Features

Features

• JetBrains, Rapid7 clash over vulnerability disclosure policies

  In a blog post this week, JetBrains argued that attacks on TeamCity customers were the result of Rapid7 publishing the full technical details of two critical vulnerabilities.  Continue Reading

• Cybersecurity market researchers forecast significant growth

  The cybersecurity market is growing and changing at a rapid pace, leading to major opportunities for vendors, heightened confusion for buyers and new challenges for CISOs.  Continue Reading

• Infosec pros weigh in on proposed ransomware payment bans

  Whether for or against a payment ban, security professionals are concerned regulations could negatively affect victims and result in fewer incident disclosures.  Continue Reading

• Ransomware preparedness kicks off 2024 summit series

  BrightTALK commenced the new year with ransomware readiness, giving viewers workable tips to prevent and recover from a devastating attack. Check out some highlights here.  Continue Reading

• Top 13 ransomware targets in 2024 and beyond

  Two in three organizations suffered ransomware attacks in a single year, according to recent research. And, while some sectors bear the brunt, no one is safe.  Continue Reading

• 9 secure email gateway options for 2024

  Finding the best email security gateway is vital to protect companies from cyber attacks. Here's a look at some current market leaders and their standout features.  Continue Reading

• Security executives slam Microsoft over latest breach

  Criticisms about Microsoft's breach include the lack of multifactor authentication on the targeted account and the company's approach to disclosing information about the attack.  Continue Reading

• Top 10 types of information security threats for IT teams

  Know thine enemy -- and the common security threats that can bring an unprepared organization to its knees. Learn what these threats are and how to prevent them.  Continue Reading

• The ultimate guide to cybersecurity planning for businesses

  This in-depth cybersecurity planning guide provides information and advice to help organizations develop a successful strategy to protect their IT systems from attacks.  Continue Reading

• Top benefits and challenges of SOAR tools

  To ensure successful adoption, IT leaders need to understand the benefits of SOAR tools, as well as potential disadvantages. Explore pros, cons and how to measure SOAR success.  Continue Reading

• Top incident response service providers, vendors and software

  Get help deciding between using in-house incident response software or outsourcing to an incident response service provider, and review a list of leading vendor options.  Continue Reading

• How to build an incident response plan, with examples, template

  With cyberthreats and security incidents growing by the day, every organization needs a solid incident response plan. Learn how to create one for your company.  Continue Reading

• CISOs on alert following SEC charges against SolarWinds

  The Securities and Exchange Commission announced charges against SolarWinds and its CISO in October, but will it help improve transparency or simply scare infosec executives?  Continue Reading

• How to create a CSIRT: 10 best practices

  The time to organize and train a CSIRT is long before a security incident occurs. Certain steps should be followed to create an effective, cross-functional team.  Continue Reading

• 10 types of security incidents and how to prevent them

  Cyberattacks are more varied and numerous than ever. Learn the key signs of common security incidents and how to respond to keep systems and data safe.  Continue Reading

• Top incident response tools: How to choose and use them

  The OODA loop helps organizations throughout the incident response process, giving insight into the incident response tools needed to detect and respond to security events.  Continue Reading

• How to fix the top 5 cybersecurity vulnerabilities

  Check out how to fix five top cybersecurity vulnerabilities to prevent data loss from poor endpoint security, ineffective network monitoring, weak authentication and other issues.  Continue Reading

• Top 30 incident response interview questions

  Job interviews are nerve-wracking, but preparation can minimize jitters and position you to land the role. Get started with these incident response interview questions and answers.  Continue Reading

• How to become an incident responder: Requirements and more

  Incident response is a growth area that provides career advancement options and a good salary. Here's an in-depth look at job requirements, salaries and available certifications.  Continue Reading

• 10 of the biggest zero-day attacks of 2023

  There were many zero-day vulnerabilities exploited in the wild in 2023. Here's a look at 10 of the most notable and damaging zero-day attacks last year.  Continue Reading

