Network Security

Network Security news, information, and how-to advice

Anonymous
cloud security

crowdstrike2

CrowdStrike offers new free Heartbleed Scanner tool

There are plenty of Heartbleed scanners out there, but CrowdStrike claims to provide more comprehensive and accurate information about the OpenSSL threat.

Synology

Iowa State discloses data breach โ€“ attackers wanted to mine for coin

The IT staff at Iowa State University have disclosed a data breach involving five network-attached storage devices made by Synology on campus, which exposed 29,780 Social Security Numbers.

CDW Integrates with Google Apps for Cloud Collaboration

Through a partnership with Google and Esna Technologies, CDW has rolled out native access to the CDW Cloud Collaboration suite within Google Apps.

Major security flaws threaten satellite communications

An analysis of satellite communication gear from more than a half-dozen major manufacturers has uncovered critical vulnerabilities that could be exploited to disrupt military operations and ship and aircraft communications.

LaCie compromised for over a year

I guess there is truth in the saying that the devil is in the details. If anyone ever tries to tell you that their product or service is 100% secure you have my permission to smack them with a large fish (not an actual permission).

heartbleed 1200x700

Here are the options with Heartbleed-flawed networking gear (Hint: there aren't many)

Companies faced with the threat posed by networking equipment that contains the notorious Heartbleed bug have few security options beyond working closely with affected vendors.

How you need to respond to Heartbleed, and how you can explain it to others

With the flood of information surfacing about Heartbleed, it is important to distill to the immediate steps to take to protect our organizations and those we serve. This article covers the five actions for organizations, three for...

Logicalis eBook: SAP HANA: The Need for Speed

Without timely business insights, organizations today can suffer logistical, manufacturing, and even financial disaster in a matter of minutes

heartbleed

Heartbleed (CVE-2014-0160): An overview of the problem and the resources needed to fix it

After only a few days, the Internet is buzzing with news surrounding CVE-2014-0160, better known as the Heartbleed vulnerability. CSO has compiled the following in order to offer a single source to help administrators and security...

How to defend against the OpenSSL Heartbleed flaw

Vulnerability allows attackers to read a Web server's memory

Symantec to CISOs: Watch for the 'mega-breach'

Company releases 2013 Internet Security Threat Report, warning organizations that phishing and watering hole attacks can bury them

heartbleed bug

Vendors and administrators scramble to patch OpenSSL vulnerability

Since news of the OpenSSL bug started to spread on Monday, administrators and vendors have made a mad scramble to patch the Heartbleed bug, named for the flawed implementation of the heartbeat option in the cryptographic library.

2013 Cyber Risk Report

The "Cyber risk report 2013 Executive summary" presents the major findings of HP Security Research's comprehensive dive into today's cyber vulnerability and threat landscape.

Tools

How MDM works โ€“ or doesn't work โ€“ for SMBs

Not every company is big enough to implement traditional MDM solutions, but the smaller ones are still trying to find ways to manage their corporate data

Scales of Justice

Banks dismiss claims against Trustwave and Target

Trustmark National Bank and Green Bank, N.A. have dropped their claims against Target and Trustwave, ending the proposed class action lawsuit that first made headlines last week.

Understanding incident response: 5 tips to make IR work for you

Incident response is a plan that evolves over time to keep your organization best prepared against likely threats. CSO talked to industry experts at Black Hat about the ups and downs of IR, and how to develop a plan that's right for...

Trustwave plans to fight "baseless allegations" over Target breach

In a statement issued on Saturday, Trustwave's CEO, Robert J. McCullen, says that the recent lawsuit against his company are without merit and baseless.

Internet Security Threat Report 2014

The Internet Security Threat Report (ISTR) provides an analysis of the year's global threat activity, based on data from the Symantec™ Global Intelligence Network.

Patch management flubs facilitate cybercrime

Failures in patch management of vulnerable systems have been a key enabler of cybercrime, according to the conclusions reached in Solutionary's annual Global Threat Intelligence Report out today, saying it sees botnet attacks as the...

Blue bank vault

Banks' suit in Target breach a 'wake up call' for companies hiring PCI auditors

Two banks have filed a lawsuit against Target and Trustwave Holdings, the retailer's security assessor

Cybercrime trends point to greater sophistication, stealthier malware, more encryption

RAND Corp. report outlines evolution of cybercrime and emergence of more complex and evasive tools

After refusing to pay ransom, Basecamp hit with DDoS

Basecamp, a project management application, is the latest victim of an extortion scheme that promises DDoS attacks unless a ransom is paid. The service was down for several hours on Monday as attackers slammed the network with...

Load More