Help Net Security - Information Security News

Don't miss:

Exfiltrating private keys from air-gapped cold wallets

Whitepaper: DNS Threat Intelligence vs. AI Network Security

How many threats hit the mainframe? No one really knows

Hot stuff

How many threats hit the mainframe? No one really knows

Mainframes are the definition of mission-critical for countless businesses. Mainframes can run 1.1 million transactions per second and are at the core of the technology strategies within the worldwide financial markets. In 2017, IBM launched a new mainframe capable of running 12 billion encrypted transactions a day. Why, despite the fact that …

GDPR: It’s an issue of transparency

The General Data Protection Regulation (GDPR) has been on the lips of security professionals for a long time now – but in just over a month, it will become a reality. While it is easy to get stuck with reviewing the potential fines or setting up efficient security procedures to ensure compliance, many are still overlooking what is at the heart …

Most dangerous attack techniques, and what’s coming next

Experts from SANS presented the five most dangerous new cyber attack techniques in their annual RSA Conference 2018 keynote session in San Francisco, and shared their views on how they work, how they can be stopped or at least slowed, and how businesses and consumers can prepare. The five threats outlined are: 1. Repositories and cloud storage …

New targeted surveillance spyware found on Google Play

A new targeted surveillance app has been found and booted from Google Play. The app, named Dardesh, posed as a chat application and acted as a downloader for a second app that could spy on users. The Dardesh app was spotted and analyzed by Lookout researchers, who dubbed the malware family Desert Scorpion. How was the app delivered to targets? …

Spotlight

GDPR: It’s an issue of transparency

Solving the dark endpoint problem with increased visibility and control

In this podcast recorded at RSA Conference 2018, Richard Henderson, Global Security Strategist …

Effective intrusion detection for the Internet of Things

A group of researchers have devised a self-learning system for detecting compromised IoT …

Expand vulnerability and risk management programs to eliminate security misconfigurations

Most dangerous attack techniques, and what’s coming next

Expert corner

Ray Overby President at Key Resources

How many threats hit the mainframe? No one really knows

Robert Rutherford CEO at QuoStar

GDPR: It’s an issue of transparency

Sabino Marquez CSO at Allocadia

What’s your security story? How to use security as a sales tool

Raj Samani Chief Scientist at McAfee

Information security can enable business as soon as we change the conversation

Ken Elefant Managing Director at Sorenson Capital

Are there too many cybersecurity companies?

Joep Gommers CEO at EclecticIQ

The great attribution debate: Why we should focus on HOW not WHO

Ryan Orsi Director of Product Management at WatchGuard Technologies

Four wireless standards hackers will target after Wi-Fi

Joshua Behar CEO at Ericom Software

Cryptojacking is the new malware

Rick Orloff CSO at Code42

Is GDPR-regulated data lurking in unexpected pockets of your organization?

David Hatchell VP IIoT and Industrial Security at ProtectWise

Expected changes in IT/OT convergence and industrial security

Scott M. Kannry CEO at Axio

The four myths hampering cybersecurity maturity

Yitzhak Vager VP Product Management & Business Development at Verint

GDPR quick guide: Why non-compliance could cost you big

What's New

Exfiltrating private keys from air-gapped cold wallets

Air-gapped cold wallets might be one of the safest options for keeping your cryptocurrency stash, but even they can be compromised. And, as demonstrated by security researchers from the Ben-Gurion University of the Negev, Israel, extracting …

Orangeworm hackers target healthcare corporations

A hacking group dubbed Orangeworm has been targeting, either directly or indirectly, international corporations operating within the healthcare sector, Symantec researchers have shared. Custom malware The Orangeworm attackers use a custom …

Whitepaper: DNS Threat Intelligence vs. AI Network Security

The Domain Name System (DNS) turns a user-friendly domain name into an IP address that computers use to identify each other. DNS is unencrypted by default. Most security vendors still heavily rely on signature-based detection, such as DNS …

Largest inhibitor of cyber insurance market growth? Silent cyber risk

A new study of the UK cyber risk insurance and broker community reveals startling findings. First and foremost, the insurance industry needs to address non-affirmative cyber in a meaningful way. Second, measurement of cyber risk in financial …

Cybersecurity task force addresses medical device safety

In an effort to harmonize the work being done in hospitals and by device manufacturers to address medical device vulnerabilities, Vizient has formed the Medical Device Cybersecurity Task Force. The mission of the task force is to provide …

Effective intrusion detection for the Internet of Things

A group of researchers have devised a self-learning system for detecting compromised IoT devices that does not require prior knowledge about device types or labeled training data to operate. “We propose a novel approach that combines …

Reviews

Review: EU GDPR Documentation Toolkit

Review: Cato Cloud

Review: Securing the Internet of Things

Review: Pwnie Express Pulse

Review: Acunetix 11

Review: Advanced Persistent Security

Review: Data Breach Preparation and Response

Review: The Internet of Risky Things

Review: DNS Security

Review: iStorage diskAshur Pro SSD

Review: The Basics of Cyber Safety

Review: IS Decisions UserLock

Don't miss

Exfiltrating private keys from air-gapped cold wallets

Whitepaper: DNS Threat Intelligence vs. AI Network Security

How many threats hit the mainframe? No one really knows

Solving the dark endpoint problem with increased visibility and control

Effective intrusion detection for the Internet of Things

Orangeworm hackers target healthcare corporations

Largest inhibitor of cyber insurance market growth? Silent cyber risk

FDA plans to improve medical device cybersecurity

Expand vulnerability and risk management programs to eliminate security misconfigurations

GDPR: It’s an issue of transparency

Most dangerous attack techniques, and what’s coming next

IT workforce increasingly overworked and stressed out

Malware news

New targeted surveillance spyware found on Google Play

Cryptominers displace ransomware as the number one threat

Security researchers sinkholed EITest infection chain

Researchers use power lines to exfiltrate data from air-gapped computers

Thousands of WP, Joomla and SquareSpace sites serving malicious updates

RSA Conference 2018

Solving the dark endpoint problem with increased visibility and control

In this podcast recorded at RSA Conference 2018, Richard Henderson, Global Security Strategist at Absolute Software, and Todd Wakerley, EVP of Product Development at Absolute Software, talk about endpoint visibility and control, RSAC happenings, …

Expand vulnerability and risk management programs to eliminate security misconfigurations

Most dangerous attack techniques, and what’s coming next

Photo gallery: RSA Conference 2018 Expo, part 3

Customized IOCs, intelligence and SOC automation for orgs of every size

Newsletters

Subscribe to get regular updates from Help Net Security. The weekly newsletter contains a selection of the best stories, while the daily newsletter highlights all the latest headlines!

Email address:

List Choice Weekly newsletter Daily newsletter

Start

News

Malware

Articles

Reviews

Events

Copyright 1998-2018 by Help Net Security

Read our privacy policy

About us

Advertise

Design by FatDUX

Start

News

Articles

Malware

Reviews

Events

Whitepapers

Newsletters

Copyright 1998-2018 by Help Net Security | Read our privacy policy | About us | Advertise

Design by FatDUX

Stay up-to-date with our weekly information security newsletter