Security News

The pace of vulnerability disclosure shows no signs of slowing
2018-05-15 13:00

Unless the pace of vulnerability disclosure slows down in the coming quarters, we are looking at yet another record-breaking year, according to Risk Based Security’s 2018 Q1 Vulnerability...

Cyber War and the Compromise of Reliable Full Disclosure
2018-05-14 14:34

We Can’t Rely on Our Own Governments to Practice Responsible Full Disclosure. Full Disclosure is Compromised. read more

Industry CMO on the Downstream Risks of "Logo Disclosures"
2018-05-02 13:33

Cybersecurity Marketing Teams Would Benefit From an Ethics Desk read more

NIST Updates Cybersecurity Framework to Tackle Supply Chain Threats, Vulnerability Disclosure and More
2018-04-30 15:49

Version 1.1 includes updates on authentication and identity, self-assessment, supply-chain security and vulnerability disclosure, among other changes.

Cyber risk assessment and disclosure requirements: What’s important to you?
2018-04-25 12:30

In this podcast recorded at RSA Conference 2018, Jerry Caponera, VP cyber risk strategy at Nehemiah Security, offers some interesting thoughts on cyber risk assessment and disclosure requirements....

What You Need to Know About GDPR Breach Disclosure, Response
2018-04-23 20:18

Moving Organizations Toward Privacy by Design or DefaultIncident response is a critical pillar of an effective endpoint security program, one that will gain importance as GDPR enforcement comes...

Security Firm Under Fire Over Disclosure of AMD Chip Flaws
2018-03-14 11:32

AMD is investigating claims that its processors are affected by more than a dozen serious vulnerabilities, and the company that found the flaws is facing backlash over its disclosure method....

AMD Chipset Flaws Are Real, But Experts Question Disclosure
2018-03-14 11:18

Was AMD Ambushed?A set of vulnerabilities in AMD chipsets that gives attackers enduring persistence on machines appears to be legitimate. But experts are questioning the motivations of the Israeli...

Information Disclosure, DoS Flaws Patched in libcurl
2018-01-25 17:55

The developers of the popular multiprotocol data transfer library libcurl informed users on Wednesday that the latest version addresses two vulnerabilities. read more

Lawmakers Raise Questions About Disclosure of CPU Flaws
2018-01-25 06:10

The U.S. House Energy and Commerce Committee on Wednesday sent letters to several tech giants, raising questions about how the disclosure of the CPU vulnerabilities known as Spectre and Meltdown...