Recently on SearchSecurity
What are best practices for a modern threat management strategy?
Infosec pros need to mitigate traditional cyberthreats, as well anticipate sophisticated, emerging threats. Learn how to build a threat management strategy that helps with both.
More Highlights
- DOJ takes action against Dridex malware group, Evil Corp
The U.S. Justice Department indicts two alleged members of the Russian threat group behind the Dridex banking Trojan, known as Evil Corp, and offers a $5 million bounty.
- How should threat management processes change as risk evolves?
Advances in security tools are changing threat management processes. Learn how infosec pros are utilizing UTM platforms, AI and threat intelligence services to alleviate risk.
- Session cookie mishap exposed HackerOne private reports
A security researcher used a mishandled session cookie to access private HackerOne bug reports with an account takeover attack and earned a bug bounty for their efforts.
Definitions
- Port Scan
A port scan is a series of messages sent by someone attempting to break into a computer to learn which computer network services -- each associated with a "well-known" port number -- the computer provides.
- DMZ (networking)
In computer networks, a DMZ (demilitarized zone), also sometimes known as a perimeter network or a screened subnetwork, is a physical or logical subnet that separates an internal local area network (LAN) from other untrusted networks -- usually the internet.
- quantum supremacy
Quantum supremacy is the experimental demonstration of a quantum computer's dominance and advantage over classic computers by performing calculations that were previously impossible at unmatched speeds.
Browse Security Topics
Data security
In an era when data theft and security breaches are daily occurrences, secure data storage is a key component of a security infrastructure. This introduction to enterprise data security and protection strategies offers advice on how to lock down stored data, data backup and recovery, disk and file encryption and database security.
Recent Definitions
- spyware
Spyware is a type of malicious software -- or malware -- that is installed on a computing device without the end user's knowledge.
- encryption
Encryption is the method by which information is converted into secret code that hides the information's true meaning. The science of encrypting and decrypting information is called cryptography.
- Certified Information Systems Auditor (CISA)
Certified Information Systems Auditor (CISA) is a certification issued by ISACA to people in charge of ensuring that an organization's IT and business systems are monitored, managed and protected; the certification is presented after completion of a comprehensive testing and application process.
Highlights
- What are best practices for a modern threat management strategy?
- How should threat management processes change as risk evolves?
- Session cookie mishap exposed HackerOne private reports
More Data security Topics
- Data loss prevention technology
- Data security and cloud computing
- Data security breaches
- Data security strategies and governance
- Disk and file encryption tools
Identity and access management
Identity and access management tools are integral to maintaining data security in the enterprise. Here you'll find information on passwords, authentication and Web access control. Browse the identity management and access control topics below for the latest news, expert advice, learning tools and more.
Recent Definitions
- identity provider
An identity provider is a system component that is able to provide an end user or internet-connected device with a single set of login credentials that will ensure the entity is who or what it says it is across multiple platforms, applications and networks. When a third-party website prompts end users to log in with their Google Account, for example, Google Sign-In is the identity provider.
- unique identifier (UID)
A unique identifier (UID) is a numeric or alphanumeric string that is associated with a single entity within a given system.
- Single Sign-On (SSO)
Single sign-on (SSO) is a session and user authentication service that permits a user to use one set of login credentials (e.g., name and password) to access multiple applications.
Highlights
- Exposed Firebase databases hidden by Google search
- Key features in building a security operations center
- Zero trust is IT security's best hope for effective defense
More Identity and access management Topics
- Active Directory security
- Biometric technology
- Password management and policy
- PKI and digital certificates
- Privileged access management
- Single-sign on (SSO) and federated identity
- Two-factor and multifactor authentication strategies
- Web authentication and access control
Network security
Recent Definitions
- DMZ (networking)
In computer networks, a DMZ (demilitarized zone), also sometimes known as a perimeter network or a screened subnetwork, is a physical or logical subnet that separates an internal local area network (LAN) from other untrusted networks -- usually the internet.
- spyware
Spyware is a type of malicious software -- or malware -- that is installed on a computing device without the end user's knowledge.
- application whitelisting
Application whitelisting is the practice of specifying an index of approved software applications or executable files that are permitted to be present and active on a computer system.
Highlights
- NSS Labs drops antitrust suit against AMTSO, Symantec and ESET
- The network security tools to combat modern threats
- What are the top network security techniques for modern companies?
More Network security Topics
- DDoS attack detection and prevention
- Endpoint protection and client security
- IoT security issues
- IPv6 security and network protocols security
- Network Access Control technologies
- Network device security: Appliances, firewalls and switches
- Secure remote access
- Software-defined security best practices
- VPN security
Security training and jobs
The information security careers, training and certification resource center provides the latest news, expert advice and learning tools to help you make informed career choices, learn about CISSP, SANS and CISA certification, and the training required for information security jobs.
Recent Definitions
- Certified Information Systems Auditor (CISA)
Certified Information Systems Auditor (CISA) is a certification issued by ISACA to people in charge of ensuring that an organization's IT and business systems are monitored, managed and protected; the certification is presented after completion of a comprehensive testing and application process.
