Spear phishing is the common trigger to many of the most popular - and successful - targeted attacks. How can organizations improve their defenses to better spot - and stop - spear phishing?
Spear phishing and messaging-based threats tend to be the first attack vector that criminals are using today in targeted...
We are amidst a new "machine identity crisis," says Jeff Hudson, CEO of Venafi. And unless we tackle this growing challenge of how to secure machine-to-machine communication, then enterprise IT and security departments are likely to be overwhelmed.
This edition of the ISMG Security Report takes a look at how ready healthcare organizations are for GDPR compliance. Also featured: comments from Alberto Yepez of Trident Capital on the 2018 outlook for information security companies and a summary of the latest financial fraud trends.
The browser is the window to the web. But what's going in the background during that browsing is opaque to most users. A new experiment shows how the computing power of tens of thousands of computers could be unknowingly harnessed to crack passwords, harvest cryptocurrencies or conduct DDoS attacks.
Fresh research into mobile apps designed to control ICS systems from afar has unearthed unnerving findings. More than 20 percent of mobile ICS apps have issues that could allow an attacker to influence an industrial system.
An analysis of FBI Director Christopher Wray's comments about how encryption poses complications for law enforcement officials leads the latest edition of the ISMG Security Report. Also featured: The former CISO of the state of Michigan sizes up cybersecurity forecasts.
Following the alert over Meltdown and Spectre vulnerabilities, the U.K. Information Commissioner's Office is warning that failures to patch today could be punished with fines under GDPR once enforcement of the data protection law begins later this year.
2017's attacks will only increase in scale and scope in 2018. Organizations need to prepare now to defend against the next evolution of web application layer, credential abuse, and DDoS attacks.
Download this whitepaper and learn about:
DDoS trends for 2018;
The role IoT will play;
Ways to protect your APIs.
If the website is the front door, the API is the back door. And a lot of times that back door is left unlocked, which is problematic because an API drives a multitude of user experiences.
Download this whitepaper and learn:
Specific steps organizations can take to improve API security and performance;
Security vendor products are held to a higher standard of security. They must help their customers solve complex security problems, as well as have the most stringent security measures in place throughout the software development lifecycle. To meet those standards, many security vendors are turning to more innovative...
In 2018, digital extortion will be at the core of most cyber criminals' business model and will propel them into other schemes that will get them hefty payouts. And as environments have become increasingly interconnected, these threats are redefining how we should look at security.
Download this report and learn...
Bug bounties are fundamentally changing the way financial service organizations approach the security of the Internet, moving from the realm of novelty towards becoming best practice.
This report presents how the financial services industry is actively looking to bug bounty programs to augment their existing...
The days of threats being addressed with traditional security solutions are behind us. In 2018, digital extortion will be at the core of most cyber criminals' business model and will propel them into other schemes that will get them hefty payouts.
As environments become increasingly interconnected and complex,...
A must see webcast that defines when proactive hunting is needed, and how to get started operationalizing a program internally.
The increasing number of organizations being hit by crippling "mega breaches" points to a deficiency in most standard endpoint security solutions. Today's evolving threat landscape...
As the healthcare sector implements a variety of new applications and increasingly moves to the cloud, it has a fresh opportunity to address security, says Daniel Bowden, CISO at Sentara Healthcare, who discusses best practices.