Information Security Wire

Woodstock Wire: Information Security Wire

Admins Aren't Patching Open Source, Says Black Duck Security Report

Enterprise - Data Center Knowledge - According to the latest Black Duck security report, the average unpatched vulnerability running on data center servers...
Sat, 26 May 2018 02:17:30 - #datacenter #security

SSH Key Management is Critical - But Whose Job Is It?

TMCnet - Because the SSH protocol is nearly ubiquitous, most people don't think of it when they go through their cybersecurity checklist. But they would...
Fri, 25 May 2018 22:13:37 - #cybersecurity #security

GDPR Oddsmakers: Who, Where, When Will Enforcement Hit First?

Infosec - Dark Reading - The GDPR grace period ends today. Experts take their best guesses on when data protection authorities will strike - and what kind...
Fri, 25 May 2018 20:13:05 - #gdpr #security

More than 100 Million IoT devices potentially exposed to Z-Shave Z-Wave attack

Infosec - Security Affairs - Researchers from Pen Test Partners have conducted an analysis of Z-Wave wireless communications protocol used by millions...
Fri, 25 May 2018 19:40:25 - #cybersecurity #iot #security

Bridging the Cybersecurity Talent Gap

Infosec - Dark Reading - There's no one surefire way of fixing the problem, which endangers everyone's security. There are, however, several options we...
Fri, 25 May 2018 19:40:24 - #cybersecurity #security

10 Free DevOps-Friendly Security Tools Developers Will Love

Infosec - Dark Reading - Start building an affordable DevSecOps automation toolchain with these free application security tools.
Fri, 25 May 2018 19:40:23 - #security

SolarWinds MSP Launches Security Resource Center-a One-Stop Shop for the Latest Security News and Resources

GlobeNewsWire: Manufacturing -
Fri, 25 May 2018 16:39:05 - #solarwinds #security

BlueCat DNS Edge delivers visibility, control and detection to enterprise network and cybersecurity teams

PR Newswire: High Tech Security - Today, BlueCat, the Enterprise DNS company, announced powerful new capabilities for BlueCat DNS Edge(tm) (Edge), a...
Fri, 25 May 2018 15:13:36 - #cybersecurity #bluecat #security

GDPR represents huge opportunity for Channel with Commvault Data Governance Solutions

PR Newswire: High Tech Security - Commvault (NASDAQ: CVLT), a global leader in enterprise backup, recovery, archive and the cloud today announced continued business expansion...
Fri, 25 May 2018 15:13:33 - #gdpr #security

GDPR is finally here and it's already chaos

Think -
Fri, 25 May 2018 15:13:23 - #gdpr #security

Venafi Names Ben Golub to Board of Directors

Business Wire - Former Docker CEO brings executive leadership and machine identity protection expertise to cyber security market leader
Fri, 25 May 2018 14:41:16 - #cybersecurity #docker #security

Kaspersky Lab Report: The Cost of a Data Breach Continues to Grow Worldwide

Business Wire - #databreach--New research from Kaspersky Lab shows that the average cost of a data breach is on the rise for enterprises and small businesses...
Fri, 25 May 2018 14:41:14 - #cybersecurity #security

Z-Wave Downgrade Attack Left Over 100 Million IoT Devices Open to Hackers

Infosec - The Hacker News - Researchers have found that even after having an advanced encryption scheme in place, more than 100 million Internet-of-Things...
Fri, 25 May 2018 14:13:28 - #iot #security

GDPR and the End of the World

Enterprise - Information Week - Let's put the GDPR compliance deadline in perspective. It should change the way we look at privacy and data.
Fri, 25 May 2018 14:13:23 - #gdpr #security

Zimmerman and friends: 'Are you listening? PGP is not broken'

Enterprise - The Register - EFAIL furore not over yet, even though it's easy to fix
ProtonMail has weighed into 2018's worst branded-bug PR disaster, EFAIL...
Fri, 25 May 2018 14:13:22 - #security

Stop Agonizing Over GDPR Opt-In Emails and Start Thinking about How Your Use of Cloud Impacts GDPR Compliance

Think - Gartner Blog Network - Are you thinking About Your cloud providers and the GDPR? You should be. Using IaaS cloud service providers to process...
Fri, 25 May 2018 13:39:07 - #iaas #gdpr #security

IBM banned USB drives. Is it the future of security or a knee-jerk reaction?

