disruptions and leaked data, 2021 has seen major ransomware activity during the first half of the year.  Continue Reading

• What is the BISO role and is it necessary?

  Relatively new and somewhat controversial, the business information security officer, or BISO, acts as the CISO's tactical and operations-level ambassador to the business units.  Continue Reading

• Common Linux vulnerabilities admins need to detect and fix

  Server admins need to prepare for a variety of common Linux vulnerabilities, from software and hardware vulnerabilities to employee-created ones and even digital espionage.  Continue Reading

• How to implement Linux security best practices

  When setting up security for a company's infrastructure, admins need to focus on backups, patch management and regular vulnerability scans.  Continue Reading

• 10 identity and access management tools to protect networks

  IAM tools keep enterprises safe by ensuring only authorized users can access sensitive data and applications. Read this in-depth product overview of top tools on the market.  Continue Reading

• How to get started with security chaos engineering

  Introducing security chaos engineering: the latest methodology security teams can implement to proactively discover vulnerabilities or weaknesses in a company's system.  Continue Reading

• Hackers vs. lawyers: Security research stifled in key situations

  The age-old debate between sharing information or covering legal liability is a growing issue in everything from bug bounties to disclosing ransomware attacks.  Continue Reading

• Security observability vs. visibility and monitoring

  Security observability, monitoring and visibility play different roles but together provide the tools to establish an all-encompassing enterprise security architecture.  Continue Reading

• How to handle social engineering penetration testing results

  In the wake of conducting social engineering penetration testing, companies need to have a plan ready to prevent or minimize phishing, vishing and other attacks.  Continue Reading

• How to ethically conduct pen testing for social engineering

  Author Joe Gray explores his interest in pen testing for social engineering, what it means to be an ethical hacker and how to get started in the career.  Continue Reading

• What is secure remote access in today's enterprise?

  Out with the old, in with the new. The meaning of secure remote access, and how organizations achieve it, is changing. Here's what you need to know.  Continue Reading

• Inept cybersecurity education and training feed into skills gap

  Learn why former infosec instructor and author of 'How Cybersecurity Really Works' advocates for changes to security education and training to alleviate the industry skills gap.  Continue Reading

• Network reconnaissance techniques for beginners

  In this excerpt of 'How Cybersecurity Really Works,' author Sam Grubb breaks down common network reconnaissance techniques used by adversaries to attack wired networks.  Continue Reading

• MDM vs. MAM: What are the key differences?

  Mobile workers are productive and even essential to business success. But IT has to protect corporate apps and data -- as well as worker privacy -- via MDM, MAM or both.  Continue Reading

• Apiiro wins RSA Conference Innovation Sandbox Contest

  Apiiro's automated Code Risk Platform analyzes enterprise software for material changes that can lead to security vulnerabilities, data exposures and compliance risks.  Continue Reading

• RSA Conference 2021: 3 hot cybersecurity trends explained

  In a lightning round session at RSA Conference, ESG analysts discussed three of the hottest topics in cybersecurity in 2021: zero trust, XDR and SASE.  Continue Reading

• How to secure remote access for the hybrid work model

  With the post-COVID-19 hybrid work model taking shape, discover the technologies and trends analysts and IT leaders view as the anchors to ensure secure remote access.  Continue Reading

• 4 ways to handle the cybersecurity skills shortage in 2021

  More than half of cybersecurity pros say their organizations could do more to manage negative effects of the skills shortage, such as overwork and burnout. Find out how.  Continue Reading

• 12 essential features of advanced endpoint security tools

  In addition to protecting an organization's endpoints from threats, IT administrators can use endpoint security tools to monitor operation functions and DLP strategies.  Continue Reading

• Cyber Defense Matrix makes sense of chaotic security market

  The Cyber Defense Matrix aims to help CISOs make strategic, informed security investments that weigh cyber risk mitigation in the context of business constraints and goals.  Continue Reading

• Endpoint security strategy: Focus on endpoints, apps or both?

