Security » Features »

  • Keep using password managers -- bugs and all

    A furor over bugs in password managers left users in a jam. Self-proclaimed security empress Jessy Irwin clears up the confusion

    19 Aug. 16 20:00 Written by Fahmida Y. Rashid
  • US senators want airline IT meltdowns to end

    Two high-profile airline technology meltdowns stranding thousands of travelers in the past couple weeks have prompted two US senators to push carriers to bolster their technology.
    Senators Richard Blumenthal (D-Conn.) and Edward J. Markey (D-Mass.)this week sent a letter to the most recent offenders -- Delta and Southwest -- as well as 11 other airlines to get a better handle on whether or not their information technology systems are reliable and resilient.

    17 Aug. 16 06:05 Written by Michael Cooney
  • Snowden: Auction of stolen NSA malware likely political

    A public auction of stolen NSA malware may be a warning to the U.S. that blaming Russia for the hack of the Democratic National Committee could have dire consequences, says Edward Snowden, who also famously breached NSA security.

    17 Aug. 16 05:47 Written by Tim Greene
  • RiskSense lands $7M for assessment service

    RiskSense, software-as-a-service that evaluates the security of corporate networks and generates a risk score, has been self-financed since its launch last year, but now has harnessed venture funding to help boost its R&D and hire marketing and sales staff.

    16 Aug. 16 22:28 Written by Tim Greene
  • Cisco uncovers security threat in industrial control system

    Cisco’s security intelligence and research group Talos, said that it had reported a serious vulnerability in Rockwell Automation’s industrial control system – the MicroLogix 1400 programmable logic controller (PLC).
    The Simple Network Management Protocol exploit could let an attacker take complete remote control of the MicroLogix system and modify the device firmware, letting an invader run his own malicious code on the device.

    16 Aug. 16 02:57 Written by Michael Cooney
  • Respect: Windows 10 security impresses hackers

    Windows is a popular attack target for criminals and researchers alike, but Microsoft has done a good job of making it harder to target security flaws in the OS

    15 Aug. 16 20:00 Written by Fahmida Y. Rashid
  • ‘Mayhem’ wins $2M first prize in DARPA Cyber Grand Challenge

    Cyber-reasoning platform Mayhem pulled down the $2 million first prize in a DARPA-sponsored Cyber Grand Challenge competition that pitted entrants against each other in the classic hacking game Capture the Flag, never before played by programs running on supercomputers.

    06 Aug. 16 01:29 Written by Tim Greene
  • Do developers really care about security?

    InfoWorld talks with GitHub's Jamesha Fisher about the cultural shifts necessary for baking security early into the devops process

    04 Aug. 16 20:00 Written by Fahmida Y. Rashid
  • Black Hat: 9 free security tools for defense & attacking

    When Black Hat convenes next week in Las Vegas, it will be a rich environment for gathering tools that can be used to tighten security but also - in the wrong hands - to carry out exploits.

    29 July 16 08:33 Written by Tim Greene
  • At Black Hat: A free tool for spear phishing Twitter

    A spear phishing tool to automate the creation of phony tweets - complete with malicious URLs – with messages victims are likely to click on will be released at Black Hat by researchers from ZeroFOX.
    Called SNAP_R (for social network automated phisher with reconnaissance), the tool runs through a target Twitter account to gather data on what topics seem to interest the subscriber. Then it writes a tweet loaded up with a link to a site containing malware and sends it.

    22 July 16 08:04 Written by Tim Greene
  • Cisco patches critical exposure in management software

    Cisco UCS Performance Manager versions 2.0.0 and prior are affected and the problem is resolved in Cisco UCS Performance Manager versions 2.0.1 and later. UCS Performance Manager collects information about UCS servers, network, storage, and virtual machines.

    21 July 16 05:16 Written by Michael Cooney
  • Carbon Black buys Confer for next-gen anti-virus

    Carbon Black has bought Confer to boost its protection for network endpoints using a behavioral form of antivirus combined with cloud analysis of threats rather than traditional signature-based software.

    20 July 16 03:08 Written by Tim Greene
  • Wearables could compromise corporate data

    Smartwatches, fitness trackers and other wearable devices that are connected to corporate Wi-Fi networks could lead to serious privacy and security issues, experts say.

    15 July 16 20:00 Written by Matt Hamblen

Market Place

[]