Advertisement
New Windows browser security options and guidance: What you need to know
Microsoft has added new Edge update options and enhanced browser security modes, including a beta Super Duper Secure Mode.
(ISC)2 pilots new entry-level cybersecurity certification to tackle workforce shortages
New certification aims to validate knowledge of foundational cybersecurity concepts and best practices to address skills gap. Is another cybersecurity qualification the answer?
SSRF attacks explained and how to defend against them
Server-side request forgery (SSRF) attacks consist of an attacker tricking the server into making an unauthorized request. Defending against them can be relatively easy.
Advertisement
8 top multifactor authentication products and how to choose an MFA solution
Learn the key considerations when choosing an MFA solution and why these top picks are worth a look.
White House international ransomware initiative outlines hopes and challenges
More than 30 nations discussed tactics for collaborating in the fight against ransomware, but it competes with a Russian-led UN initiative.
Microsoft's very bad year for security: A timeline
Microsoft has had a horrible 2021, with vulnerabilities impacting its biggest services.
6 zero trust myths and misconceptions
If you’ve fallen for one of these myths, you may need to rethink your zero trust strategy.
Top cybersecurity M&A deals for 2021
The cybersecurity market is hot, and vendors are buying competitors to solidify their position or acquiring other firms to expand their offerings.
How shape-shifting threat actors complicate attack attribution
Researchers explain how they identified—or failed to identify—the threat actors behind three high-profile incidents and why attribution is so difficult.
REvil ransomware explained: A widespread extortion operation
The REvil group, a.k.a. Sodinokibi, re-victimizes its targets by threatening to release stolen data even after the initial ransom demand is paid.
-
-
-
eBook
Sponsored -
eBook
Sponsored
Advertisement
Chinese APT group IronHusky exploits zero-day Windows Server privilege escalation
The attackers used the exploit to deploy a new remote shell Trojan called MysterySnail.
Google forms Cybersecurity Action Team to support customer security transformation
Google’s initiative will offer security and compliance services to guide governments, critical infrastructure, enterprises, and small businesses through digital transformation.
AT&T launches managed XDR suite to provide endpoint-to-cloud security
AT&T is combining security tools including its threat intelligence and detection platform USM Anywhere with endpoint and network security services from partners to roll out a cloud-based, managed XDR platform for end-to-end detection...
Northwestern Mutual’s Laura Deaner: Resist the urge to solve stuff fast
Technologists want to “solve stuff really fast,” says Northwestern Mutual CISO Laura Deaner. But to cement their roles as business leaders, CISOs must take the time to understand the business and build a security strategy that solves...
Twitch breach highlights dangers of choosing ease of access over security
Attackers essentially broke into the Twitch house and cleaned out everything. Following least-privilege access principles and encrypted datasets will help others avoid that scenario.
From Our Advertisers
-
![HP Wolf Security]()
Featured Sponsor HP Wolf SecurityThe Need for Endpoint Security Rooted In Zero Trust -
![istock 1156386644]()
Sponsored by Code42Your Employees Aren’t the Problem—It’s Your Technology -
![Media]()
Sponsored by AkamaiFighting Video Piracy Is Strengthened by Collaboration -
![computer security]()
Sponsored by CISHow to Defend Against at Least 77% of ATT&CK (Sub)-techniques