Tech - Digital Trends - Banning USB devices might go some way to preventing data loss and leaks, but to some, it doesn't get to the heart of the problem...
Fri, 25 May 2018 13:38:56 - #ibm #security

Cato Networks adds threat hunting to its SD-WAN services

Infosec - CSO Online - Being Canadian, I have a natural affinity to all things Royal Family. As expected, the recent wedding was filled with big hats,...
Thu, 24 May 2018 23:41:10 - #cybersecurity #sd-wan #security

Why bad coding habits die hard-and 7 ways to kill them

Infosec - Malwarebytes Unpacked - Developers are usually the focus of blame when software vulnerabilities cause organizational breaches. (Sometimes, quality...
Thu, 24 May 2018 23:41:09 - #cybersecurity #gdpr #security

Everything you need to know about GDPR compliance and email security

Infosec - ProtonMail - Encrypted email can help you comply with privacy laws, limit the risk of hacks and data breaches, and improve your company's overall...
Thu, 24 May 2018 23:41:06 - #cybersecurity #gdpr #security

Why You Need to Master the Basics - A Three Step Campaign

Infosec - TripWire - The State of Security - When I was growing up, my father enrolled me in martial arts at an early age. I liked everything about it....
Thu, 24 May 2018 23:41:05 - #tripwire #security

Growing Job Pressures Increase Risk of Burnout for Cybersecurity Professionals

Infosec - Dark Reading - A new Trustwave survey shows information security executives and practitioners are under increasing pressure from trying to keep...
Thu, 24 May 2018 23:41:04 - #cybersecurity #security

What is zero-access encryption and why it is important for security

Infosec - ProtonMail - Some of your most sensitive data sit on the cloud, on the servers of Internet service providers. Zero-access encryption gives you...
Thu, 24 May 2018 23:41:03 - #cybersecurity #gdpr #security

Researchers unearth a huge botnet army of 500,000 hacked routers

Infosec - The Hacker News - More than half a million routers and storage devices in dozens of countries have been infected with a piece of highly sophisticated...
Thu, 24 May 2018 23:41:02 - #iot #cybersecurity #botnet #security

Six Vulnerabilities Found in Dell EMC's Disaster Recovery System, One Critical

Infosec - Threatpost - A pen-tester has found five vulnerabilities in Dell EMC RecoverPoint devices, including a critical RCE that could allow total system...
Thu, 24 May 2018 23:41:01 - #dell #security

24 best free security tools

Infosec - CSO Online - Your favorite infosec freebiesWho doesn't love free software?Infosec professionals are fortunate to have many good free tools for...
Thu, 24 May 2018 23:41:00 - #security

GDPR in real life: Transparency, innovation, and adoption across borders and organizations

Enterprise - ZDNet News - Part two: Auditing data on premise and in the cloud, spurring innovation in machine learning and interpretable AI, and influencing...
Thu, 24 May 2018 23:13:31 - #gdpr #ai #machinelearning #security

To GDPR and Beyond: 5 Factors MSPs Must Consider on May 26

Enterprise - MSPmentor - Will EU-driven privacy changes be a catalyst for ongoing policy, strategy and process change? Or will we settle back into old habits?...
Thu, 24 May 2018 22:13:11 - #gdpr #security

Will the EU's GDPR Rules Launch a New Era of Data Protection?

Think - Knowledge@Wharton - Companies are likely to extend their compliance with the EU's new GDPR rules globally. But along with new protections come...
Thu, 24 May 2018 21:27:11 - #gdpr #security

BMW begins patching 14 security vulnerabilities on cars to prevent attacks

Tech - Digital Trends - If you own a BMW model 2012 or later, you may want to check to see if your car is affected by the 14 vulnerabilities discovered...
Thu, 24 May 2018 16:13:32 - #security

Okta's PassProtect checks your passwords with 'Have I Been Pwned'

Tech - TechCrunch - Okta just launched a free browser extension for Google Chrome today. After installing PassProtect, your browser will compare the...
Thu, 24 May 2018 16:13:22 - #cybersecurity #security

Let's (Finally) Say Goodbye to Passwords

Infosec - Okta Blog - Finding the right authentication technology can be challenging. Companies strive for a solution that achieves the lowest risk of...
Wed, 23 May 2018 15:13:21 - #cybersecurity #phishing #threatintelligence #security

Business Authentication is Here - Add Sign In with Okta to Your Apps Today

Infosec - Okta Blog - You've most likely heard of (and experienced) social logins before. When signing up for a new website or app, instead of going through...
Wed, 23 May 2018 15:13:20 - #security

