Advanced Persistent Threats
Advanced Persistent Threats | News, how-tos, features, reviews, and videos
The cybersecurity skills shortage impacts security operations
Large organizations are understaffed and lack the right skills for things such as threat hunting, prioritizing alerts, and forensic investigations.
Endpoint security needs 'efficient efficacy'
Enterprise organizations want new endpoint security tools that prevent exploits and malware better and streamline operations.
Mimecast’s newly discovered email exploit isn’t a vulnerability, it’s a feature
Mimecast, a Boston-based email security firm, claims to have discovered a new email exploit. The exploit itself centers on the fact that an attacker who sends an HTML-based email linking to an external CSS file can "edit any text in...
How cognitive and robotic automation play in SecOps
Automation is everywhere, yet consistently used at the wrong times and in the wrong ways, leading to a rise in breaches and millions of unfilled security analyst positions. What are the different types of automation? How does human...
Exploit attacker playbooks to improve security
Rick Howard lines up a Security Slap Shot on improving security by going after attacker playbooks.
Newly elected French president raises questions in trying to dupe hackers
Emerging trend of cyber deception, revealed by Emmanuel Macron, may be a slippery slope.
Email security appears grounded as attacks continue to take flight
With clever cybercriminals finding creative new ways to get to users, has email security lost the battle to protect.
Microsoft keeps to Bill Gates' roots of cybersecurity
A look at the software giant's startling cybersecurity statistics.
Researchers link Middle East attacks to new victim in Europe
Kaspersky Labs announced new research this morning that shows some links between the massive Shamoon attack that took down 35,000 computers in Saudia Arabia to a new attack against a target in Europe
Red alert! Beware of insiders bearing APTs
Big enterprises worry about APTs -- and employees who may be using them to engage in corporate espionage. These measures can help you catch the perps
New National Cyber Incident Response Plan
The NCIRP provides a consistent and common approach and vocabulary to enable the whole community to work together to manage cyber incidents seamlessly. The NCIRP directly responds to private sector requests for clarity on the roles...
Vendors respond to Cylance's new testing methods with AV-TEST
Earlier this morning, as part of a story on Cylance's claims that AV-Comparatives was using deceptive testing methodologies and pirated software, Salted Hash revealed details on a new test Cylance commissioned with AV-TEST. We reached...
Ransomware 2.0: Anatomy of an emerging multibillion business
What to expect from and how to resist the fastest growing sector of cybercrime in 2017?
AI isn't just for the good guys anymore
Criminals are beginning to use artificial intelligence and machine learning to get around cyber defenses
Report: Attack numbers fell last quarter, but attacks were more targeted and sophisticated
The total number of cybersecurity attacks fell by 35 percent in the last quarter of 2016, according to a new report, but the attacks became more targeted and sophisticated. Instead of general-purpose exploit kits and broad scanning,...
Machine behaviors that threaten enterprise security
Machine learning has moved enterprise security forward, allowing for visibility inside the network in order to better understand user behavior. However, malicious actors are using what is done with machine learning on the inside in...
Is antivirus getting worse?
Anti-virus software is getting worse at detecting both known and new threats, says a new report. Average detection rates for known malware went down a couple of percentage points slightly from 2015 to 2016, while detection rates for...
Don't predict, protect
How businesses can actually protect themselves against a variety of threats.
When your threat intelligence just isn’t producing value you need to pivot
Josh Lefkowitz of Flashpoint shares his experience leading the pivot from threat intelligence to business risk intelligence and explains the enterprise benefit for security leaders
Shall we care about zero-day?
Gartner says that 99% of exploited vulnerabilities are publicly known. Does it mean we can ignore zero-days?
Sponsored Links