Security Now - Security challenges come in many forms


ABTV Application Cloud Endpoint Infrastructure IoT/Embedded Mobile Network Operational Security Management
Sign up for our weekly newsletter! REGISTER NOW

News & Views Splunk Ups Machine IQ in Software Updates Curtis Franklin Security Editor, \| 9/26/2017 Splunk has announced major updates to its product portfolio with the release of Splunk Enterprise 7.0, Splunk IT Service Intelligence (ITSI) 3.0, Splunk User Behavior Analytics (UBA) 4.0 and updates to Splunk Cloud. The releases were announced at Splunk's annual user conference, .conf2017, in Washington, DC. Post a Comment \| READ () Microsoft's Nadella Shares the Future at Ignite Curtis Franklin Security Editor, \| 9/25/2017 At Microsoft's Ignite conference, which brings developers, partners and customers together for a week of education and enthusiasm, CEO Satya Nadella took the opening-morning keynote stage to deliver an address that was short on details about new products but long on vision. The details on display boiled down to four carefully curated words or phrases: ... Post a Comment \| READ (1 Comment) Latest comment: Quantum Computing I keep hering it more and more... it look like we gonna be living... Encryption: 6 Ways to Make It Matter Curtis Franklin Security Editor, \| 9/25/2017 One of the truths exposed by recent events is that data is vulnerable. IT security workers have two tasks to address the situation: Make all data less vulnerable, and make vulnerable data less useful to unauthorized eyes. The road to success at the latter lies along an encrypted path. Post a Comment \| READ (2 comments) Latest comment: @mhhfive interesting to know - thanks for sharing the link... what Adobe thinking... Law Comes to the Self-Driving Wild West, Part 2 Simon Marshall Technology Journalist, \| 9/25/2017 This is the second part of an article on efforts to develop a legal framework for intelligent cars. If you haven't already read part one, it's a good place to start. Post a Comment \| READ (2 comments) Latest comment: Are bug bounties really the best way to find and fix security issues? I think perhaps... Right & Wrong Lessons From the Equifax Breach Curtis Franklin Security Editor, \| 9/22/2017 Equifax, the gift that keeps on giving to hackers and journalists alike, continues to rain fallout over the security landscape. At the end of last week the fallout was the "retirement" of the CISO and CIO, and the subsequent learning of a great many lessons, most of them wrong. Post a Comment \| READ (9 comments) Latest comment: @LarryLoeb I would say we gonna see some big changes in the future... but no... Friday Haiku: Gem or Not? Curtis Franklin Security Editor, \| 9/22/2017 In the spirit of our parent publication Light Reading, a Friday Security Haiku. Post a Comment \| READ (3 comments) Latest comment: @mhhfive yes you are right, but diamonds and coal both based on carbon....... NIST Redefines the Good Password Yaron Zinar Senior security researcher, Preempt, \| 9/22/2017 What makes a secure password? The National Institute for Science and Technology (NIST) has released a new set of guidelines that will be required reading for those in government IT -- and highly recommended for everyone else. In general, the new guidelines push for longer passwords (eight characters minimum and support for up to 64 characters), while ... Post a Comment \| READ (3 comments) Latest comment: > (HumptyDumpty is cracked, why not HumptyDumpty1)I knew somebody whose company... Law Comes to Self-Driving Wild West Simon Marshall Technology Journalist, \| 9/22/2017 Earlier this month, bill number H.R.3388 passed the House, and now awaits comment from the Senate Committee on Commerce, Science, and Transportation, having already been read twice. Better known as the Self Drive Act, it seeks to define of a set of safety standards for autonomous vehicles (AVs) that can be administered by the Department of Transportation ... Post a Comment \| READ (2 comments) Latest comment: > "The Self Drive Act specifies that car developers and manufacturers may not... A New, Invisible Threat Jumps the Air Gap Curtis Franklin Security Editor, \| 9/21/2017 In the world of security, the ultimate defense is the air gap -- a total physical separation of the network or device from the rest of the world. But air gaps have been shown to be vulnerable in the past, and researchers in Israel have now demonstrated a new way to cross the gap and reach systems previously