  Companies know how to secure traditional endpoints, but what about mobile devices outside the network? They should decide if they want to protect devices, apps or both.  Continue Reading

• From EDR to XDR: Inside extended detection and response

  As the definition of endpoints evolves, so too must the technology to protect them. Enter extended detection and response, or XDR -- one of cybersecurity's hottest acronyms.  Continue Reading

• Despite confusion, zero-trust journey underway for many

  Zero trust is a catchy phrase with seemingly lofty goals. Uncover the reality behind one of infosec's hottest buzzphrases, and learn why it's within reach for many companies today.  Continue Reading

• 6 ways to spur cybersecurity board engagement

  New research suggests corporate boards are paying closer attention to cybersecurity, but experts say progress is still modest and slow.  Continue Reading

• Buyers must navigate cybersecurity market confusion

  Customer confusion in the security market stems from the number of new products designed to deal with a growing number of cyberthreats. Experts look at how to navigate it all.  Continue Reading

• SolarWinds puts national cybersecurity strategy on display

  Biden imposed economic sanctions on Russia for its role in the SolarWinds cyber attack. Experts see the response as just one part of a larger national cybersecurity strategy.  Continue Reading

• Learn how to mitigate container security issues

  The more companies embrace application containerization, the more they need to know about container security issues and attack prevention methods.  Continue Reading

• Adopting containers and preventing container security risks

  When it comes to container security risks, organizations often worry about container escapes, but as expert Liz Rice explains, they should focus on prevention and patching.  Continue Reading

• Applying web application reconnaissance to offensive hacking

  Learn how to apply web application reconnaissance fundamentals to improve both offensive and defensive hacking skills in an excerpt of 'Web Application Security' by Andrew Hoffman.  Continue Reading

• Collaboration is key to a secure web application architecture

  Author Andrew Hoffman explains the importance of a secure web application architecture and how to achieve it through collaboration between software and security engineers.  Continue Reading

• Nation-state hacker indictments: Do they help or hinder?

  While there are some benefits to filing criminal charges against nation-state actors, infosec experts say thus far, indictments haven't reduced cyber attacks.  Continue Reading

• CCISO exam guide authors discuss the changing CISO role

  Learn more about EC-Council's Certified CISO exam and how the certification helps CISOs at any organization manage successful infosec programs and a changing threat landscape.  Continue Reading

• Advice on how to prepare for the CompTIA Security+ exam

  The CompTIA Security+ certification is a smart starting point for cybersecurity career hopefuls. Learn how to prepare for the exam, what to expect post-certification and more.  Continue Reading

• Can a new DHS cybersecurity strategy help the private sector?

  The U.S. Department of Homeland Security outlines federal plans to improve public and private cybersecurity, but analysts advise caution over strategies that can't be mandated.  Continue Reading

• Ransomware attack case study: Recovery can be painful

  Even with full backups and no permanent data loss, recovering from ransomware can be expensive and painful, as evidenced in this ransomware attack case study.  Continue Reading

• Feds debate while states act on data privacy laws

  As Congress debates its next move on how to regulate big tech, states are already enacting legislation. Their push will likely serve as a model for the federal government.  Continue Reading

• Ransomware negotiations: An inside look at the process

  Ransomware negotiators are brought in to communicate with cybercriminals and hopefully arrange less expensive payments. How often do they succeed?  Continue Reading

• How to fix the top 5 cybersecurity vulnerabilities

  Check out the top five cybersecurity vulnerabilities and find out how to prevent data loss or exposure, whether the problem is end-user gullibility, inadequate network monitoring or poor endpoint security defenses.  Continue Reading

• Top benefits of SOAR tools, plus potential pitfalls to consider

  To ensure successful adoption, IT leaders need to understand the benefits of SOAR tools, as well as potential disadvantages. Explore pros, cons and how to measure SOAR success.  Continue Reading

• How to set up Palo Alto security profiles

  Learning how to build and implement security profiles and policies can help novice admins make sure they use Palo Alto Networks firewalls effectively to protect their network.  Continue Reading

• Author's advice on Palo Alto firewall, getting started

  Interfaces, licenses, policies -- getting started with a Palo Alto Networks firewall can be confusing. Here, the author of 'Mastering Palo Alto Networks' offers his advice.  Continue Reading

• 10 leading incident response vendors for 2021

  Incident response vendors offer a variety of specialized tools to help organizations plan and manage their overall cybersecurity posture. Learn about 10 of them here.  Continue Reading

• Top incident response tools to boost network protection

  Incident response tools can help organizations identify, prevent and respond to malware exploits, ransomware and other targeted cybersecurity attacks.  Continue Reading

• After Oldsmar: How vulnerable is US critical infrastructure?

