Topics Archive

Topics Archive News

October 27, 2020 27 Oct'20
Mitre ATT&CK: How it has evolved and grown

Adoption of the Mitre ATT&CK framework, which saw version 8.0 released Tuesday, has grown rapidly over the last years, though challenges still remain for enterprise users.
February 26, 2019 26 Feb'19
CERT/CC's Art Manion says CVSS scoring needs to be replaced

Security expert Art Manion discusses what he calls major problems within the Common Vulnerability Scoring System and explains why CVSS needs to be replaced.
August 03, 2018 03 Aug'18
Five things to watch for at Black Hat USA this year

As Black Hat USA 2018 approaches, we take a quick look at trends in the conference agenda and sessions not to miss.
April 30, 2018 30 Apr'18
Algorithmic discrimination: A coming storm for security?

Following several RSA Conference 2018 talks on machine learning and AI, it's worth asking how algorithmic discrimination might manifest in the infosec industry.

Bring yourself up to speed with our introductory content

backdoor (computing)

A backdoor is a means to access a computer system or encrypted data that bypasses the system's customary security mechanisms. Continue Reading
Endpoint security quiz: Test your knowledge

Test your knowledge of SASE, split tunneling, and device discovery tool capabilities and best practices in this endpoint security quiz for IT professionals. Continue Reading
Quiz: Web application security threats and vulnerabilities

Applications are still the biggest attack vector for malicious actors -- can you protect them? Test your knowledge with this web application security quiz. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Site-to-site VPN security benefits and potential risks

Not every enterprise needs the functionality of a standard VPN client. A site-to-site VPN may be a better choice for some companies, but it's not without risk. Continue Reading
Top 3 advantages of smart cards -- and potential disadvantages

As smart card adoption increases, it is prudent to take a closer look at how this technology can improve data security. Here, read more about the benefits of smart cards. Continue Reading
Is VPN split tunneling worth the security risks?

Enabling VPN split tunneling may increase speed and decrease bandwidth use and costs, but it also increases the number of security vulnerabilities faced. Continue Reading

Learn to apply best practices and optimize your operations.

identity management (ID management)

Identity management (ID management) is the organizational process for ensuring that individuals have the appropriate access to technology resources. Continue Reading
10 tips for building a next-generation SOC

Check out 10 tips to help build a next-generation security operations center with the integrated tools to free security analysts to get ahead of and respond to threats fast. Continue Reading
incident response

Incident response is an organized approach to addressing and managing the aftermath of a security breach or cyberattack, also known as an IT incident, computer incident or security incident. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How to identify bloatware, then uninstall it

Unwanted pre-installed software -- also known as bloatware -- has long posed security threats for computers and other devices. Here are strategies for how to detect bloatware and uninstall the potential threat. Continue Reading
6 persistent enterprise authentication security issues

Some authentication factors are considered more secure than others but still come with potential drawbacks. Learn about the most common enterprise authentication security issues. Continue Reading
Identifying and troubleshooting VPN session timeout issues

Troubleshooting VPN session timeout and lockout issues should focus first on isolating where the root of the problem lies -- be it the internet connection, the VPN vendor or the user device. Continue Reading