• Why effective cybersecurity is important for businesses

  Cyber attacks can have serious financial and business consequences for companies, which makes implementing strong cybersecurity protections a critical step.  Continue Reading

• Ransomware trends, statistics and facts heading into 2024

  Supply chain attacks, double extortion and RaaS are just a few of the ransomware trends that will continue to disrupt businesses in 2024. Is your industry a top target?  Continue Reading

• 9 cybersecurity trends to watch in 2024

  Analysts are sharing their cybersecurity trends and predictions for 2024. From zero-day attacks to generative AI security and increased regulations, is your organization ready?  Continue Reading

• The reality behind bypassing EDR attempts

  Attackers have their work cut out for them when it comes to bypassing EDR. Learn about the difficulty of EDR evasion and how to ensure EDR tools catch all threats.  Continue Reading

• How EDR systems detect malicious activity

  Endpoint detection and response tools help SOCs separate benign events from malicious activity. Learn how this EDR function works.  Continue Reading

• How to solve 2 MFA challenges: SIM swapping and MFA fatigue

  While MFA improves account security, attacks still exploit it. Learn about two MFA challenges -- SIM swapping and MFA fatigue -- and how to mitigate them.  Continue Reading

• 5 MFA implementation tips for organizations

  Organizations need to protect user accounts from malicious attackers. IAM expert Marco Fanti offers tips organizations can use when implementing MFA.  Continue Reading

• How passwordless authentication aids identity security

  Enterprise Strategy Group's Jack Poller discusses survey results on user authentication practices and explains the security benefits of passwordless methods.  Continue Reading

• Cybersecurity budgets lose momentum in uncertain economy

  Organizations' increasing prioritization of cybersecurity has protected most programs from major budget cuts. Even so, many CISOs are feeling the pinch.  Continue Reading

• SD-WAN deployments feed SASE network and security convergence

  Enterprise Strategy Group's Bob Laliberte discusses the latest findings in his newly released report and why SD-WAN's direct cloud connectivity feeds SASE business initiatives.  Continue Reading

• What does an IT security manager do?

  IT security managers need to have a passion for learning and critical thinking skills, as well as understand intrusion prevention and detection.  Continue Reading

• What is cloud security management? Guide and best practices

  This cloud security guide explains challenges enterprises face today, best practices for securing and managing SaaS, IaaS and PaaS, and comparisons of cloud-native security tools.  Continue Reading

• Top 10 tips for employees to prevent phishing attacks

  Share this list of phishing techniques, detection and prevention tips, and best practices to help employees avoid falling victim to phishing schemes.  Continue Reading

• Security posture management a huge challenge for IT pros

  Enterprise Strategy Group's John Oltsik explains why executing security hygiene and posture management at scale remains an uphill battle for organizations, despite automation.  Continue Reading

• Secure service edge strengths drive SASE deployments

  Enterprise Strategy Group's John Grady discusses the latest findings in his newly released report and why businesses won’t start a SASE initiative without first implementing SSE.  Continue Reading

• How SOAR helps improve MTTD and MTTR metrics

  By automating initial incident response tasks, SOAR can help SOC analysts improve MTTD and MTTR metrics and ensure they focus on true positive alerts.  Continue Reading

• How to create a SOAR playbook in Microsoft Sentinel

  Using automation through tools such as SOAR and SIEM can improve incident response alert efficiency. One automated feature analysts can use is the SOAR playbook.  Continue Reading

• Types of ransomware and a timeline of attack examples

  There are eight main types of ransomware but hundreds of examples of ransomware strains. Learn how the ransomware types work, and review notable ransomware attacks and variants.  Continue Reading

• 3 ransomware detection techniques to catch an attack

  While prevention is key, it's not enough to protect a company's system from ransomware. Reduce damage from attacks with these three ransomware detection methods.  Continue Reading

• How to use dynamic reverse engineering for embedded devices

  In this excerpt from 'Practical Hardware Pentesting,' read step-by-step instructions on how to find vulnerabilities on IoT devices using dynamic reverse engineering.  Continue Reading