Secure, Modern Authentication for Your App or Website Should Be Free

Infosec - Okta Blog - Millions of people rely on third-party identity solutions every day to securely connect the devices and networks that make up the...
Wed, 23 May 2018 15:13:19 - #cybersecurity #security

Threat Analyst Insights: Life Without Data

Infosec - Recorded Future - In the context of scoping out research for reports over the years, I've occasionally heard the phrase, "I can't find any data...
Wed, 23 May 2018 15:13:18 - #cybersecurity #security

Okta adds free solution, and path to password-free future

Enterprise - ChannelBuzz.ca - The OneApp free solution is part of Okta's long-term plan to be the de facto identity layer in any software. Okta ThreatInsight,...
Wed, 23 May 2018 15:13:16 - #threatintelligence #security

Password Formulas Don't Fool Hackers

Life - Lifehacker - Every time we write about passwords on Lifehacker, a few readers share their secret formula for creating passwords. According to...
Wed, 23 May 2018 13:57:58 - #security

Okta 'freemium' offer makes its authentication service available to anyone

Enterprise - SiliconANGLE - Identity management software provider Okta Inc. is giving developers a free way to access its authentication service by exposing...
Wed, 23 May 2018 13:57:56 - #security

Okta introduces 'Sign in with Okta' service

Tech - TechCrunch - Consider that there are millions of Okta users out there using the service to sign into their company applications with a single...
Wed, 23 May 2018 13:57:55 - #security

The AWS Bucket List for Security

Infosec - Infosec Island - With organizations having a seemingly insatiable appetite for the agility, scalability and flexibility offered by the cloud,...
Wed, 23 May 2018 13:57:54 - #firewall #cloud #aws #security

Beyond Scanning: How Threat Intelligence Enhances Vulnerability Management

Infosec - Recorded Future - Key Takeaways
Vulnerability scanners are a valuable tool, but they don't provide the information necessary to prioritize remediation...
Wed, 23 May 2018 13:57:53 - #threatintelligence #cybersecurity #security

14 free online courses about computer security

Infosec - WeLiveSecurity - Get a better understanding of cybersecurity with this list of free online courses that you can take to become more cyber-aware
The...
Wed, 23 May 2018 13:57:51 - #cybersecurity #security

Tech giants are all working on new Spectre and Meltdown attacks, so-called variant 3 and variant 4

Infosec - Security Affairs - Yesterday AMD, ARM, IBM, Intel, Microsoft and other major tech firms released updates, mitigations and published security...
Wed, 23 May 2018 13:57:50 - #oracle #microsoft #ibm #amd #cisco #redhat #vmware #ubuntu #security

Intrusion Detection and Prevention Systems Simplified

Infosec - InfoSecWriters.com - This paper attempts to cover and discuss several aspects of Intrusion Prevention Systems...
Wed, 23 May 2018 13:57:49 - #security

New BIND Vulnerabilities Threaten DNS Availability

Infosec - Dark Reading - A pair of vulnerabilities in BIND could leave some organizations without DNS.
Wed, 23 May 2018 13:40:40 - #security

Google to Delete 'Secure' Label from HTTPS Sites

Infosec - Dark Reading - Google acknowledges HTTPS as the Internet standard with plans to remove 'secure' from all HTTPS sites.
Wed, 23 May 2018 13:40:39 - #security

Wicked Botnet Uses Passel of Exploits to Target IoT

Infosec - Threatpost - The code is integrated with at least three exploits that target unpatched IoT devices, including closed-circuit cameras and Netgear...
Wed, 23 May 2018 13:40:38 - #iot #cybersecurity #botnet #security

Cybersecurity training still neglected by many employers

Infosec - WeLiveSecurity - While training employees will not guarantee complete cyber safety for companies, it could go a long way to making workers more...
Wed, 23 May 2018 13:40:37 - #cybersecurity #security

The Best Ideas In Security, Faster and Easier Than Ever Before

Enterprise - Palo Alto Networks Blog - Last year, we introduced the Application Framework, our vision for making security innovations faster to receive and...
Wed, 23 May 2018 12:14:31 - #paloaltonetworks #cybersecurity #iot #security

22 essential security commands for Linux

Enterprise - Network World News - There are many aspects to security on Linux systems - from setting up accounts to ensuring that legitimate users have no...
Wed, 23 May 2018 12:14:24 - #security