News

News

• October 25, 2017 25 Oct'17

  NSA cyberweapons report follows Kaspersky transparency plan

  A Kaspersky transparency initiative and a full code review of its products are on the way, and a new Kaspersky statement explained how NSA cyberweapons were uploaded to its servers.

• October 24, 2017 24 Oct'17

  DHS' Dragonfly ICS campaign alert isn't enough, experts say

  The Department of Homeland Security released an alert confirming the Dragonfly ICS cyberattack campaign, but experts said more action is needed to protect critical infrastructure.

• October 20, 2017 20 Oct'17

  Google Play bug bounty hunts RCE vulnerabilities

  A Google Play bug bounty program, run by Google and HackerOne, asks testers to hunt for remote code execution vulnerabilities in some of the top Android apps.

• October 20, 2017 20 Oct'17

  Latest Kaspersky controversy brings new questions, few answers

  The Kaspersky controversy continued this week as the antivirus company responded to several explosive news stories about its relationship with the Russian government.

• October 20, 2017 20 Oct'17

  Advanced Protection Program locks down Google accounts

  Google's Advanced Protection Program greatly increases the security of user accounts, but the usability tradeoffs may not be worth it for average users.

• Sponsored News

  • Closing Your App Gap with Business Dashboards and Analytics

    Sponsored by IBM - What you don’t know about your apps can hurt you—costing you time, money and productivity. With the right UEM solution, you can use AI to gain actionable insight into app usage, performance and security to quickly and easily get your apps in gear. See More

  • Meeting GDPR Compliance with Endpoints and Mobile Devices

    Sponsored by IBM - May 25, 2018 has passed, but that doesn’t mean your GDPR work is done. Compliance demands constant vigilance, particularly for endpoints and mobile devices. Learn why UEM is the modern approach to meeting ongoing compliance requirements. See More

  • Configure Security Policies for Endpoints & End-Users with Confidence

    Sponsored by IBM - Imagine a way to configure and enforce policies for all endpoints, guided by AI, real-time analytics and best practices from your industry and peer usage. Imagine no longer. With the right UEM solution, you can do all of that—and much more. See More

  • Is Your UEM Solution Tough Enough for Ruggedized Devices?

    Sponsored by IBM - Ruggedized devices have unique characteristics, but they still need to be managed, secured, tracked and updated—same as other endpoints. With UEM you can simply and securely manage all devices using the same platform. Here’s what to look for. See More

  View All Sponsored News
• October 20, 2017 20 Oct'17

  Microsoft mum on 2013 database breach of bug tracking system

  News roundup: Former employees reveal a 2013 database breach exposed Microsoft's bug tracking system, DHS sets new rules for federal agencies on web, email security, and more.

• October 20, 2017 20 Oct'17

  Risk & Repeat: DEFCON tackles voting machine security

  In this week's Risk & Repeat podcast, SearchSecurity editors discuss DEFCON's efforts to improve voting machine security in the wake of hacking threats during the 2016 election.

• October 18, 2017 18 Oct'17

  ROCA RSA flaw unveils secret keys on wide range of devices

  Researchers disclosed the ROCA RSA vulnerability as a dangerous flaw in the cryptographic code of Infineon chips that could undermine encryption key security for a number of devices.

• October 17, 2017 17 Oct'17

  KRACK WPA2 flaw might be more hype than risk

  Researchers discover a WPA2 vulnerability and brand it KRACK, but some experts say the early reports overstate the risk of the flaw and downplay the difficulty of an exploit.

• October 17, 2017 17 Oct'17

  Risk & Repeat: Kaspersky antivirus scans implicated in NSA breach

  In this week's Risk & Repeat podcast, SearchSecurity editors discuss reports implicating Kaspersky antivirus scans in the recently disclosed breach at the National Security Agency.

• October 13, 2017 13 Oct'17

  DOJ's 'responsible encryption' is the new 'going dark'

  News roundup: The DOJ calls for 'responsible encryption' to comply with court orders. Plus, there's more bad cybersecurity news for banks, and Accenture data in AWS gets exposed.

• October 12, 2017 12 Oct'17

  DEFCON hopes voting machine hacking can secure systems

  The first official report on voting machine hacking from DEFCON suggests the need for pen testing, basic security guidelines and cooperation from local and federal governments.

• October 11, 2017 11 Oct'17

  October 2017 Patch Tuesday includes Windows zero-day fix

  The top priority for Microsoft's October 2017 Patch Tuesday goes to a Windows zero-day vulnerability, but IT should also beware of two publicly disclosed flaws.

• October 11, 2017 11 Oct'17

  Risk & Repeat: Scope of Equifax, Yahoo breaches expands

  In this week's Risk & Repeat podcast, SearchSecurity editors discuss the expanding scope of the Equifax and Yahoo breaches and the long-term effects of these major security incidents.

• October 11, 2017 11 Oct'17

  Windows 10 patching could make older systems vulnerable

  Microsoft's practice of automatic Windows 10 patching could be uncovering vulnerabilities in older systems that can be exploited by attackers, Google researchers said.