• Adopt embedded penetration testing to keep IoT devices secure

  Regular embedded penetration testing can help discover vulnerabilities before attackers do. The author of 'Practical Hardware Pentesting' explains.  Continue Reading

• Why using ransomware negotiation services is worth a try

  If stakeholders decide to pay ransom demands, using a ransomware negotiation service could improve the situation's outcome and lower the payout.  Continue Reading

• Infosec experts divided on SEC four-day reporting rule

  Professionals in the cybersecurity industry voiced concerns and praises of new incident disclosure rules that allow companies four days to report a "material" cyber attack.  Continue Reading

• Enterprise communication security a growing risk, priority

  Enterprise Strategy Group's Dave Gruber discusses survey results on security threats related to the use of email and other communication and collaboration tools.  Continue Reading

• Ransomware case study: Recovery can be painful

  In ransomware attacks, backups can save the day and the data. Even so, recovery can still be expensive and painful, depending on the approach. Learn more in this case study.  Continue Reading

• The history and evolution of ransomware

  Ransomware has evolved from a malicious floppy disk demanding $189 in ransom to a multibillion-dollar industry with ransom for rent, sophisticated techniques and big-name victims.  Continue Reading

• How to map security gaps to the Mitre ATT&CK framework

  Mapping security gaps to the Mitre ATT&CK framework enables SOC teams to prioritize, remediate and eliminate vulnerabilities before malicious actors exploit them.  Continue Reading

• Wi-Fi AP placement best practices and security policies

  From a security standpoint, Wi-Fi network designers should consider the physical and logical placement of APs, as well as management, segmentation and rogue devices.  Continue Reading

• Get started: Threat modeling with the Mitre ATT&CK framework

  The Mitre ATT&CK framework may seem daunting at first, but it is a key tool that helps SOC teams conduct threat modeling. Learn how to get started.  Continue Reading

• Quishing on the rise: How to prevent QR code phishing

  A monthslong quishing campaign demonstrated how cybercriminals are using QR codes to trick users. Here's what enterprise security leaders need to know.  Continue Reading

• Blockchain security: Everything you should know for safe use

  Despite its reputation, blockchain is subject to many of the same vulnerabilities as other software. It helps to have a clear idea of its inherent strengths and weaknesses.  Continue Reading

• Attack surface reduction rules for Microsoft productivity apps

  Attack surface reduction rules in Microsoft Defender for Endpoint help prevent apps from launching executable files and scripts, running suspicious scripts and more.  Continue Reading

• Manage security posture with Microsoft Defender for Endpoint

  Organizations need to implement security posture management to ensure their cybersecurity strategy can address malicious actions inside and out.  Continue Reading

• Vendors: Threat actor taxonomies are confusing but essential

  Despite concern about the proliferation of naming taxonomies used to identify threat groups, vendors say they are crucial their understanding and visibility into threat activity.  Continue Reading

• How to use Wfuzz to find web application vulnerabilities

  By learning how to use Wfuzz for web application fuzz testing, bug bounty hunters can automate vulnerability discovery. Learn more in this excerpt from 'Bug Bounty Bootcamp.'  Continue Reading

• How to become a bug bounty hunter: Getting started

  Finding, exploiting and reporting vulnerabilities can be both lucrative and educational. Security researcher Vickie Li explains how to become a bug bounty hunter.  Continue Reading

• The potential danger of the new Google .zip top-level domain

  How much should the average end user be concerned about the new .zip and .mov TLDs? They aren't as bad as some make them out to be, but it's still worth doing something about them.  Continue Reading

• 7 ways to mitigate CISO liability and risk

  Recent civil and criminal cases have brought CISO liability questions to the fore. Learn how to understand and manage personal risk exposure as a security executive.  Continue Reading

• How to implement principle of least privilege in Azure AD

  Restricting users' permissions in Microsoft Azure AD to only what they need to complete their job helps secure and reduce the cloud attack surface.  Continue Reading

