Chances are your latest data breach could have been prevented. Hackers typically exploit well-known vulnerabilities. Zero-day attacks are actually quite rare, especially for commercial enterprise targets. Companies still struggle to have a realistic picture of their defenses; to know where […]
Back to Basics: Why Security Programs Continue to Miss the Mark Read More »
One of the primary challenges of cybersecurity is the conflict between perception and reality. Many executives and IT professionals will say without hesitation that they feel their computer and network security is solid even though there is often little-if any–evidence
Cybersecurity Perception Often Conflicts with Reality Read More »
Well thanks to WikiLeaks this week we now know those paranoid folks who wear the tinfoil hats and think their appliances are spying on them are largely right. I think it gets especially scary when the paranoid people actually turn
HP Has an Edge in Printer Security Read More »
DNS amplification attacks have been used for several years. The Spamhaus attack of 2013 was the first large scale DDoS attack using DNS amplification. This attack reached up to 300Gbps and involved up to 30,000 open DNS resolvers. The attack
DNS Amplification Attacks Show the Need for Application Distribution Read More »
To compete in a global marketplace, enterprises are outsourcing business processes and other services at an increasing rate. This trend has created the attack vector “du jour” for cyber criminals and experts estimate 50-plus percent of major breaches involve a
10 Tips to Limit Third-Party Cyber Risk Read More »
The internet loves its lists. SEO and web content experts will tell you that lists get more traffic. People just love to know what the “Top 10” of anything is–whether it’s the Top 10 Richest People in America, or the
Enough With the Top 10 Lists Already Read More »
The last 20 years of security have been based on a single model that has changed very little over the years. The model still has its place and serves an important purpose. On the other hand, the security market has
Breaking (Known) Bad Read More »
Prevention is better than cure. It’s a saying that’s made us all think about the impact of our current decisions on our future selves. So, we do a little more exercise, eat a little less and try to make small
Create a Secure Software Development Life Cycle in Four Easy Steps Read More »
Open source software–and components from open source tools–are used prolifically in many businesses. The challenge that Black Duck and HPE have teamed up to address is how to use open source software securely. Vulnerabilities are discovered and patched constantly, but
Black Duck Adds HPE Security Fortify to Its Repertoire Read More »
In today’s business environment, IT management responsibilities often fall on the CFO, business owner or other senior leader when there’s no internal IT department. These individuals are tasked with running fail-proof IT departments – a challenging feat considering many have
5 Critical Considerations for Effective IT Decision Making Read More »
