Apache Struts 2: A Zero-Day Quick Draw
It took fraudsters less than 24 hours after the disclosure of a previously unknown Apache Struts 2 vulnerability to develop a Python script to exploit it.
Zero-Day Malware Poses a Growing Threat
The increasing sophistication of cybercriminals has led to a significant surge in zero-day malware, according to a recent report.
It’s the Simple Things: Getting the Basics Right Can Solve Complex Security Issues
Instead of concentrating on zero-day threats, security teams should focus on preventing common, simple attacks to solve complex security issues.
Connecting the Dots: Experiences in Real-Life IT Security Incident Handling
A recently published report describes attack scenarios, the circumstances leading to an incident and the countermeasures that could have prevented it.
Building a Cyberattack: Social Engineering, Zero-Day Vulnerabilities and More
Many cybercriminals today use social engineering as a means of carrying out attacks. In fact, this method is among the most popular attack types.
All Hands to Battle Stations! The Enterprise IT Is Under Attack!
No, this is not the start of a sci-fi story; it is the reality that enterprise IT security defenders face in 2014.
Massive Adobe Breach Puts Organizations at Risk of Zero-Day Exploits
Customers are at significant risk due to a recently reported Adobe breach.
FBI Warns of Increase in Spear-Phishing Attacks
Last week, the FBI issued a warning about an increase in spear-phishing attacks targeting multiple industry sectors.
Blacklisting, White-listing and the Way Forward: Comments on the Schneier-Ranum Face-Off
Will white-listing or blacklisting better protect your enterprise? We weigh in on the ongoing debate.
Can You Get Rid of Java?
Java suffers the most malware infections of any programming language and recent zero-day exploits now warrant removing it from business applications.