Tech Republic Security
MAY 15, 2017
United Airlines recently alerted staff that cockpit access codes has been posted online, raising concerns about the chain of ownership for sensitive data.
Scary Beasts Security
MAY 19, 2017
Overview *bleed attacks are hot right now. Most notably, there's been Heartbleed and Cloudbleed. In both cases, out-of-bounds reads in server side code resulted in private server memory content being returned to clients. This leaked sensitive secrets from the server process' memory space, such as keys, tokens, cookies, etc. There was also a recent client-side bleed in Microsoft's image libraries , exposed through Internet Explorer.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Privacy and Cybersecurity Law
MAY 17, 2017
The National Institute of Standards and Technology (NIST) is holding a Cybersecurity Framework Workshop this week at its headquarters in Gaithersburg, Maryland. […].
Penetration Testing
MAY 15, 2017
Empire Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers. The Empire server is written in Python 3 and is modular to allow operator flexibility.... The post Empire 5.8.1 releases: PowerShell & Python post-exploitation agent appeared first on Penetration Testing.
Speaker: Erroll Amacker
Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.
Tech Republic Security
MAY 15, 2017
The Federal Trade Commission recently announced new efforts to end scams that target consumers through fake security alerts. Here's how to spot them and stay safe.
Scary Beasts Security
MAY 19, 2017
Overview In my previous post on Yahoobleed #1 (YB1) , we saw how an uninitialized memory vulnerability could lead to disclosure of private images belonging to other users. The resulting leaked memory bytes were subject to JPEG compression, which is not a problem for image theft, but is somewhat lacking if we wanted to steal memory content other than images.
Cyber Security Informer brings together the best content for cyber security professionals from the widest variety of industry thought leaders.
|
Tech Republic Security
MAY 15, 2017
Known (and trusted) insiders can pose an even bigger security threat than faceless hackers. Learn how to reduce associated risks.
Tech Republic Security
MAY 18, 2017
Ransomware got you down? There's a solution that could save you from dealing with this issue ever again. That's right. It's Linux.
Tech Republic Security
MAY 16, 2017
Chances are, you've heard these tips before. But as recent news stories indicate, reminders about online security are never a bad thing.
Tech Republic Security
MAY 19, 2017
Protonmail CEO Andy Yen explains how government backdoors and zero day exploits made the British hospital system, SMBs, and enterprise organizations vulnerable to the WannaCry exploit.
Advertisement
Many cybersecurity awareness platforms offer massive content libraries, yet they fail to enhance employees’ cyber resilience. Without structured, engaging, and personalized training, employees struggle to retain and apply key cybersecurity principles. Phished.io explains why organizations should focus on interactive, scenario-based learning rather than overwhelming employees with excessive content.
Tech Republic Security
MAY 16, 2017
Despite understanding the risks, a majority of CEOs and business decision makers do not adhere to enterprise security practices, according to a new survey from Code42.
Tech Republic Security
MAY 18, 2017
Check out researchers' password meter on GitHub to see how the open source web app determines a password's strength and then uses data-driven feedback to make it stronger.
Tech Republic Security
MAY 15, 2017
Security experts argue there would be unintended consequences were Microsoft to provide critical security updates to old operating systems.
Tech Republic Security
MAY 15, 2017
mSecure assists Apple, Windows, and Android users in securely managing passwords across various devices, though some syncing features are not included in the latest release. Erik Eckel explores why.
Advertisement
The DHS compliance audit clock is ticking on Zero Trust. Government agencies can no longer ignore or delay their Zero Trust initiatives. During this virtual panel discussion—featuring Kelly Fuller Gordon, Founder and CEO of RisX, Chris Wild, Zero Trust subject matter expert at Zermount, Inc., and Principal of Cybersecurity Practice at Eliassen Group, Trey Gannon—you’ll gain a detailed understanding of the Federal Zero Trust mandate, its requirements, milestones, and deadlines.
Tech Republic Security
MAY 15, 2017
Firepower Threat Defense is the latest iteration of Cisco's Security Appliance product line. This article explains the steps required to migrate an existing Cisco ASA with FirePOWER services to the new Firepower Threat Defense image.
Tech Republic Security
MAY 17, 2017
The WannaCrypt ransomware exploit is wreaking havoc around the world. This is a first-hand perspective of how one company kept the threat under control.
Tech Republic Security
MAY 15, 2017
Morrison Foerster's John Carlin, a former DOJ employee, said that business leaders must own the risks associated with their business and champion cybersecurity efforts.
Tech Republic Security
MAY 15, 2017
Brian Vecci, technology evangelist at Varonis, spoke with TechRepublic about how businesses don't fully understand how ransomware behaves, and whether or not their security is adequate.
Advertisement
Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.
Tech Republic Security
MAY 17, 2017
The answer is not simple
Tech Republic Security
MAY 15, 2017
Google has announced a significant change to Android that is intended to make pushing updates easier for device manufacturers.
Tech Republic Security
MAY 15, 2017
Everything in an email can be faked. Hackers and cybercriminals rely on identity deception to fool employees. Agari CTO John Wilson explains how to restore trust to the inbox.
Tech Republic Security
MAY 16, 2017
Morrison Foerster's John Carlin, a former Department of Justice employee, spoke with TechRepublic about the concept of blended threats, and what businesses can learn from them.
Speaker: Sierre Lindgren
Fraud is a battle that every organization must face – it’s no longer a question of “if” but “when.” Every organization is a potential target for fraud, and the finance department is often the bullseye. From cleverly disguised emails to fraudulent payment requests, the tactics of cybercriminals are advancing rapidly. Drawing insights from real-world cases and industry expertise, we’ll explore the vulnerabilities in your processes and how to fortify them effectively.
Tech Republic Security
MAY 16, 2017
The internet can be a threatening place. Follow these tips and stay safe out there.
Tech Republic Security
MAY 16, 2017
Cyberbit builds cybersecurity solutions for military, government, and enterprise organizations. CEO Adi Dar details the best practices for threat intelligence sharing and the repercussions of delayed threat detection.
Tech Republic Security
MAY 16, 2017
Several of HP's laptops have a keylogging problem: The audio driver is actually saving every press you make to an unsecured log file.
Tech Republic Security
MAY 19, 2017
The WannaCry ransomware attack of the past week has been brutal, and while it has been temporarily stopped experts say it will probably come back. Here's a list of some of the biggest victims so far.
Advertisement
Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.
Tech Republic Security
MAY 16, 2017
TechRepublic caught up with Mårten Mickos, CEO of HackerOne, who runs a bug bounty program, to learn about the most common security issues that are threatening AI systems and how to secure them.
Tech Republic Security
MAY 15, 2017
John Carlin, of Morrison Foerster, said that businesses need to know about partnerships between cyber attackers and terrorists and how they, and the growth of IoT, will change security.
Scary Beasts Security
MAY 15, 2017
Introduction Before we get into it, let's start by stating that the progression of memory corruption mitigations over the years has been intensely valuable. The progression of mitigations continues to make exploiting bugs harder and more time consuming. The pool of people who have both the skill and commitment to exploit any given bug (either reliably or at all) is shrinking.
Privacy and Cybersecurity Law
MAY 19, 2017
On May 15, 2017, the US Government Accountability Office (GAO) released a new report entitled “ Internet of Things: Status and implications of an increasingly connected world.” In the report, the GAO provides an introduction to the Internet of Things (IoT), describes what is known about current and emerging IoT technologies, and examines the implications of their use.
Advertisement
After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!
Expert insights. Personalized for you.
167 
Let's personalize your content