Security Now - Security challenges come in many forms


ABTV Application Cloud Endpoint Infrastructure IoT/Embedded Mobile Network Operational Security Management
Sign up for our weekly newsletter! REGISTER NOW

News & Views Congressional Campaign Websites Vulnerable to Attack, Say Researchers Jeffrey Burt Freelance Editor & Journ, \| 8/17/2018 The security of the US election system and of candidates' campaigns has been front and center in a national discussion that began with the Russian interference in the 2016 presidential campaign, and continues as the country gets closer to fast-approaching 2018 midterms in November. Such security was a focus in the recent Black Hat and DEF CON events in ... Post a Comment \| READ () Check Point: Fax Machines, Networks Vulnerable to Attack Jeffrey Burt Freelance Editor & Journ, \| 8/17/2018 The fax machine might seem like a relic of the past in this age of instant communication, but fax systems are still in millions of offices as part of connected all-in-one printers, and that connectivity makes these systems another pathway for hackers to get into corporate and consumer networks. Researchers at Check Point put that threat into focus when ... Post a Comment \| READ () IAM Heads to the Mobile Cloud Joe Stanganelli Principal, Beacon Hill Law, \| 8/16/2018 Johan Lidros, the president of the Eminere Group, gave a recent presentation concerning how inappropriate access and shared accounts top the very long list of common findings of identity and access management (IAM) audits. Post a Comment \| READ () IETF Makes Transport Layer Security Version 1.3 Official Larry Loeb Author, \| 8/15/2018 The Internet Engineering Task Force (IETF) made version 1.3 of Transport Layer Security official on August 10. This is now the industry standard for secure Internet connections via HTTPS. After heated discussions for the last two years, TLS 1.3 is now finally supported in both the Chrome and Firefox browsers, and in Facebook. Post a Comment \| READ () Summertime Security Blues: Why Threats Heat Up on Vacation Paul Martini CEO & co-founder of iboss, \| 8/15/2018 Most modern organizations take advantage of a decentralized workforce, and for good reason: When employees have the flexibility to work outside of the main office, they're more readily available to address issues in real time, making them "always on" without feelings of unnecessary strain. Post a Comment \| READ () DHS: Millions of Smartphones Infected With Severe Embedded Vulnerabilities Joe Stanganelli Principal, Beacon Hill Law, \| 8/14/2018 Is it possible for a remote actor on the other side of the world to completely take over your smartphone and everything on it? If this month's announcements in US government-backed research on mobile-device security are any fair indication, the answer could well be yes. Post a Comment \| READ () Microsoft Cortana Vulnerability Can Unlock a Locked Windows PC Larry Loeb Author, \| 8/13/2018 During last week's Black Hat conference in Las Vegas, researchers showed how Microsoft's Cortana virtual assistant could be used to bypass the Windows lock screen. The vulnerability affects Windows 10 machines and Windows 10 Servers. Post a Comment \| READ (3 comments) Latest comment: @LarryLoweb LOL, you should copyright that and sell it on bumper stickers, T-shirts,... Artificial Malevolence: Bad Actors Know Computer Science, Too Alan Zeichick Principal Analyst, Camden Associates, \| 8/13/2018 LAS VEGAS -- The cybersecurity industry has embraced artificial intelligence and machine learning. Seemingly every exhibitor at this year's Black Hat conference is touting AI, whether it's for scanning email attachments for malware, detecting patterns in network access patterns, filtering alerts for rapid incident triage or finding anomalies in user ... Post a Comment \| READ () Smart Cities Need to Get Smarter About Cybersecurity Larry Loeb Author, \| 8/10/2018 As the widespread networking of computers in the last few decades gave rise to new kinds of security problems, the trend to make cities networked is starting to show how attackers may be able to cause disruption in them. Post a Comment \| READ (1 Comment) Latest comment: <some of the most common security issues, such as default passwords, authentication... Researchers Show That Code Reuse Links Various North Korean Malware Groups Jeffrey Burt Freelance Editor & Journ, \| 8/10/2018 North Korea came on the scene as a nation-state sponsored by cyberattacks in the mid-2000s and has rapidly increased its capabilities over more than a decade. Post a Comment \| READ () 146 Billion Records in Danger of Being Stolen, Report Finds Scott Ferguson Managing Editor, Light Reading, \| 8/9/2018 By the end of this year, approximately 12 billion records will be stolen or compromised through