- Computer Emergency Response Team (CERT)
A Computer Emergency Response Team (CERT) is a group of information security experts responsible for the protection against, detection of and response to an organization’s cybersecurity incidents.
- Security Operations Center (SOC)
A security operations center (SOC) is a command center facility for a team of IT professionals with expertise in information security that is responsible for monitoring, analyzing and protecting an organization from cyber attacks.
Highlights
- What is the role of CISO in network security?
- Do you have the right set of penetration tester skills?
- 4 innovative ways to remedy the cybersecurity skills gap
More Security training and jobs Topics
Back to TopInfosec programs
CISOs and information security programs are vital to protecting enterprises against today's cyber threats. In this resource centers, get the latest news and advice about CISO practices, infosec prrogram management and more.
Recent Definitions
- encryption
Encryption is the method by which information is converted into secret code that hides the information's true meaning. The science of encrypting and decrypting information is called cryptography.
- cybersecurity
Cybersecurity is the protection of internet-connected systems -- including hardware, software and data -- from cyberattacks.
- Cybersecurity and Infrastructure Security Agency (CISA)
Cybersecurity and Infrastructure Security Agency (CISA) is a division of the Department of Homeland Security (DHS) that is tasked with the defense of the infrastructure of the internet and the charge to design measures to improve the infrastructure’s resilience and security.
Highlights
- DOJ takes action against Dridex malware group, Evil Corp
- NSS Labs drops antitrust suit against AMTSO, Symantec and ESET
- Privacy compliance rules shaping future IT security processes
More Infosec programs Topics
- Government information security management
- Information security incident response
- Information security laws, investigations and ethics
- Information security policies, procedures and guidelines
- Security automation systems, tools and tactics
- Security industry market trends, predictions and forecasts
- Security vendor mergers and acquisitions
Risk management strategies
A risk management program is a key component for enterprise security. This section offers insight on security risk management frameworks and strategies as well as best practices on conducting effective risk assessments, vulnerability assessments, penetration tests and more.
Recent Definitions
- Port Scan
A port scan is a series of messages sent by someone attempting to break into a computer to learn which computer network services -- each associated with a "well-known" port number -- the computer provides.
- application whitelisting
Application whitelisting is the practice of specifying an index of approved software applications or executable files that are permitted to be present and active on a computer system.
- cybersecurity
Cybersecurity is the protection of internet-connected systems -- including hardware, software and data -- from cyberattacks.
Highlights
- Session cookie mishap exposed HackerOne private reports
- Key features in building a security operations center
- Android Security Rewards program expands, adds $1.5M bounty
More Risk management strategies Topics
- Penetration testing, ethical hacking and vulnerability assessments
- Risk assessments, metrics and frameworks
- Security awareness training and insider threats
Information security threats
Mitigating information security threats is an ongoing battle. Here you'll find information on the latest malware and cyberattacks facing enterprises, from viruses and Trojans to social engineering techniques, as well as news, expert advice and learning tools to address these threats.
Recent Definitions
- spyware
Spyware is a type of malicious software -- or malware -- that is installed on a computing device without the end user's knowledge.
- application whitelisting
Application whitelisting is the practice of specifying an index of approved software applications or executable files that are permitted to be present and active on a computer system.
- botnet
A botnet is a collection of internet-connected devices, which may include PCs, servers, mobile devices and internet of things devices, that are infected and controlled by a common type of malware.
Highlights
- What are best practices for a modern threat management strategy?
- DOJ takes action against Dridex malware group, Evil Corp
- How should threat management processes change as risk evolves?
More Information security threats Topics
- Cyberespionage and nation-state cyberattacks
- Email and messaging threats
- Emerging cyberattacks and threats
- Hacker tools and techniques: Underground hacking sites
- Malware, virus, Trojan and spyware protection and removal
Network threat detection
Get news, tips and expert advice on network threat detection. This resource will cover the latest trends and technology around network threats and threat detection systems and services. Learn how to uncover, analyze and address network vulnerabilities to mitigate the risk of cyberattacks.
Recent Definitions
- messaging security
Messaging security is a subcategory of unified threat management (UTM) focused on securing and protecting an organization’s communication infrastructure.
- Computer Security Incident Response Team (CSIRT)
A Computer Security Incident Response Team (CSIRT) is a group of IT professionals that provides an organization with services and support surrounding the prevention, management and coordination of potential cybersecurity-related emergencies.
- endpoint detection and response (EDR)
Endpoint detection and response (EDR) is a category of tools and technology used for protecting computer hardware devices–called endpoints—from potential threats.
Highlights
- What are best practices for a modern threat management strategy?
- How should threat management processes change as risk evolves?
- What is the role of CISO in network security?
More Network threat detection Topics
- Network intrusion detection and prevention (IDS-IPS)
- Real-time network monitoring and forensics
- SIEM, log management and big data security analytics
- Threat intelligence sharing and services
Platform security
Get the latest news, advice and best practices for platform security. Here you'll find information on vulnerability and threat management, operating system security fundamentals, virtualization security basics, Web security and more.