  Following the highly publicized breach of a water treatment plant in Oldsmar, Fla., industrial security experts discuss the state of critical infrastructure risk in 2021.  Continue Reading

• Explore 5 business email compromise examples to learn from

  Gift cards are for gifts, never for payment. Explore real-world examples of business email compromise to learn common attack patterns and red flags.  Continue Reading

• How to become a threat hunter

  Top threat hunters are creative and slightly contrarian, enabling them to think outside the box -- much like the best cybercriminals, according to one expert.  Continue Reading

• Top 10 types of information security threats for IT teams

  Common security threats range from insider threats to advanced persistent threats, and they can bring an organization to its knees unless its in-house security team is aware of them and ready to respond.  Continue Reading

• 3 ransomware distribution methods popular with attackers

  To prevent cyber attacks, understanding how they work is half the battle. Explore the most common ransomware distribution methods in this excerpt of 'Preventing Ransomware.'  Continue Reading

• Malware researcher speculates on the future of ransomware

  Abhijit Mohanta, author of 'Preventing Ransomware,' opines on the future of ransomware and discusses why this attack is favored among cybercriminals.  Continue Reading

• Why developers should consider automated threat modeling

  Traditional threat modeling is hard. Can automated threat modeling make development and security teams' lives easier?  Continue Reading

• Introducing development teams to threat modeling in SDLC

  Enterprises can improve their security posture by educating development teams on threat modeling so they can work alongside security teams and everyone knows a common language.  Continue Reading

• SolarWinds fallout has enterprise CISOs on edge

  As investigators uncover more about the massive SolarWinds hack, enterprise CISOs' concerns about digital supply chain security grow.  Continue Reading

• Threat detection and response tools evolve and mature

  A variety of threat detection and response tools, such as XDR, are evolving into platforms to help enterprises share information and stay ahead of cybersecurity threats.  Continue Reading

• 4 tips for aligning security with business objectives

  Today's most effective CISOs develop cybersecurity strategies that fit their organizations' risk appetites and support business growth. Learn how they do it.  Continue Reading

• 5 cybersecurity lessons from the SolarWinds breach

  Ransomware attack simulations, accessing enterprise logs and pen testing software code are among the best practices cybersecurity pros suggest following the SolarWinds breach.  Continue Reading

• The dark web in 2021: Should enterprises be worried?

  SearchSecurity spoke with multiple experts to find out how the dark web has changed, what the security risks are for enterprises and the value of dark web monitoring services.  Continue Reading

• The case for applying psychology in cybersecurity training

  Chartered psychologist Rebecca McKeown describes how psychology in cybersecurity can improve incident response and makes the case for a research-based approach to training.  Continue Reading

• The ultimate guide to cybersecurity planning for businesses

  This in-depth cybersecurity planning guide provides information and advice to help organizations develop a successful strategy to protect their IT systems from attacks.  Continue Reading

• The 5 different types of firewalls explained

  Read up on the five different firewalls' similarities and differences, the three firewall deployment models and tips for choosing the firewall that best meets your company's needs.  Continue Reading

• What is the future of cybersecurity?

  Remote work is here to stay, so it's time to rethink the short-term fixes made in 2020. What else is in the cards? Here are the trends shaping the future of cybersecurity.  Continue Reading

• Biometric security technology could see growth in 2021

  Enterprise use of biometrics for security may see an uptick by organizations looking to defend themselves from attacks, but they must weigh the concerns against the benefits.  Continue Reading

• 2021 IT priorities require security considerations

  AI, IoT and 5G are among the top IT priorities for CIOs and CTOs in 2021. Is your team prepared to address each tech's security needs?  Continue Reading

• Ransomware 'businesses': Does acting legitimate pay off?

  Ransomware gangs such as Maze have portrayed themselves almost like penetration testing firms and referred to victims as 'clients.' What's behind this approach?  Continue Reading

• Preparing for GIAC Certified Incident Handler certification

  The author of 'GCIH GIAC Certified Incident Handler All-in-One Exam Guide' shares advice on how to prepare for the exam and why an incident response career can be so rewarding.  Continue Reading