data breaches and other types of cybercrime. That number is then expected to jump to 33 billion records per year by 2023, according to the results of a survey conducted by Juniper Research. Post a Comment \| READ () Researcher Finds New Method of Cracking Passwords in WPA2 Protocol Scott Ferguson Managing Editor, Light Reading, \| 8/9/2018 A security researcher has found a new way of cracking passwords in the WPA2 protocol at a time when the industry is prepared to roll out the newer WPA3 standards for WiFi in response to several recent security concerns. Post a Comment \| READ () Load More Articles + All Articles All Video All Slide Shows All Articles discussion board MarkSindone, 8/17/2018 4:55:52 AM Major Apple Flaw Found, Fixed & Still Dangerous Re: Re: Apple is losing its user-friendly edge... And for this reason, that's why you've never needed to market the Microsoft system. But I think that Apple is stepping up quite well with some of the flashiest and brightest tech minds now. Or maybe it seems that way because they're in the... Post Your Reply Susan Fourtané , 8/16/2018 5:53:54 AM Spam at 40: Still a Robust Security Threat in Middle Age Re: Re: Will Messaging printable calendar Apps Ever Take Over september ? Do you agree with Monahan? Post Your Reply Susan Fourtané , 8/16/2018 5:31:20 AM Spam at 40: Still a Robust Security Threat in Middle Age Re: Re: Will Messaging Apps Ever Take Over? I have wondered the same. Here is something: https://www.nzherald.co.nz/sport/news/article.cfm?c_id=4&objectid=12100451 It seems like Kent is the second name. Post Your Reply CameronRobertson, 8/16/2018 2:55:59 AM HONEST Poll Results: How Much Should You Encrypt? Re: Re: Can't trust WiFi I think that the question here is WHAT to encrypt! You can encrypt as much and as little as you want, but it will only be effective if you are protecting the right things. Otherwise you're spending a lot of money to take care of irrelevant... Post Your Reply CameronRobertson, 8/16/2018 1:35:03 AM Risk & Reality Take Different Paths in Cybersecurity Re: Re: Mountains out of mole hills... I don't think the point of contention here is security in itself, but rather the cost of the implementation of security that is good enough to prevent a breach in safety for their data and information. If you're in a company that has more than... Post Your Reply Michelle, 8/15/2018 9:12:25 PM Spam at 40: Still a Robust Security Threat in Middle Age Re: Re: Will Messaging Apps Ever Take Over? I wonder about the impact of his name as well. I hope sharing a name with a super hero has been good thus far. Post Your Reply Ariella, 8/15/2018 4:30:01 PM Microsoft Cortana Vulnerability Can Unlock a Locked Windows PC Re: Re: voice @LarryLoweb LOL, you should copyright that and sell it on bumper stickers, T-shirts, etc. I'm also not a fan of these things. However, I do see some real value in voice activation for those who would have difficulty with a screen iterface,... Post Your Reply LarryLoeb, 8/15/2018 4:21:04 PM Microsoft Cortana Vulnerability Can Unlock a Locked Windows PC Re: Re: voice @Ariella Alexa is just spyware sold as an assistant. Post Your Reply Ariella, 8/15/2018 3:09:41 PM Microsoft Cortana Vulnerability Can Unlock a Locked Windows PC Re: voice <In this case, the lock screen limits the keyboard but allows Cortana to invoke via voice. Once Cortana is active, the lock screen no longer limits the keyboard and Cortana can accept its input.> You gotta admit there is some cleverness... Post Your Reply Ariella, 8/14/2018 10:46:12 AM Public Cloud, Part of the Network or Not, Remains a Security Concern Re: Re: A suggested postscript @Joe that is not altogether too surprising. Successful women often say that they have to be twice as good as a man to get to their position, which fits with the way men are said to overshoot beyond their qualifications, while women tend to... Post Your Reply ms.akkineni, 8/14/2018 8:02:14 AM Cybersecurity & C-Suite: Why Executives Should Take the Lead Re: Re: C Level Messaging Totally in agreement with you. It is very normal for people to think about value add for any IT ask. But if we think about mandatory HR stuff like for example we all take sexual harassment course evey year or whatever as required, no questions... Post Your Reply ms.akkineni, 8/14/2018 7:54:34 AM Public Cloud, Part of the Network or Not, Remains a Security Concern Re: Re: A suggested postscript Absolutely, that's a total no brainer. I have noticed that in many situations and keep wondering if job posters invest any time thinking about what they are posting. Forget about researching specific skills and longevity of those. Post Your Reply Next 5 messages + All messages All messages Chat 8/31/2017 3:54:21 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thank you! klogan453 