Page 10 - White Papers in Next-Generation Technologies & Secure Development

Overcoming the Unique Challenges Security Vendors Face in 2018

Security vendor products are held to a higher standard of security. They must help their customers solve complex security problems, as well as have the most stringent security measures in place throughout the software development lifecycle. To meet those standards, many security vendors are turning to more innovative...

What Motivates a Bug Hunter: What's In It For Them?

During the past year alone, we've witnessed a number of devastating cyber attacks, from the massive Equifax breach to the seemingly never-ending Yahoo! breach. The 2nd annual Inside the Mind of a Hacker report was created to shed light on the makeup of the bug hunting community and gain insight and understanding into...

Sponsored by Certified Security Solutions (CSS)

Scalability - A Look at Securely Managing 500 Million Connected Vehicles

The promise of connected vehicles is tremendous, and so are the security measures required to reach that destination without winding up in a ditch, both literally and figuratively. Highly complex systems from multiple vendors, with legacy standards, equipment, and infrastructure, all make very attractive targets for...

How to Avoid Desktop and App Virtulization Pitfalls

To support a dynamic workforce in the era of consumerization, IT organizations need to move from the traditional desktop model to new, more fluid digital workspaces that are tuned for mobility, a workforce using new devices, and the agile delivery of new apps. The virtualization of Windows desktops and apps is one of...

Risk Management Framework: Assessing and Monitoring NIST 800-53 Controls for DoD

In 2014, the Department of Defense (DoD) issued instructions that replaced DoD Information Assurance Certification and Accreditation Process (DIACAP) with the Risk Management Framework (RMF). The RMF is designed to be managed as a continual process as the risk posture evolves over time for each information...

Federal Agencies Tech Brief: Security Investigation, Detection and Rapid Response

The fact that Federal agencies are prime targets for the most sophisticated cyber threats is undeniable. If cyberattacks are inevitable, then robust capabilities for security investigation, threat hunting, and rapid response are essential. Government cybersecurity professionals require visibility across their silos of...

The Evolving MECA Cybersecurity Landscape

Organizations in the Middle East and Central Asia are beginning to respond to the nuances of the evolving threat landscape in the region due to an explosion in its information and communications technology infrastructure, and this is changing the risk profile. when addressing the advanced capabilities required to...

Recent Changes in DDoS Attack Strategies

DDoS has undergone a serious change in attack strategy. In previous years it was used a means of gaining hacking credibility in the underground, taking out competitors or just disrupting business normality or the industry. However, a recent string of attacks has not followed convention, and is forcing security...

The Email Authentication Revolution

An analysis of the most popular 1 million global domains shows that most domain owners have not attempted to implement fraud protection through the latest and most complete form of protection, DMARC. Of those that have attempted DMARC, only 23 percent are actually achieving protection from fraud. Download this...

The Five Essential Elements of Next-Generation Endpoint Protection

The endpoint security market continues to expand with vendors old and new marketing their solutions as "next-generation" game-changers. However, closer inspection reveals that many new solutions have been built on old platforms, many of which still rely heavily on signature-based detection and obsolete architecture....

A SANS Product Review of the CrowdStrike Falcon® Platform

You won't want to miss this report, "A New Era in Endpoint Protection: A SANS Product Review of CrowdStrike Falcon Endpoint Protection," where SANS reveals the results of their evaluation of the CrowdStrike Falcon® platform. To conduct their evaluation, SANS security analysts ran Falcon through a wide range of...

Sponsored by Venafi

Are You Vulnerable to an SSH Compromise?

Is your organization exposed to an attack that misuses SSH keys? You know that your organization is using SSH to safeguard privileged access. But you may not realize that your SSH keys could be vulnerable to insider and cyber threats. The majority of those we surveyed didn't. Results from a 2017 study show that...

Sponsored by Venafi

SSH Study: U.S., U.K. and Germany Executive Summary

A recently published 2017 survey of over 400 security professionals in the U.S., U.K. and Germany measured how well their organizations implemented security controls for SSH keys. The results show that most organizations are underprepared to protect against SSH-based attacks, with fewer than half following industry...

Sponsored by Venafi

4 Steps to Protect SSH Keys: Stop Abuse of Privileged Access

SSH keys provide the highest level of access rights and privileges for servers, applications and virtual instances. Cyber criminals want this trusted status and invest considerable resources into acquiring and using SSH keys in their attacks. Even though SSH keys are the credentials that provide the most privileged...

Sponsored by Venafi

Physical and Virtual Devices: How Cybercriminals are Exploiting Machine-to-Machine Communications

"Machines" as we know them are going through an identity crisis. Our increased dependence on them is so profound that even the definition of machine is undergoing radical change. The number and type of physical devices on enterprise networks has been rising rapidly, but this is outstripped by the number of...