thought to be safe. Post a Comment \| READ (4 comments) Latest comment: @mhhfive yes, but the scary reality the way I see it Russia keep developing... CISOs Under Fire: New Poll Shows Progress & Peril Curtis Franklin Security Editor, \| 9/20/2017 The troubles of Equifax have brought a bright spotlight to the CISO's office. A new report shows that it's an uncomfortable office to occupy, even when the bright glare of public scrutiny is focused elsewhere. Post a Comment \| READ (2 comments) Latest comment: @mhhfive interesting point question, I think all of them as the first... Survey Finds Companies Don't Know Cloud Security Curtis Franklin Security Editor, \| 9/20/2017 A new survey shows that companies are rapidly increasing their use of public cloud applications and services, but that concerns about security are holding back even faster growth. Among the issues is confusion about just which players in the overall security picture are responsible for various aspects of cloud protection. Post a Comment \| READ (2 comments) Latest comment: @mhhfive it does shows the many Co. this days try to forget about security... Intent-Based Security Is New Path for Vendors Curtis Franklin Security Editor, \| 9/19/2017 The road to hell is paved with good intentions. - Proverb Post a Comment \| READ (2 comments) Latest comment: @mhhfive I would say first we must know the right question and know what to... Load More Articles + All Articles All Video All Slide Shows All Articles discussion board Joe Stanganelli, 9/26/2017 1:15:18 PM NIST Redefines the Good Password Re: password, password1... > (HumptyDumpty is cracked, why not HumptyDumpty1)I knew somebody whose company required her to change her passwords FREQUENTLY. (Regulated industry.) So this was essentially the methodology she and her coworkers used because they had real... Post Your Reply Michelle, 9/26/2017 1:14:52 PM Friday Haiku: No Safety in Bluetooth Re: Re: Bluetooth Speaking of critial systems tied to bluetooth --- I saw a hearing aid ad on TV that said the company could adjust your hearing aids via bluetooth while you were at home. No trips to the office! I can only assume they require you to connect... Post Your Reply batye, 9/26/2017 12:20:19 PM Right & Wrong Lessons From the Equifax Breach Re: Re: Lighting the Torches of Righteousness @LarryLoeb I would say we gonna see some big changes in the future... but no one know if this changes will be good or bad... the way credit reporting system setup now - I see it as a big mess with holes for identity scammers use it like... Post Your Reply LarryLoeb, 9/26/2017 12:11:22 PM Right & Wrong Lessons From the Equifax Breach Re: Re: Lighting the Torches of Righteousness @batye But, if enough people are treated badly by any organization there will be a counter pressure that acts against it. And if big enough pressure exists it may cause change. Hence, my feeling to burn credit reporting to the ground and... Post Your Reply batye, 9/26/2017 12:09:32 PM RouteX Hijacks Netgear Routers Re: Re: Basic Internet Security @LarryLoeb yes as this days everywhere is more hype and lips service instead of real results... sad reality the way I see it... sad sad sad... Post Your Reply batye, 9/26/2017 12:06:13 PM Right & Wrong Lessons From the Equifax Breach Re: Re: Lighting the Torches of Righteousness @LarryLoeb Thank you, in my mind customers should get treated better at the end or with idea to fix the problem and offer right solution but if wishes where horses all beggers will ride... Post Your Reply LarryLoeb, 9/26/2017 10:18:23 AM Right & Wrong Lessons From the Equifax Breach Re: Re: Lighting the Torches of Righteousness @batye Hard to disagree with that. Post Your Reply LarryLoeb, 9/26/2017 10:17:22 AM RouteX Hijacks Netgear Routers Re: Re: Basic Internet Security @batye Good intentions do not guarantee good results, sadly. Post Your Reply batye, 9/26/2017 5:23:18 AM Equifax Breach Won't Be the Last or Worst Re: Re: Adapt. Change. Evolve. Learn new skills. Be alert. Repeat. @Susan Fourtané yes you are so right, it all depends on the point of view and country... what is normal in NK is crazy for USA... and vice versa... but for me North American way of life is a normal way... :) just my point... Post Your Reply Susan Fourtané , 9/26/2017 4:30:15 AM Equifax Breach Won't Be the Last or Worst Re: Re: Adapt. Change. Evolve. Learn new skills. Be alert. Repeat. What is "normal," and who decides the parametres? Most importantly, why someone has to live by