Physical Security
Physical Security | News, how-tos, features, reviews, and videos
How to prepare for the next SolarWinds-like threat
It is possible to minimize the risk from nation-state attacks like SolarWinds. This is the best advice based on what experts have learned so far.
26 Cyberspace Solarium Commission recommendations likely to become law with NDAA passage
Once passed, the National Defense Authorization Act will create a White House cybersecurity director role, expand CISA's capabilities, and create a K-12 security education assistance program.
Publicly known support credentials expose GE Healthcare imaging devices to hacking
The vulnerability gives hackers a means to access sensitive data, execute malicious code on devices and impact their operation.
Cybersecurity under fire: CISA’s former deputy director decries post-election vilification
Matt Travis talks about CISA's role in the recent US elections and how President Trump and his surrogates have politicized the security function.
US DOJ indictments might force Russian hacker group Sandworm to retool
Experts hope that indictments against six Russian military intelligence agents will make Russia rethink plans to disrupt the US election.
Late-game election security: What to watch and watch out for
Despite disruption of the Trickbot botnet network, last-minute leaks of stolen documents and post-election undermining of trust in the election system remain big concerns.
How SilentFade group steals millions from Facebook ad spend accounts
SilentFade steals credentials and ad spend account information and sells the information to other bad actors. The group returned with improved malware after Facebook's initial mitigation efforts.
![Law enforcement coordination > A team of investigators collaborates. [detectives / FBI agents]](https://images.idgesg.net/images/article/2020/10/law_enforcement_coordination_team_of_investigators_collaboration_detectives_fbi_agents_by_south_agency_gettyimages-1173352754_2400x1600-100860807-small.3x2.jpg)
New FBI strategy seeks to disrupt threat actors, help defenders through better coordination
The FBI sharpens its focus on collaboration among US and foreign government agencies and the private sector. It will acting as a central hub to deal with cybersecurity threats.
Identity theft explained: Why businesses make tempting targets
Identity theft is the use of someone else's personal information without permission, typically to conduct financial transactions. Here's what you need to know to protect yourself and your organization.
Election security status: Some progress on ballot integrity, but not on Russian interference
With the election less than two months away, government and election officials say voting itself is more secure, but Russian disinformation remains largely unaddressed.
![IDG Tech Spotlight > Edge Computing [ CSO / September 2020 ]](https://images.idgesg.net/images/article/2020/09/spot_edge_computing_3x2_2400x1600_03_cso_a_network_security_secure_connections_integrated_system_of_locks_by_natali_mis_gettyimages-1135808513-100857217-small.3x2.jpg)
Securing the edge: 5 best practices
Considering how much is at stake in terms of data and infrastructure exposure, companies looking to take advantage of edge computing’s promise will need to take steps to mitigate the risks.
CMMC bakes security into DoD’s supply chain, has value for all businesses
The Cybersecurity Maturity Model Certification provides a means for the DoD to certify the security capabilities of its contractors, but it's a good way to assess the cybersecurity maturity for all companies.
Content fraud takes a bite out of brand reputation
Scammers leverage user-generated content on trusted sites to trick consumers into sharing sensitive data, causing financial and reputational harm to those businesses.
![A user reviews data and statistical models. [analytics / analysis / tracking / monitoring / logging]](https://images.idgesg.net/images/article/2020/08/user_reviews_data_tracking_monitoring_analytics_event_logging_analysis_threat_detection_by_laurence_dutton_gettyimages-1170687091_2400x1600-100855964-small.3x2.jpg){kind=tracking}
How to optimize Windows event logging to better investigate attacks
The default event logging in Windows 10 won't give you enough information to properly conduct intrusion forensics. These settings and tools will help you collect the needed log data.
What is doxing? Weaponizing personal information
Doxing (or doxxing) is the practice of posting someone's personal information online without their consent and typically with the intention to intimidate, humiliate, or harass the victim.
Security in the spotlight as the US heads into elections
A new report and tabletop exercise show how the upcoming US elections could be disrupted at the local government level without hacking the election itself.
How drones affect your threat model
As use of unmanned aerial vehicles grows, organizations should have a plan for managing the risk associated with drones, whether or not they deploy them, experts say.
Many Cyberspace Solarium Commission recommendations expected to become federal law
Dozens of cybersecurity measures designed to protect US businesses and infrastructure are part of the National Defense Authorization Act. Budget, political concerns might eliminate some.
-
White Paper
-
eBook
Sponsored -
White Paper
-
Analyst Report
Sponsored -
White Paper
