Advertisement
3 ways to improve PC security
Insider Pro columnist Jack Gold writes that organizations must focus on three key areas if they want to protect their PCs -- and ultimately the entire organization -- from security breaches.
IDG Contributor Network
Lessons learned through 15 years of SDL at work
In short? Security Development Lifecycle is all about the developers...
Security Recruiter Directory
To find the right security job or hire the right candidate, you first need to find the right recruiter. CSO's security recruiter directory is your one-stop shop.
Advertisement
What is OAuth? How the open authorization framework works
OAuth is an open-standard authorization protocol or framework that describes how unrelated servers and services can safely allow authenticated access to their assets. It is widely accepted, but be aware of its vulnerabilities.
10 signs you're being socially engineered
Scammers will try to trick you and your organization's users into giving up credentials or other sensitive date. Be skeptical if you see any of these signs.
Misconfigured WS-Discovery in devices enable massive DDoS amplification
Researchers were able to achieve amplification rates of up to 15,300%. Some mitigations are possible.
Secrets of latest Smominru botnet variant revealed in new attack
Researchers gained access to a Smominru command-and-control server to get details on compromised devices and scope of the attack.
How to detect and halt credential theft via Windows WDigest
Attackers can steal user credentials by enabling credential caching in the Windows authentication protocol WDigest. Here's how to stop them.
6 questions candidates should ask at every security job interview
The cybersecurity skills shortage means security pros can be picky about where they work. Here's how to suss out bad employers.
Review: Blue Hexagon may make you rethink perimeter security
This fully functional, fully trained cybersecurity tool is ready on day 1 to spot threats on whatever network it’s charged with protecting.
Advertisement
The top 5 email encryption tools: More capable, better integrated
Most of the email encryption solution vendors have broadened the scope of their products to include anti-phishing, anti-spam, and data loss prevention (DLP).
Three strategies to prove security's value
How CISOs can identify and quantify security’s value in real dollars
Shining light on dark data, shadow IT and shadow IoT
What's lurking in the shadows of YOUR organization? What you don't know can hurt you. Insider Pro columnist Mike Elgan looks at how your business is at risk and offers six steps to minimize it.
What is PSD2? And how it will impact the payments processing industry
The EU’s revised Payment Services Directive (PSD2), which include multifactor authentication for online European payment card transactions, will have a ripple effect on the payments processing industry in the U.S. and elsewhere.
Cybersecurity Snippets