Security tech must evolve. | Apple's latest updates included two zero-day flaws.
Follow Dark Reading:
 February 03, 2022
LATEST SECURITY NEWS & COMMENTARY
8 Security Dinosaurs and What Filled Their Footprints
Security technology has to evolve as new threats emerge and defenses improve. Here is a look back at the old breeds that are dying out.
More Security Flaws Found in Apple's OS Technologies
Apple's latest updates included fixes for two zero-day flaws, several code execution bugs, and vulnerabilities that allowed attackers to bypass its core security protections.
Disclosure, Panic, Patch: Can We Do Better?
Companies struggle to understand the extent to which they are affected by vulnerabilities in open source software, but security specialists and maintainers are striving to secure the ecosystem.
The Zero-Trust Timer Is on for Federal Agencies — How Ready Are They?
A new study coincides with OMB’s finalization of its zero-trust strategy through 2024.
Why Security Pros Are Frustrated With Cloud Security
As companies shift more operations to the cloud, a shortfall in security talent and too much security data wastes more than half of the time spent on security issues, a survey finds.
Log4j Proved Public Disclosure Still Helps Attackers
Disclosure also puts organizations in the awkward position of trying to mitigate a vulnerability without something like a vendor patch to do the job.
Crypto Agility: Solving for the Inevitable
The advent of viable quantum computers will threaten today’s encryption standards, which are the basis of Internet security. Cryptographic agility is the key to post-quantum computing security, although implementing it will be a formidable challenge.
The Real-World Impact of the Global Cybersecurity Workforce Gap on Cyber Defenders
The effect is nuanced — and fundamental to cyber defense for organizations and nations.
MORE NEWS / MORE COMMENTARY
HOT TOPICS
7 Privacy Tips for Security Pros
How best to integrate privacy into your organization's security program.

Critical Log4j Vulnerabilities Are the Ultimate Gift for Cybercriminals
It's important to assume you have been vulnerable for months if not years, and to plan — and patch — accordingly.

Complexity vs. Capability: How to Bridge the Security Effectiveness Gap
Consolidation and automation are among the strategies for balancing security complexity and capability.

MORE
EDITORS' CHOICE

Phishing Simulation Study Shows Why These Attacks Remain Pervasive
Email purportedly from human resources convinced more than one-fifth of recipients to click, the majority of whom did so within an hour of receiving the fraudulent message.
LATEST FROM THE EDGE

The Looming CISO Mental Health Crisis — and What to Do About It, Part 1
The next big threat to corporate security may not be a new strain of malware or innovative attacker tactics, techniques, and processes. It may be our own mental health.
LATEST FROM DR TECHNOLOGY

Security Service Edge Boosters Form New Forum to Encourage Adoption
IT leaders who formed the SSE Forum say the technology offers cloud-forward security for modern workplaces.
Tech Resources
ACCESS TECH LIBRARY NOW

  • Best Practices for Extending Identity & Access Management to the Cloud

    Managing and securing user credentials was never easy, and now that they are scattered across cloud platforms, software-as-a-service tools, mobile devices, and on-premises systems, the task has become even more complex. With adversaries increasingly targeting their attention to credential theft, ...

  • 2021 DDoS Attack Trends: Year in Review

    2021 was an exceptionally busy year for attackers. From some of the largest volumetric DDoS attacks launched by historically large swarms of botnets, to massive ransomware and ransom DDoS attack campaigns that interrupted aspects of critical infrastructure around the world, DDoS ...
MORE WEBINARS
FEATURED REPORTS
MORE REPORTS
CURRENT ISSUE

How Enterprises Are Assessing Cybersecurity Risk in Today's Environment
DOWNLOAD THIS ISSUE SUBSCRIBE NOW
BACK ISSUES | MUST READS | TECH DIGEST
PRODUCTS & RELEASES
Cato Networks Delivers Instant Visibility and Control of Cloud Application Data Risk
INKY Completes Email Security Offering With Launch of Outbound Mail Protection
WhiteSource Threat Report Reveals Massive Uptick In Cyberattacks Related To JavaScript npm
Foresite Cybersecurity Acquires Cyber Lantern
Nucleus Security Forms Strategic Partnership with Mandiant
Vectra Acquires Siriux Security Technologies to Extend Leadership in Identity and SaaS Threat Management
Digital Shadows Launches New Vulnerability Intelligence Module
Ping Identity Launches PingOne DaVinci
ShiftLeft CORE 'Velocity Update' Streamlines Triage, Automates Build Security Controls
Qualys Adds Advanced Remediation Capabilities to Minimize Vulnerability Risk
Mastercard Launches Global Cybersecurity Alliance Program to Further Secure The Digital Ecosystem
Coalition Launches Executive Risks Products With Personalized Risk Assessment
NortonLifeLock Introduces Social Media Monitoring
MORE PRODUCTS & RELEASES
Dark Reading Weekly
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To update your profile, change your e-mail address, or unsubscribe, click here.
To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here.
Thoughts about this newsletter? Give us feedback.
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our Privacy Statement.
© 2022  |  Informa Tech  |  Privacy Statement  |  Terms & Conditions  |  Contact Us