Recent Definitions
- quantum supremacy
Quantum supremacy is the experimental demonstration of a quantum computer's dominance and advantage over classic computers by performing calculations that were previously impossible at unmatched speeds.
- application whitelisting
Application whitelisting is the practice of specifying an index of approved software applications or executable files that are permitted to be present and active on a computer system.
- WebAuthn API
The Web Authentication API (WebAuthn API) is a credential management application program interface (API) that lets web applications authenticate users without storing their passwords on servers.
Highlights
- How to use and manage BitLocker encryption
- Virtual network security measures to thwart access threats
- USBAnywhere vulnerabilities put Supermicro servers at risk
More Platform security Topics
- Alternative operating system security
- Microsoft Windows security
- Virtualization security issues and threats
Security compliance
Get tips from the experts on security audits, compliance and standards. Advice is offered on data privacy and theft, audit planning and management, how to work with auditors, and compliance with standards, regulations and guidelines such as PCI DSS, GLBA, HIPPA, SOX, FISMA, ISO 17799 and COBIT.
Recent Definitions
- Australian Assistance and Access Bill
The Australian Assistance and Access Bill is legislation introduced and passed in 2018 by the Parliament of Australia to support law enforcement and security agencies in their ability to collect evidence from electronic devices.
- Single Sign-On (SSO)
Single sign-on (SSO) is a session and user authentication service that permits a user to use one set of login credentials (e.g., name and password) to access multiple applications.
- double blind test
Double blind test is an experiment where both the subject and observer are unaware that the exercise in practice is a test. Double blind testing is referred to as the gold standard of testing.
Highlights
- Privacy compliance rules shaping future IT security processes
- The top 3 use cases for AI endpoint security tools
- CrowdStrike: Incident response times still too long
More Security compliance Topics
- Data privacy issues and compliance
- HIPAA
- IT security audits and audit frameworks
- PCI Data Security Standard
Software security
Get advice on software application security. Here you'll find information on software vulnerability and threat management, application attacks, software security tools, application firewalls, software patching and more.
Recent Definitions
- debugging
Debugging, in computer programming and engineering, is a multistep process that involves identifying a problem, isolating the source of the problem, and then either correcting the problem or determining a way to work around it.
- Web application firewall (WAF)
A web application firewall (WAF) is a firewall that monitors, filters and blocks data packets as they travel to and from a website or web application.
- application whitelisting
Application whitelisting is the practice of specifying an index of approved software applications or executable files that are permitted to be present and active on a computer system.
Highlights
- Exposed Firebase databases hidden by Google search
- ZombieLoad v2 disclosed, affects newest Intel chips
- Application Guard to block malicious attachments in Office 365
More Software security Topics
- Application attacks (buffer overflows, cross-site scripting)
- Application firewall security
- Database security
- Microsoft Patch Tuesday and patch management
- Open source security tools and software
- Productivity apps and messaging security
- Secure SaaS: Cloud application security
- Secure software development
- Social media security risks
Web security tools
Get news and expert advice on Web security tools and threats. Find out about current threats against Web applications, web security tools, SSL and TLS encryption, Web services, SOA, web access control, web server security, URL filtering, content filtering and browser security.
Recent Definitions
- Web application firewall (WAF)
A web application firewall (WAF) is a firewall that monitors, filters and blocks data packets as they travel to and from a website or web application.
- Web application (Web app)
A Web application (Web app) is an application program that is stored on a remote server and delivered over the Internet through a browser interface.
- digital signature
A digital signature is a mathematical technique used to validate the authenticity and integrity of a message, software or digital document.
Highlights
- Comparing Diffie-Hellman vs. RSA key exchange algorithms
- SSL certificate abuse drives growing number of phishing attacks
- Firefox bug is enabling attackers to freeze out users
More Web security tools Topics
- Web application and API security best practices
- Web browser security
- Web server threats and application attacks
Wireless and mobile security
In this guide, get advice on tools, software and tactics for wireless network security and wireless mobile device security. Learn how to build and maintain a secure wireless LAN, how to protect mobile devices, and how to successfully configure, implement and manage a solid wireless network.
Recent Definitions
- spyware
Spyware is a type of malicious software -- or malware -- that is installed on a computing device without the end user's knowledge.
- GPS jamming
GPS jamming is the process of using a frequency transmitting device to block or interfere with radio communications.
- man-in-the-disk (MITD) attack
Man-in-the-disk (MITD) is an attack vector that allows an intruder to intercept and potentially alter data as it moves between Android external storage and an installed app.
Highlights
- Android Security Rewards program expands, adds $1.5M bounty
- What's the answer for 5G security?
- Check Point: Qualcomm TrustZone flaws could be 'game over'
More Wireless and mobile security Topics
- BYOD and mobile device security best practices
- Mobile application security best practices
- Mobile security threats and prevention
- Wireless network security