News

News

• April 19, 2018 19 Apr'18

  Passive DNS techniques can reduce DNS abuse

  Presenting at RSAC 2018, Farsight Security's Merike Kaeo explains how defenders can adopt passive techniques to reduce DNS abuse and stop attacks before they happen.

• April 18, 2018 18 Apr'18

  Paul Kocher weighs in on Spectre flaws, vulnerability disclosure

  At RSA Conference 2018, Paul Kocher, who co-discovered the Spectre flaws, discussed the chip vulnerabilities and explained why disclosure and mitigation efforts were so troubled.

• April 18, 2018 18 Apr'18

  IBM's new AI toolbox is designed to protect AI systems

  IBM has made a new open source AI toolbox that's designed to provide practical defenses for real-world AI systems based on how threat actors can attack AI models.

• April 18, 2018 18 Apr'18

  IBM's Cindy Compert cooks up a batch of GDPR preparation

  GDPR preparation, with practical tips and recipes, was on the menu at RSAC 2018, as IBM CTO Cindy Compert offered practical advice for compliance with the EU privacy regulation.

• April 17, 2018 17 Apr'18

  FedRAMP security requirements put a premium on automation

  Matt Goodrich, director for the Federal Risk and Authorization Management Program, detailed FedRAMP security requirements and automation at RSA's Cloud Security Alliance Summit.

• April 17, 2018 17 Apr'18

  RSAC keynote speakers push teamwork, incremental improvements

  The RSAC keynote speakers pushed a unified idea of collaboration across public and private sectors, improved teamwork and the value of incremental improvements in cybersecurity.

• April 17, 2018 17 Apr'18

  Device wars: Researchers track new IoT botnet DDoS attacks

  A variant of the Mirai IoT botnet is the suspected cause of distributed denial-of-service attacks on financial services companies earlier this year, according to Recorded Future.

• April 17, 2018 17 Apr'18

  Risk & Repeat: Breaking down the Verizon DBIR 2018

  In this week's Risk & Repeat podcast, SearchSecurity editors discuss the '2018 Verizon Data Breach Investigations Report' and its findings about ransomware, phishing and more.

• April 17, 2018 17 Apr'18

  Microsoft's Brad Smith urges action on nation-state cyberthreats

  At RSA Conference 2018, Microsoft President Brad Smith warned of nation-state cyberattacks and called on governments and the private sector to do more to address them.

• April 17, 2018 17 Apr'18

  Fidelis rolls out new active deception approach to security

  Active deception is set to be an important part of cloud defense, as Fidelis Cybersecurity adds active decoys to protect cloud assets in the enterprise.

• April 17, 2018 17 Apr'18

  ISACA: Cybersecurity skills gap still hurting enterprises

  ISACA's State of Cybersecurity 2018 report offered good news and bad news about the cybersecurity skills gap and also shed light on gender disparity in the infosec profession.

• April 16, 2018 16 Apr'18

  SSH announces new key and certificate management service

  A new key and certificate management service is now offered by SSH, which teamed up with AppViewX to provide a way to administer cryptographic keys and digital certificates.

• April 16, 2018 16 Apr'18

  CrowdStrike Falcon X takes aim at incident response

  CrowdStrike introduced a new component for the vendor's cloud-based security platform -- dubbed Falcon X -- that looks to speed up enterprises' incident response times.

• April 16, 2018 16 Apr'18

  Nuix hacker survey shows how easy it is to breach perimeters

  The second annual Black Report -- a hacker survey aimed at getting a different perspective on cybersecurity -- detailed how long it takes to breach a perimeter and what attacks are easiest.

• April 13, 2018 13 Apr'18

  A UPnP vulnerability hides bad traffic in a new way

  News roundup: Home routers are susceptible to a UPnP vulnerability that proxies bad traffic in a new way. Plus, AMD and Microsoft released patches for the Spectre flaw, and more.