Security News

Thought you were done after Tuesday's 115-fix day? Not yet: Microsoft emits SMBv3 worm-cure crisis patch
2020-03-12 19:49

Microsoft has released an out-of-band emergency patch for a wormable remote-code execution hole in SMBv3, the Windows network file system protocol. The SMB bug fix was a late addition to Microsoft's March edition of Patch Tuesday - after the security hole was accidentally disclosed by the Cisco Talos research team in a blog post recapping this month's updates: Cisco thought Microsoft had fixed the bug this week as part of March's Patch Tuesday, and alerted the world to the bug's presence to get people to install their updates.

RSAC 2020: Ransomware a ‘National Crisis,’ CISA Says, Ramps ICS Focus
2020-02-28 13:38

To that end, CISA has worked with the National Security Council, various federal agencies, industry stakeholders and organizations like the ICS Village to develop a set of core initiatives for 2020. Four, CISA will have a focus on developing detection and incident-response training blueprints.

What is driving the machine identity crisis?
2020-02-27 04:30

Every machine needs a unique identity in order to authenticate itself and communicate securely with other machines. Secure, reliable authentication is essential to protect machine-to-machine communication, yet protecting every machine identity across an enterprise can be a challenge.

Five reasons healthcare data security is at Ebola crisis levels
2019-11-13 13:48

Lots of PHI, low security, and multiple entry points make hospitals the perfect target for hackers and ransomware attacks are up 45% in Q3.

BEC explodes as attackers exploit email’s identity crisis
2019-10-09 04:00

850,000 domains worldwide now have DMARC records, a 5x increase since 2016, according to Valimail. However, less than 17% of global DMARC records are at enforcement — meaning fake emails that...

Addressing Opioid Crisis: A Call for Privacy Rule Changes
2019-08-08 20:03

State Attorneys General Want Changes in Regulation to Ease Sharing of DataThe National Association of Attorneys General is urging Congress to drop the "cumbersome, out-of-date privacy rules"...

Mitigating the Security Skills Crisis
2019-07-09 20:03

Security leaders for a decade now have been discussing the profession's growing skills gap. But what is its true business impact, and what are some near- and long-term strategies to mitigate it?...

Week in review: The art and science of password hashing, cybersecurity crisis comms
2019-07-07 15:00

Here’s an overview of some of last week’s most interesting news, articles and podcasts: Bringing more talented individuals into the security industry In this interview, Tony Vizza, Director of...

Cybersecurity crisis communication: How to do it well
2019-07-02 05:30

Riviera Beach is one of the several cities and towns in Florida which have recently been hit with ransomware and its local government, like that of Lake City before it, decided to pay the ransom...

Salesforce's Parker Harris offers CXO insights for managing complex IT integrations and handing the inevitable crisis
2019-06-05 19:27

At Salesforce TrailheaDX 2019, Parker Harris shared his advice for tech leaders on everything from multiplatform integration to managing a crisis.