News

News

• April 27, 2018 27 Apr'18

  SentinelOne CEO: Endpoint security market full of 'noise and confusion'

  In part two of the interview with SentinelOne CEO Tomer Weingarten, he discusses how niche products and venture capital investments have affected the endpoint security space.

• April 27, 2018 27 Apr'18

  Sexy, but stupid: Biometrics security requires balancing risks

  When it comes to biometrics, security coexists with stupidity, unless implementers take the time to understand the limits, according to Adam Englander at RSAC 2018.

• April 27, 2018 27 Apr'18

  Keycard vulnerability threatens millions of hotel rooms

  News roundup: Researchers found a keycard vulnerability that enabled them to enter millions of hotel rooms worldwide. Plus, Yahoo has been fined $35 million by the SEC, and more.

• April 26, 2018 26 Apr'18

  Philip Tully: AI cyberattacks, AI arms race are coming

  Malicious actors are working on AI cyberattacks and other ways to augment threat activity with AI. Philip Tully discusses how that can work and if enterprise security can keep pace.

• April 26, 2018 26 Apr'18

  Risk & Repeat: Hacking back, GDPR and more from RSAC

  In this week's Risk & Repeat podcast, SearchSecurity editors discuss some of the major themes and debates from RSA Conference, from hacking back to GDPR compliance.

• April 26, 2018 26 Apr'18

  SecureWorks warns of business email compromise campaign

  SecureWorks researchers uncovered an extensive business email compromise campaign targeting the maritime shipping industry, which may have cost organizations millions of dollars.

• April 26, 2018 26 Apr'18

  IXPs asked to mind their 'MANRS' to improve routing security

  The Internet Society expands its Mutually Agreed Norms for Routing Security, or MANRS, to IXPs as a means to protect the internet from route hijacking, leaks and IP address spoofing.

• April 26, 2018 26 Apr'18

  Philip Tully: AI models are cost prohibitive for some enterprises

  Philip Tully discusses the expensive and time-consuming work of building AI models and how those models can become the target of cyberattacks by malicious actors.

• April 25, 2018 25 Apr'18

  BGP routing security flaw caused Amazon Route 53 incident

  A BGP routing security flaw enabled unknown threat actors to steal cryptocurrency by hijacking internet routing and rerouting traffic to a phishing site in Russia.

• April 25, 2018 25 Apr'18

  Rachel Tobac: Social engineering attacks need real-world 2FA

  Rachel Tobac discusses how to train employees to avoid social engineering attacks and how individuals can keep themselves safe with awareness and by being 'politely paranoid.'

• April 24, 2018 24 Apr'18

  Akamai touts network perimeter security shifts, zero-trust model

  As network perimeter security grows less practical, Akamai talks at RSA Conference about moving beyond firewalls to improve authentication with a zero-trust model.

• April 23, 2018 23 Apr'18

  Women in cybersecurity discuss hiring, advice and being mentors

  A panel of women cybersecurity professionals at the RSA Conference discussed ways to find the best job candidates, the best advice they've received and how to be better mentors.

• April 20, 2018 20 Apr'18

  Government hacking tactics questioned at OURSA

  The ACLU's Jennifer Granick took government hacking to task at the OURSA Conference this week, calling out mass surveillance techniques and the limited scope of search warrants.

• April 20, 2018 20 Apr'18

  Keeper Security forms vulnerability disclosure program with Bugcrowd

  Following its controversial lawsuit against an Ars Technica security reporter, Keeper Security has teamed with Bugcrowd on a formal vulnerability disclosure program.

• April 20, 2018 20 Apr'18

  Another misconfigured Amazon S3 bucket exposes 48M records

  News roundup: A misconfigured Amazon S3 bucket led to the exposure of 48 million records collected by a private data analytics firm. Plus, PCI SSC updated its cloud guidelines, and more.