the designations and parametres of others rather than those given by themselves? Post Your Reply batye, 9/26/2017 4:02:04 AM Equifax Breach Won't Be the Last or Worst Re: Re: Adapt. Change. Evolve. Learn new skills. Be alert. Repeat. @Susan Fourtané yes, but internet got designed with normal people in mind... and this days it like sanatorium got opened and all patience out... it like no longe normal reality... or maybe I'm just getting older :) Post Your Reply Susan Fourtané , 9/26/2017 3:16:45 AM Equifax Breach Won't Be the Last or Worst Re: Adapt. Change. Evolve. Learn new skills. Be alert. Repeat. batye - I have always said that those who resist adapting and embracing change will, without a doubt, follow the dinosaurs. Those who refuse to go forward will always stay behind. Learning new skills is a personal choice which jas nothing to... Post Your Reply Next 5 messages + All messages All messages Chat 9/1/2017 3:14:59 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thanks for this info, much appreciated! wiredog Keeper 8/31/2017 3:54:21 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thank you! klogan453 Keeper 8/31/2017 3:51:19 PM Voice of Security Radio: A Security Partnership with Machine Learning: Well, it seems like Steve and I managed to answer everyone's questions in our conversation. So I'll say thanks once again to Steve Grobman, CTO of McAfee, for being such a wonderful guest here on Voice of Security Radio! Curt Franklin Keeper 8/31/2017 3:47:35 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thanks. Sr.Contr61262 Keeper 8/31/2017 3:47:19 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thanks for helping out, Daren! Curt Franklin Keeper 8/31/2017 3:45:59 PM Voice of Security Radio: A Security Partnership with Machine Learning: (On behalf of Steve Grobman) - Data science and computer science expertise is definately in high demand by the cyber security technology industry as well as many other industries that are using similar capabilities daren Keeper 8/31/2017 3:44:38 PM Voice of Security Radio: A Security Partnership with Machine Learning: (On behalf of Steve Grobman) - There is not a formal certificatio process.. most users don't need to understand the nuance of the technology which is generally built by technology product providers daren Keeper 8/31/2017 3:42:40 PM Voice of Security Radio: A Security Partnership with Machine Learning: And how are mainline security pros/machine learning pros certified, i.e. how do you lknow that the person you're hiring to help you knows what they're dcoing? Sr.Contr61262 Keeper 8/31/2017 3:39:20 PM Voice of Security Radio: A Security Partnership with Machine Learning: Steve, one question we didn't get to is that of skilled practitioners. I know that mainline security pros are in short supply and high demand: Is it even worse when it comes to machine learning pros in the security space? Curt Franklin Keeper 8/31/2017 3:37:01 PM Voice of Security Radio: A Security Partnership with Machine Learning: Since I was late - and again - really sorry, I don't even know what to ask. Feel free to ask a question or my behalf. Sr.Contr61262 Keeper Next 5 chats +		Flash Poll All polls upcoming Webinars Agility, Scalability & Automation – Enabling Digital Transformation Through the ADC Thursday, October 12, 2017 11:00 a.m New York/ 4:00 p.m. London More Webinars Webinar Archives Information Resources • Ebook: All Clouds are NOT Equal • Ebook: Securing the Whenever, Wherever Workforce • White paper: Osterman: Deploying and Managing Security in the Cloud • SPECIAL REPORT: PRINCIPLES OF ENCRYPTION BEST PRACTICES • Redefining the Enterprise Security Perimeter • Next Generation Managed Security Services • Session Border Controllers for Dummies • Securing Real-Time Communications for Dummies • 2017 North American Enterprise Session Border Controller Company of the Year Award • Debunking the Top 4 Myths About DDoS All resources Video Keith Furst of Data Derivatives interviews Daniel Wagner, author of a new book, Virtual Terror: 21st Century Cyber Warfare. They discuss the ways ... Facebook has introduced new measures that will enable users to secure access to their accounts using a physical 'key' application. All Videos Radio Shows ARCHIVED \| August 31, 2017, 3pm EDT Voice of Security Radio: A Security Partnership with Machine Learning An interview with Steve Grobman, CTO of McAfee ARCHIVED SHOWS DOWNLOAD TO CALENDAR Twitter Feed Tweets by Security_Now_ like us on facebook