Physical Security
Physical Security | News, how-tos, features, reviews, and videos
Critical VxWorks flaws expose millions of devices to hacking
Researchers have found 11 serious vulnerabilities in VxWorks, the world's most popular real-time operating system (RTOS) that powers over 2 billion devices including enterprise network firewalls and routers, industrial controllers and...
Stealing money in the digital age: The dark industry of trafficking financial data
Cybercriminal gangs dealing in credit card and other financial data have refined their tools and changed their ideology for more profitable attacks.
Why getting election security right for 2020 matters
The U.S. is moving at glacial speed to secure election systems against possible interference by foreign adversaries. We're not even close to ready, and that could call contests into question.
Business email compromise: The odds of being a victim are increasing
Given the growth over the last few years in BEC and EAC fraud, businesses should educate employees about the risks involved and red flags of this activity.
Secure elections scorecard: Grading the candidate and Congressional proposals
After 2016's election security debacle, there's a push to secure America's electronic voting infrastructure. Some of the proposals are good. Others fall short. CSO investigates.
What is an ISAC or ISAO? How these cyber threat information sharing organizations improve security
Information Sharing and Analysis Organizations were created to make cyber threat data and best practices more accessible than with Information Sharing and Analysis Centers, but results are mixed.
What is adware? How it works and how to protect against it
Adware is deceptive software that earns its creators money through fraudulent user clicks. Fortunately, it's one of the the most detectable types of malware.
What is the CISA? How the new federal agency protects critical infrastructure from cyber threats
The Cybersecurity and Infrastructure Security Agency (CISA) is a new federal agency, created to protect the nation's critical infrastructure.
6 questions to ask before buying an ICS / OT security monitoring tool
Shopping for an ICS / OT monitoring solution? Here's what you need to know about evaluating the vendors.
Mike Assante’s lasting impact on critical infrastructure security (and me)
Thanks to Mike Assante, critical infrastructure stakeholders have a better understanding of and ability to respond to cybersecurity risks.
Why the Huawei ban is bad for security
Many believe the ban on exporting U.S. technology to Chinese company Huawei could hurt American tech vendors and do little to mitigate supply chain threats.
What is Magecart? How this hacker group steals payment card data
Hacking groups that make up Magecart are effective and persistent at stealing customer and payment card data through skimmers. Here's how they work and what you can do to mitigate the risk.
How to stick it to LinkedIn romance scammers
LinkedIn is becoming a popular channel for criminals to find victims for romance scams. Here's how to identify, report and block those scammers.
How to spot a scam: 14 red flags to watch for
Does your security awareness training program help your employees learn when someone is trying to scam them?
Why reported breaches are the tip of the iceberg
Thousands of businesses are breached every day without them even knowing it, compromising payment card data. The EMV chip isn’t the solution, but data devaluation can reduce the impact.
What is GPS spoofing? And how you can defend against it
The U.S. Global Positioning System, part of a network of global navigation satellite systems (GNSS), is vulnerable to attacks that could disrupt many industries. Here's how it works and what you can do to mitigate its risk.
FINRA Rule 4512: U.S. SEC approves electronic signatures
The updated FINRA Rule 4512(a)(3) is now in effect, striking a blow against outdated regulations.
Why your business continuity and disaster recovery plans should account for EMP attacks and GMD events
A new executive order from the White House directs critical infrastructure to prepare for electromagnetic pulse (EMP) attacks, but geomagnetic disturbance (GMD) events caused by solar flares are a greater threat to the enterprise.
Group behind TRITON industrial sabotage malware made more victims
The attackers stayed undetected on the victim's network for more than a year and sought out operational technology networks.
How and why deepfake videos work — and what is at risk
Once the bailiwick of Hollywood special effects studios with multi-million-dollar budgets, now anyone can download deepfake software and use machine learning to make believable fake videos. This makes a lot of people nervous.
-
eBook
Sponsored -
White Paper
-
White Paper
-
White Paper
-
White Paper