Keeper 8/31/2017 3:51:19 PM Voice of Security Radio: A Security Partnership with Machine Learning: Well, it seems like Steve and I managed to answer everyone's questions in our conversation. So I'll say thanks once again to Steve Grobman, CTO of McAfee, for being such a wonderful guest here on Voice of Security Radio! Curt Franklin Keeper 8/31/2017 3:47:35 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thanks. Sr.Contr61262 Keeper 8/31/2017 3:47:19 PM Voice of Security Radio: A Security Partnership with Machine Learning: Thanks for helping out, Daren! Curt Franklin Keeper 8/31/2017 3:45:59 PM Voice of Security Radio: A Security Partnership with Machine Learning: (On behalf of Steve Grobman) - Data science and computer science expertise is definately in high demand by the cyber security technology industry as well as many other industries that are using similar capabilities daren Keeper 8/31/2017 3:44:38 PM Voice of Security Radio: A Security Partnership with Machine Learning: (On behalf of Steve Grobman) - There is not a formal certificatio process.. most users don't need to understand the nuance of the technology which is generally built by technology product providers daren Keeper 8/31/2017 3:42:40 PM Voice of Security Radio: A Security Partnership with Machine Learning: And how are mainline security pros/machine learning pros certified, i.e. how do you lknow that the person you're hiring to help you knows what they're dcoing? Sr.Contr61262 Keeper 8/31/2017 3:39:20 PM Voice of Security Radio: A Security Partnership with Machine Learning: Steve, one question we didn't get to is that of skilled practitioners. I know that mainline security pros are in short supply and high demand: Is it even worse when it comes to machine learning pros in the security space? Curt Franklin Keeper 8/31/2017 3:37:01 PM Voice of Security Radio: A Security Partnership with Machine Learning: Since I was late - and again - really sorry, I don't even know what to ask. Feel free to ask a question or my behalf. Sr.Contr61262 Keeper 8/31/2017 3:33:59 PM Voice of Security Radio: A Security Partnership with Machine Learning: Well folks, now's the time to ask any questions we didn't get to in the audio interview. Steve will be here in just a moment -- what would you like to know? Curt Franklin Keeper Next 5 chats +		Information Resources • You Cannot Secure What You Cannot See: How to make your hybrid cloud environment visible and secure • Security Now Special Report – Security Automation: Risks & Rewards for Your Security Program • Security Now Special Report – Backup & Recovery • Cisco Umbrella + Cloudlock: Simple, effective cloud security • MSSP Data Sheet • Ransomware for Dummies • Easy Protect Data Sheet • Security Now Special Report - GDPR: Making Sure Your Enterprise Is Prepared & Secure • DDoS Protection Mastery Starts Here • The Cloud Migration Guide All resources upcoming Webinars ARCHIVED What You Can Do To Strengthen Security Over Your Clouds Tuesday, June 26, 2018 1:00 p.m New York/ 6:00 p.m. London More Webinars Webinar Archives Analysts Corner Ovum Resources • Ovum 2018 Trends to Watch: IT & Cybersecurity • Ovum IoT Security: Technology Strategies & Vendor Profiles • Ovum 2018 Trends to Watch: Managed Security Services • Ovum's Mini-Guide to GDPR Analysts Corner archive Flash Poll All polls Video CloudPassage's new technology, called Container Secure, involves a five-step process to ensure seamless security in container deployments from the ... You can't so much as go to a coffee shop today without hearing the word 'blockchain.' Hearing about a useful blockchain is less common, but ... Last year, 60 million companies changed owners worldwide. That turnover makes it incredibly difficult to avoid doing business with entities (e.g., ... Keith Furst of Data Derivatives interviews Daniel Wagner, author of a new book, Virtual Terror: 21st Century Cyber Warfare. They discuss the ways ... Facebook has introduced new measures that will enable users to secure access to their accounts using a physical 'key' application. All Videos Sponsored Video Sage Wagner, senior security pre-sales engineer with RiskSense, provides a demo of the company's latest technology 'RiskSense Solution,' a ... Janus Technologies is launching a line of products that protect against the many threats to enterprises' sensitive data. David Schultz, vice ... This new video will inspire companies to reimagine their business for success in a world where connectivity is more than a commodity. Sponsored Video All Videos Radio Shows ARCHIVED \| August 31, 2017, 3pm EDT Voice of Security Radio: A Security Partnership with Machine Learning An interview with Steve Grobman, CTO of McAfee ARCHIVED SHOWS DOWNLOAD TO CALENDAR Twitter Feed Tweets by Security_Now_ like us on facebook