Internet Security
Internet Security | News, how-tos, features, reviews, and videos
What is cryptography? How algorithms keep information secret and safe
Cryptography is the art of keeping information secret and safe by transforming it into form that unintended recipients cannot understand. It makes secure data transmission over the internet possible.
How to choose a certificate management tool
Managing certificates that hold all your encryption secrets is impossible without the right tool. Here's how to narrow the field.
Internet sanctions against Russia pose risks, challenges for businesses
Sanctions on Russian attack for its attack on Ukraine and its response will change the way the internet is used, forcing companies to make hard decisions.
Top tools and best practices for WordPress security
Poorly secured WordPress websites are a favorite hacker target. Use these tools and advice to keep them out.
Traffic interception and MitM attacks among security risks of Russian TLS certs
Russia's launch of a domestic TLS Certificate Authority to bypass Western sanctions and replace revoked and expired certificates amid the invasion of Ukraine poses significant security threats.
Look for attack surface management to go mainstream in 2022
Many organizations struggle to discover, classify, and manage Internet-facing assets, leaving them vulnerable to attack. In 2022, they will finally do something to address this.
How IPsec works, it’s components and purpose
IPsec (Internet Protocol Security) is a suite of protocols that are used to secure internet communications. It is a common element of VPNs.
Which countries are most (and least) at risk for cybercrime?
Cybersecurity firm SEON has come up with a snapshot of how the threat of cybercrime differs around the world, ranking countries that are most and least vulnerable.
New Windows browser security options and guidance: What you need to know
Microsoft has added new Edge update options and enhanced browser security modes, including a beta Super Duper Secure Mode.
SSRF attacks explained and how to defend against them
Server-side request forgery (SSRF) attacks consist of an attacker tricking the server into making an unauthorized request. Defending against them can be relatively easy.
![Praying mantis among green leaves [camouflage/stealth]](https://images.idgesg.net/images/article/2019/02/camouflage_stealth_praying_mantis_among_green_leaves_by_david_clode_cc0_via_unsplash_2400x1600-100788546-small.3x2.jpg?auto=webp&quality=85,70)
APT group hits IIS web servers with deserialization flaws and memory-resident malware
Praying Mantis group is likely a nation-state actor that uses custom malware and is adept at avoiding detection.
How API attacks work, and how to identify and prevent them
Attackers know how to get around WAFs and API gateways when targeting APIs. Here's how some companies are coping with the rapid increase in API attacks.
What's next for encryption if the RSA algorithm is broken?
A recent, yet to be proven paper claiming to have found a way to "destroy the RSA cryptosystem" has cryptographers asking what might replace it.
PHP backdoor attempt shows need for better code authenticity verification
Attackers were able to place malicious code in the PHP central code repository by impersonating key developers, forcing changes to the PHP Group's infrastructure.
Booming dark web gig economy is a rising threat
Experts seen a sharp increase in help-wanted ads for black hat hackers-for-hire. Here's what they are targeting and how to respond to the threat.
DNS over HTTPS, DNS over TLS explained: Encrypting DNS traffic
DoT and DoH provide data confidentiality with end-to-end encryption for DNS traffic, but each has trade-offs.
7 critical IT policies you should have in place
Putting a framework of IT policies that should be the foundation of every company's security plan.
