Help Net Security

Don't miss:

Tesla introduces code signing to harden their cars’ security

ICS-CERT releases new tools for securing industrial control systems

OS analysis tool osquery finally available for Windows

Hot stuff

mobile

Mobile security stripped bare: Why we need to start again

We’re all familiar with the cartoon image of a character stopping a water leak by plugging a finger into the hole, only for another leak to start, needing another finger, and so on, until the character is soaked by a wave of water. It’s a little like the current, fragmented state of mobile security – the range of threats is growing fast, …

firefighters

Incident response survival guide

All organizations are impacted by a security breach at some point. As the joke goes in the security industry, businesses fall into two categories: those that have been breached and those that don’t know they have been breached. Some organizations don’t know they have had a security incident until the FBI informs them. A breach can have …

city night

IoT-based DDoS attacks on the rise

Cybercriminal networks are increasingly taking advantage of lax Internet of Things device security to spread malware and create zombie networks, or botnets, unbeknownst to their device owners. When lax security becomes a huge problem Symantec’s Security Response team has discovered that cybercriminals are hijacking home networks and everyday …

Trust

Should you trust your security software?

The complaint that security is broken isn’t new and even industry insiders are joining the chorus. Companies spent an estimated $75 billion last year on security products and yet cyber attacks and data breaches are still a common occurrence. Now, we’re finding that security tools themselves have vulnerabilities that are putting organizations …

(IN)SECURE Magazine 51

Spotlight

(IN)SECURE Magazine issue 51 released

brain

Spotlight

Artificial intelligence in cybersecurity: Snake oil or salvation?

research

Spotlight

How a security researcher is tackling IoT security testing

osquery

OS analysis tool osquery finally available for Windows

Nearly two years after Facebook open sourced osquery, the social networking giant has made …

Industry

ICS-CERT releases new tools for securing industrial control systems

The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has published newer …

ms-project-springfield

Project Springfield: Cloud-based fuzz testing for uncovering million-dollar bugs

drone

Rise of the drones: Managing a new risk environment

Expert corner

Mobile security stripped bare: Why we need to start again

Avi Rosen CEO at Kaymera Technologies

Mobile security stripped bare: Why we need to start again

Incident response survival guide

Bob West Managing Director at CareWorks Tech

Incident response survival guide

Google’s smart search for security

Jason Hart VP and CTO for Data Protection at Gemalto

Google’s smart search for security

Should you trust your security software?

Roy Katmor CEO at enSilo

Should you trust your security software?

Why DNS shouldn’t be used for data transport

Rod Rasmussen Vice President of Cybersecurity at Infoblox

Why DNS shouldn’t be used for data transport

Can an automated defence network protect Britain from low-level threats?

Piers Wilson Head of Product Management at Huntsman Security

Can an automated defence network protect Britain from low-level threats?

Microsoft ends Tuesday patches

Michael Gray VP of Technology at Thrive Networks

Microsoft ends Tuesday patches

Can biometrics and the FIDO Alliance save us from password overload?

Michael Lynch Chief Strategy Officer at InAuth

Can biometrics and the FIDO Alliance save us from password overload?

What is access governance? A brief deep dive

Dean Wiech Managing Director at Tools4ever

What is access governance? A brief deep dive

Risk and the Pareto Principle: Applying the 80/20 rule to your risk management strategy

Joe Fantuzzi CEO at RiskVision

Risk and the Pareto Principle: Applying the 80/20 rule to your risk management strategy

Cyber attacks: Hindsight is 20/20, GDPR is even better

Jason Hart CTO Data Protection at Gemalto

Cyber attacks: Hindsight is 20/20, GDPR is even better

Incident response challenge: How to get out of Firefighter Mode

Vijay Bolina VP of Information Security at Blackhawk Network

Incident response challenge: How to get out of Firefighter Mode

What's New

Tesla

Tesla introduces code signing to harden their cars’ security

When researchers from Tencent’s Keen Security Lab discovered that they were able to leverage vulnerabilities to remotely hijack Tesla cars, they reported the issues to the automotive company and rushed them into implementing a security …

Encryption

Many tech senior decision-makers don’t understand encryption

Nearly a quarter of tech senior decision-makers in the UK don’t fully understand encryption, according to PKWARE. This number increases to 40% in the retail sector and half in the healthcare sector. Overall, only 50% of respondents said …

tunnel

Which celebrities generate the most dangerous search results?

Female comedian Amy Schumer knocked DJ Armin van Buuren off of the list to become the most dangerous celebrity to search for online, according to Intel Security. Now in its 10th year, the McAfee Most Dangerous Celebrities study researched a …

Europol

Europol identifies eight main cybercrime trends

The volume, scope and material cost of cybercrime all remain on an upward trend and have reached very high levels. Some EU Member States now report that the recording of cybercrime offences may have surpassed those associated with traditional …

apps

By 2018, 25 percent of new mobile apps will talk to IoT devices

With the convergence of devices, bots, things and people, organizations will need to master two dimensions of mobility, according to Gartner. CIOs and IT leaders will need to excel at mainstream mobility and to prepare for the post-app era. …

Reviews

Review: Boxcryptor

Review: Boxcryptor

Review: Protecting Patient Information

Review: Protecting Patient Information

Review: iStorage datAshur Pro

Review: iStorage datAshur Pro

Review: Cyber Guerilla

Review: Cyber Guerilla

Review: True Key for iOS

Review: True Key for iOS

Review: iStorage diskAshur Pro

Review: iStorage diskAshur Pro

Review: Linux Server Security

Review: Linux Server Security

Review: GuardKey

Review: GuardKey

Review: DevOpsSec

Review: DevOpsSec

Review: Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own

Review: Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own

Review: ProtonMail

Review: ProtonMail

Signal

Review: Signal for iOS

Don't miss

Tesla

Tesla introduces code signing to harden their cars’ security

Industry

ICS-CERT releases new tools for securing industrial control systems

osquery

OS analysis tool osquery finally available for Windows

mobile

Mobile security stripped bare: Why we need to start again

Encryption

Many tech senior decision-makers don’t understand encryption

ms-project-springfield

Project Springfield: Cloud-based fuzz testing for uncovering million-dollar bugs

Apple iOS 9

Looking for an iOS jailbreak? Beware of scammy offers

Windows Defender Application Guard

Microsoft equips Edge with hardware-based container

firefighters

Incident response survival guide

drone

Rise of the drones: Managing a new risk environment

eye

Swiss voters approve new surveillance law

city night

IoT-based DDoS attacks on the rise

Malware news

How ransomware is impacting companies in six major industries

BitSight analyzed the security ratings of nearly 20,000 companies to identify common forms of ransomware and to determine which industries (amongst Finance, Healthcare, Education, Energy/Utilities, Retail, and Government) are most likely to …

Surge in polymorphic attacks and malicious Android apps

UK online banking customers are back on fraudsters’ radar

Malicious torrents management tool uncovered

HDDCryptor ransomware uses open source tools to thoroughly own systems

Privacy news

Cybersecurity is not receiving enough attention from presidential candidates

Heading into the first presidential debate, 58 percent of Americans feel the presidential candidates are not paying enough attention to cybersecurity, according to LifeLock. The results of the survey, conducted online Sept. 9-13 by Harris Poll …

Repercussions of the massive Yahoo breach

Google’s smart search for security

880,000 users exposed in MoDaCo data breach

What proposed Rule 41 changes mean for your privacy