Advanced Persistent Threats
Advanced Persistent Threats | News, how-tos, features, reviews, and videos
SamSam explained: Everything you need to know about this opportunistic group of threat actors
The group behind the SamSam family of ransomware is known for recent attacks on healthcare organizations, but that's not its only target.
Symantec: Diverse threats remain a consistent problem online
A report published this evening by Symantec outlines the rocky year consumers and business owners had online in 2017, covering everything from coin mining attacks, problems in the supply chain, ransomware, BEC attacks, and more.
Insecure by design: What you need to know about defending critical infrastructure
Patching is useless most of the time, industrial control systems (ICS) security expert tells Senate committee.
Automation is the key to mitigation of today’s cyber threats
Organizations need to look at the real risk to its business and its data. When it comes to cybersecurity, one size definitely does not fit all.
North Korea hacking group is expanding operations, researchers say
A group of hackers from North Korea (DPRK), recently connected to the usage of an Adobe Flash zero-day vulnerability (CVE-2018-4878), has expanded its operations in both scope and sophistication, FireEye says.
How to automate threat hunting
The quest for hidden threats...
What is cyber security? How to build a cyber security strategy
Organizations face many threats to their information systems and data. Understanding all the basic elements to cyber security is the first step to meeting those threats.
The cybersecurity skills shortage acts as a root cause for security events
New research from ESG and ISSA reveals that a lack of training, inadequate cybersecurity staffing, and business apathy contribute to security events.
Acute cybersecurity skills shortage areas
Security analysts/investigators, application security specialists, and cloud security skills top a long list of skills deficits.
Research confirms the cybersecurity skills shortage is an existential threat
ESG research with ISSA shows that organizations don’t have the right levels of cybersecurity personnel, skills and ongoing training to keep up with cyber risk.
The cybersecurity skills shortage impacts security operations
Large organizations are understaffed and lack the right skills for things such as threat hunting, prioritizing alerts, and forensic investigations.
Endpoint security needs 'efficient efficacy'
Enterprise organizations want new endpoint security tools that prevent exploits and malware better and streamline operations.
Mimecast’s newly discovered email exploit isn’t a vulnerability, it’s a feature
Mimecast, a Boston-based email security firm, claims to have discovered a new email exploit. The exploit itself centers on the fact that an attacker who sends an HTML-based email linking to an external CSS file can "edit any text in...
How cognitive and robotic automation play in SecOps
Automation is everywhere, yet consistently used at the wrong times and in the wrong ways, leading to a rise in breaches and millions of unfilled security analyst positions. What are the different types of automation? How does human...
Exploit attacker playbooks to improve security
Rick Howard lines up a Security Slap Shot on improving security by going after attacker playbooks.
Newly elected French president raises questions in trying to dupe hackers
Emerging trend of cyber deception, revealed by Emmanuel Macron, may be a slippery slope.
Email security appears grounded as attacks continue to take flight
With clever cybercriminals finding creative new ways to get to users, has email security lost the battle to protect.
Microsoft keeps to Bill Gates' roots of cybersecurity
A look at the software giant's startling cybersecurity statistics.
Researchers link Middle East attacks to new victim in Europe
Kaspersky Labs announced new research this morning that shows some links between the massive Shamoon attack that took down 35,000 computers in Saudia Arabia to a new attack against a target in Europe
