cioinsight.com
Home > RSS Feeds > Security
  • Data breaches reports rose more than 40 percent in 2016, with the majority of records coming from the health care industry, the Identity Theft Resource Center finds.

  • While security challenges often seem limitless, the resources that organizations have on hand to combat them are not. Security firm Trustwave issued a new report on Jan. 18 looking at the state of IT resources and staffing challenges titled, "Money, Minds and the Masses." The report is based on a survey of 147 IT security professionals, conducted by Osterman Research. The report concluded that it is becoming increasingly difficult for organizations to find talented IT security staff. Even if an organization is able to find staff, 35 percent of survey respondents indicated that retaining IT security staff is a major challenge. The staffing issue is further complicated when existing staff lack essential skills, with 40 percent of respondents admitting their organizations have inadequate skills sets to deal with evolving and emerging security risks. When looking at potential IT staff, experience was rated as the most valuable attribute by 83 percent of respondents, outpacing certifications at 25 percent. This slide show will cover some of important findings of the Money, Minds and the Masses report.

  • Security vendor Invincea enhances its X next generation security technology with a new managed services offering, providing configuration and monitoring capabilities.

  • Oracle is patching a long list of different vulnerabilities in its software portfolio. This time, it's the Oracle E-Business Suite that is getting the most patches.

  • 10th anniversary edition of Pwn2Own hacking contest offers over $1M in prize money to security researchers across a long list of targets including Virtual Machines, servers, enterprise applications and web browsers.

  • Getting physically fit is a typical New Year's resolution. Given that most of us spend more time online than in a gym, the start of the new year also might be a great time to improve your security “fitness.” As with physical fitness challenges, the biggest issue with digital security is always stagnation. That is, if you don't move and don't change, atrophy sets in. In physical fitness, atrophy is a function of muscles not being exercised. In digital fitness, security risks increase when you fail to change passwords, update network systems and adopt improved security technology. Before long, your IT systems literally become a “sitting duck.” Given the volume of data breaches that occurred in 2016, it is highly likely that everyone reading this has had at least one breach of their accounts compromised in some way, such as their Yahoo data account. Hackers somewhere may have one of the passwords you’ve used at one point to access a particular site or service. If you're still using that same password somewhere, in a way that can connect that account to you, that's a non-trivial risk. Changing passwords is the first of eight security resolutions that can help to improve your online security fitness in 2017. Click through this eWEEK slide show to discover the rest.

  • Hewlett Packard Enterprise's 2017 State of of Security Operations Report reveals that 82 percent of Security Operation Centers are not running at the optimal level of maturity and meeting business goals.

  • Former CEO of Xceedium and NetSec, helps to launch new cloud security-as-a-service company with Series A funding and technology from Bat Blue Networks.

  • NEWS ANALYSIS: Ransomware is a significant problem for small and medium-size business. But now there’s a new military-grade means of fighting back.

     

  • The hacker group "ShadowBrokers" releases 61 files said to contain exploit tools used by the National Security Agency, which could fuel a race between attackers—trying to create their own exploit tools—and defenders.

  • F5 Networks released its 2017 State of Application Delivery report on Jan. 10, providing insight into the growing world of application delivery services. The study was based on responses from a total 2,197 IT professionals around the world. Among the key highlights of the report is enterprises' strong interest in deploying security-related services in 2017. The report found that the increasing sophistication of cyber-attacks is a top challenge, which is helping to make security the number on priority for global organizations. In terms of how organizations will deploy application services to respond to the security challenge, 25 percent of respondents indicated that they plan to deploy DNS Security (DNSSEC) in 2017, while 21 percent plan to implement DDoS mitigation technology. Meanwhile 20 percent intend to deploy Web Application Firewall (WAF) services. Overall, F5's report found that organizations plan on deploying an average of 17 application services in 2017, up from an average of 11 in 2016. In this slideshow, eWEEK take a look at some of the key highlights of F5 Networks' 2017 State of Application Delivery report.

  • Nyotron launches in the U.S. with a technology platform that it claims to be 'threat -agnostic', using the company's patented Behavior Pattern Map to identify potential risks.

  • Just over a month after the first WordPress 4.7 release, new incremental update debuts fixing 62 bugs, including a security flaw in the popular PHPMailer email library that was first publicly reported in December 2016.

  • Microsoft is making a number of changes to the operating system's privacy controls, including the elimination of the Enhanced data-collection setting.

  • The new Google Cloud Platform service will allow enterprises to create, use and rotate encryption keys to protect their data, company says.

Rocket Fuel