• How to start handling Azure network security

  Before adopting Microsoft Azure, it's important to consider how to secure the cloud network. That's where network security groups and Azure Firewall come in.  Continue Reading

• Studies show ransomware has already caused patient deaths

  No patient deaths have been definitively attributed to cyber attacks on hospitals, but some infosec experts say that statistical evidence shows a different, grim reality.  Continue Reading

• Where climate change and cyber attacks intersect

  One session at RSA Conference 2023 focused on climate change -- a topic that is not commonly featured during cybersecurity conversations, but should be.  Continue Reading

• It's time to harden AI and ML for cybersecurity

  An RSA Conference panel said that now is the time to become proactive against AI and ML adversarial attacks -- before they become more sophisticated.  Continue Reading

• How Target built its DevSecOps culture using psychology

  Building a healthy DevSecOps culture isn't easy. Learn how Target used organizational psychology to get development and application security teams on the same page.  Continue Reading

• Practice Microsoft SC-100 exam questions with answers

  Use these practice multiple-choice questions, with answers, to assess your knowledge of the Microsoft Cybersecurity Architect exam.  Continue Reading

• How to prepare for the Microsoft Cybersecurity Architect exam

  Before taking the Microsoft Cybersecurity Architect exam, learn about the knowledge areas covered on the SC-100 test, studying recommendations, prerequisites and more.  Continue Reading

• How to use Azure AD Connect synchronization for hybrid IAM

  Organizations face many challenges authenticating and authorizing users in hybrid infrastructures. One way to handle hybrid IAM is with Microsoft Azure AD Connect for synchronization.  Continue Reading

• ICS kill chain: Adapting the cyber kill chain to ICS environments

  As IT/OT convergence continues to gain traction, industrial control system security cannot be ignored. Performing pen tests based on the ICS Kill Chain can help.  Continue Reading

• An intro to the IDMZ, the demilitarized zone for ICSes

  Setting up an IDMZ -- a demilitarized zone between enterprise and industrial networks -- can prevent operational environments from becoming compromised by IT threats.  Continue Reading

• Reinforce industrial control system security with ICS monitoring

  Monitoring an industrial control system environment isn't that different from monitoring a traditional IT environment, but there are some considerations to keep in mind.  Continue Reading

• Why medical device vulnerabilities are hard to prioritize

  Vulnerabilities in critical medical devices could lead to loss of life. But opinions are mixed on how serious the risk is to patient safety and how best to address the flaws.  Continue Reading

• Publicly disclosed U.S. ransomware attacks in 2023

  TechTarget Editorial's ransomware database collects public disclosures, notifications and confirmed reports of attacks against U.S. organizations each month.  Continue Reading

• SMS pumping attacks and how to mitigate them

  Online forms that use SMS can be costly to organizations if they are vulnerable to SMS pumping attacks. Use the following methods to mitigate or prevent this fraud-based attack.  Continue Reading

• How to apply and edit Wireshark display filters

  Wireshark display filters enable users to narrow the scope of a network traffic scan. Use this tutorial to apply and edit display filters to make detailed network sniffing easier.  Continue Reading

• Customize workflows with Wireshark profiles

  Wireshark has a variety of uses, which is why creating multiple personalized Wireshark profiles is important. Learn about Wireshark profiles, how to share them and more.  Continue Reading

• Inside the PEIR purple teaming model

  Want to try purple team exercises but aren't sure how to do so? Try the 'Prepare, Execute, Identify and Remediate' purple teaming model.  Continue Reading

• Understanding purple teaming benefits and challenges

  Blue teams and red teams are coming together to form purple teams to improve their organization's security posture. What does this mean for the rivals? And how does it work?  Continue Reading

• No relief in sight for ransomware attacks on hospitals

  Despite being off limits for some hackers, hospitals continue to be lucrative targets for ransomware groups because of their valuable data and higher rate of paying ransoms.  Continue Reading

