Scary Beasts Security
SEPTEMBER 25, 2014
AddressSanitizer, or ASAN , is an excellent tool for detecting subtle memory errors at runtime in C / C++ programs. It is now a productionized option in both the clang and gcc compilers, and has assisted in uncovering literally thousands of security bugs. ASAN works by instrumenting compiled code with careful detections for runtime errors. It is primarily a detection tool.
We Live Security
SEPTEMBER 25, 2014
The media have associated a number of destructive hoaxes with 4chan: people need some historical perspective on how the site actually works.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Elie
SEPTEMBER 1, 2014
In-depth research publications, industry talks and blog posts about Google security, research at Google and cybersecurity in general in open-access.
NopSec
SEPTEMBER 18, 2014
Threat intelligence is an increasing popular buzzword in security magazine articles and blogs. It also is becoming more prevalent in product and services offerings from security vendors. The value of threat intelligence is that it can provide timely information on real-time threats and help improve detection and mitigation response times. When pairing threat intelligence and vulnerability management process, threat intelligence becomes a powerful way to quickly prioritize remediation.
Speaker: Erroll Amacker
Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.
We Live Security
SEPTEMBER 22, 2014
State organizations and private businesses from various sectors in Ukraine and Poland have been targeted with new versions of BlackEnergy, a malware that's evolved into a sophisticated threat with a modular architecture.
Scary Beasts Security
SEPTEMBER 27, 2014
[Prelude: sorry, this has nothing to do with security whatsoever. Feel free to bail now if you're not interested in a classic 1980's game, and rest assured that non-security posts to this blog will remain extremely rare.] The BBC Micro game Exile , released in 1988, has a realistic claim for the best game ever. I lost months of my youth to this game.
Cyber Security Informer brings together the best content for cyber security professionals from the widest variety of industry thought leaders.
|
NopSec
SEPTEMBER 14, 2014
No industry is immune to IT security breaches and it seems that retailers have been in the spotlight of late. Home Depot is the latest company to confirm a cyber-attack. For large publicly traded companies, the impact of a breach is measured by decreased sales revenue, lower stock prices, expenses associated with the breach, and departures of top executives.
NopSec
SEPTEMBER 2, 2014
Understanding how to effectively evaluate and select a penetration testing vendor can be a challenging exercise. Frequently the problem comes down to an inaccurate or misaligned definition of “penetration testing services”. To be clear, you need to be sure you are getting a true penetration test and not just a vulnerability scan. What’s the difference between a penetration test and vulnerability scan?
Expert insights. Personalized for you.
56 
Let's personalize your content