• How to configure Windows privacy settings with Intune

  To personalize UX, Windows devices aren't shy about collecting user data. This isn't ideal for enterprise security. Discover how to lock down privacy settings with Intune.  Continue Reading

• Windows security tips for the enterprise

  Securing a Windows environment is no easy feat. Read up on low-hanging fruit to quickly address, as well as top tips from two security practitioners to get started.  Continue Reading

• 20 companies affected by major ransomware attacks in 2021

  Between hefty ransom demands, major disruptions and leaked data, 2021 saw major ransomware activity across companies and industries.  Continue Reading

• 11 cybersecurity predictions for 2023

  Analysts and experts have looked into their crystal balls and made their cybersecurity predictions for 2023. Is your organization prepared if these predictions come true?  Continue Reading

• After the CISO role: Navigating what comes next

  Former chief information security officers may have numerous career options available but no clear path forward. Here's how to navigate life after the CISO role.  Continue Reading

• 12 types of wireless network attacks and how to prevent them

  From packet sniffing and rogue access points to spoofing attacks and encryption cracking, learn about common wireless network attacks and how to prevent them.  Continue Reading

• Understanding malware analysis and its challenges

  Discover what to expect in a malware analyst career, from the types of malware you'll encounter to important tools to use to difficulties that arise for those new to the field.  Continue Reading

• Why is malware analysis important?

  Malware continues to plague all organizations, causing data loss and reputational damage. Discover how malware analysis helps protect companies from such attacks.  Continue Reading

• How to prevent SQL injection with prepared statements

  One of the top defenses against SQL injection is prepared statements. In this book excerpt, learn what prepared statements are and how to extend their defense.  Continue Reading

• How to maintain security with an understaffed security team

  Unsurprisingly, many companies function without a complete security team. Security tasks often fall to others in the organization. Here's some advice for stand-in security members.  Continue Reading

• WLAN security: Best practices for wireless network security

  Follow these wireless network security best practices to ensure your company's WLAN remains protected against the top threats and vulnerabilities.  Continue Reading

• 5 ways to overcome multifactor authentication vulnerabilities

  Improve the resiliency of multifactor authentication by giving users more information, making default settings more secure, hiding secrets and more.  Continue Reading

• How to build a shadow IT policy to reduce risks, with template

  With a shadow IT policy in place, organizations reduce security risks from unapproved applications and services that employees introduce independently.  Continue Reading

• Equipment to include in a computer forensic toolkit

  Computer forensic investigators require more than software to do their job. Learn what equipment constitutes a complete computer forensic toolkit.  Continue Reading

• Advice for beginner computer forensic investigators

  For those interesting in becoming a computer forensics investigator, learn about the career and what to expect, as well as why digital evidence is the most volatile evidence.  Continue Reading

• Enterprise ransomware preparedness improving but still lacking

  An Enterprise Strategy Group survey found enterprises are making strides in ransomware preparedness, but work remains to prevent and mitigate attacks.  Continue Reading

• Top 10 pen testing interview questions with answers

  Are you pursuing a career in pen testing? Prepare with this list of 10 pen testing interview questions and answers created by three security experts.  Continue Reading

• Top IT security manager interview questions

  Are you looking for a leadership role in cybersecurity? Three security experts offer their advice on how to answer the most common IT security manager interview questions.  Continue Reading

• How to configure and customize Kali Linux

  Learning how to use Kali Linux for ethical hacking and penetration testing? Read step by step how to configure and customize the distribution.  Continue Reading

• Why Kali Linux is the go-to distribution for penetration testing

  Discover why penetration testers prefer to use the Kali Linux distribution for offensive security, from collecting useful tools together to being usable from multiple devices.  Continue Reading

• 7 steps for implementing zero trust, with real-life examples

  More than a decade since the term's inception, zero-trust security is still much easier said than done. Here's how to get started.  Continue Reading

• LinkedIn scams, fake Instagram accounts hit businesses, execs

  Even the most secure business and executive social media accounts that have strong passwords and multifactor authentication are vulnerable to cloning schemes.  Continue Reading