darkreading.comDark Reading | Security | Protect The Business - ...

Informa Dark Reading is part of the Informa Tech Division of Informa PLC Informa PLC About us Investor relations Talent This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726. Database Security Authentication Mobile Privacy Compliance Identity & Access Management Security Monitoring Advanced Threats Insider Threats Vulnerability Management Network Computing Dark Reading Advertise About Us The Edge Authors Slideshows Video Reports White Papers Events Black Hat Attacks/Breaches App Sec Cloud Endpoint Mobile Perimeter Risk Operations Analytics Vulns/Threats Threat Intelligence Careers and People IOT About Us Advertise Facebook Twitter LinkedIn RSS Follow DR: Authors Slideshows Video Tech Library University Security Now Calendar Black Hat News Omdia Research THE EDGE Analytics Attacks / Breaches App Sec Careers & People Cloud Endpoint IoT Operations Perimeter Risk Threat Intelligence Vulns / Threats Top Stories 8 Cybersecurity Themes to Expect at Black ... 11 Security Tools to Expect at the Black ... Vulnerable Invisible Salamanders and You: ... Q&A: How Systemic Racism Weakens ... COVID-19: Latest Security News & Commentary News & Commentary 2019 Breach Leads to $80 Million Fine for Capital One Quick Hits The fine is part of a series of steps required by the Office of the Comptroller of the Currency. By Dark Reading Staff , 8/6/2020 0 comments | Read | Post a Comment A Real-World Tool for Organizing, Integrating Your Other Tools News Omdia Cybersecurity Accelerator analyst Eric Parizo describes the value overwhelmed security managers may find in a SPIF. By Dark Reading Staff , 8/6/2020 0 comments | Read | Post a Comment Four Rules and Three Tools to Protect Against Fake SaaS Apps Commentary Here's how to blunt the twinned forces of shadow IT and counterfeit apps and keep your data safe. By Dmitry Dontov Chief Technology Officer, Spin Technology, 8/6/2020 0 comments | Read | Post a Comment Dark Reading Video News Desk Returns to Black Hat News UPDATED: Coming to you prerecorded from in front of carefully arranged bookcases around the world ...! By Sara Peters Senior Editor at Dark Reading, 8/6/2020 0 comments | Read | Post a Comment Energy Market Manipulation with High-Wattage IoT Botnets News Attackers that can compromise enough products such as smart ACs and heaters can tweak power demand in subtle ways for financial gain or to hurt market players, researchers at Black Hat say. By Jai Vijayan Contributing Writer, 8/6/2020 0 comments | Read | Post a Comment Ripple20: More Vulnerable Devices Identified Quick Hits Security researchers find 34 additional vendors, and 47 devices, affected by the widespread Ripple20 vulnerabilities. By Dark Reading Staff , 8/6/2020 0 comments | Read | Post a Comment 3 Tips For Better Security Across the Software Supply Chain Commentary It may sound look intimidating, but with a few tweaks to tools and processes already in use, it's not hard to get a head start on improving security posture of the software supply chain. By Matthew Lewinski Distinguished Engineer at Quest Software, 8/6/2020 0 comments | Read | Post a Comment What a Security Engineer & Software Engineer Learned by Swapping Roles News A security engineer and infrastructure engineer with Salesforce share lessons learned from their professional role reversal, and advice for people on both teams. By Kelly Sheridan Staff Editor, Dark Reading, 8/5/2020 0 comments | Read | Post a Comment Tales from the Trenches Show Security Issues Endemic to Healthcare News The CISO for Indiana University Health says simple policies, good communication, and strong authentication go much further than vendor tools in solving security problems. By Robert Lemos Contributing Writer, 8/5/2020 0 comments | Read | Post a Comment Supporting Women in InfoSec News Maxine Holt, research director from Omdia, explains why the time is right for women to step into more cybersecurity jobs now. By Dark Reading Staff , 8/5/2020 0 comments | Read | Post a Comment Developing Community for Woman Infosec Pros in India News Vandana Verma tells us how women in India are finding support, education and love of cybersecurity through the growing InfosecGirls community. By Dark Reading Staff , 8/5/2020 0 comments | Read | Post a Comment What to Tell Young People of Color About InfoSec Careers News CEO and founder of Revolution Cyber Juliet Okafor and Baker Hughes Director of Global OT Security Programs Paul Brager talk about the unique lessons and hard truths they provide when mentoring young black cybersecurity professionals. By Dark Reading Staff , 8/5/2020 0 comments | Read | Post a Comment SynerComm Reboots a Security Staple with 'Continuous' Pen Testing News SPONSORED CONTENT: Penetration testing has evolved well beyond a couple guys you hire to try and break into your network, according to SynerComm's Brian Judd. In addition to a service that offers round-the-clock pen testing, SynerComm also provides purple team testing, effectively splitting the difference with red- and blue-team exercises. By Terry Sweeney Contributing Editor, 8/5/2020 0 comments | Read | Post a Comment Pen Testers Share the Inside Story of Their Arrest and Exoneration News Coalfire's Gary De Mercurio and Justin Wynn share the inside story of their infamous arrest last year while conducting a contracted red-team engagement in an Iowa courthouse -- and what it took to clear their names. By Dark Reading Staff , 8/5/2020 0 comments | Read | Post a Comment Synopsys: Why Security-Minded Companies Are Transitioning to DevSecOps News SPONSORED: For too long, developers have had to weigh the tradeoffs between software security and feature development. But as DevSecOps continues to gain momentum over application security, organizations realize that adopting security in software development needn't be a drag on productivity, says Tim Mackey from the Synopsys Cybersecurity Research Center. By Terry Sweeney Contributing Editor, 8/5/2020 0 comments | Read | Post a Comment HealthScare: Prioritizing Medical AppSec Research News Seth Fogie, information security director at Penn Medicine, explains which healthcare app vulnerabilities really matter in the day-to-day business of providing patient care. By Dark Reading Staff , 8/5/2020 0 comments | Read | Post a Comment A Most Personal Threat: Implantable Medical Devices News Alan Michaels, director of the Electronic Systems Lab at the Virginia Tech Hume Center, explains why implanted medical devices could pose a threat to secure communication facilities. By Dark Reading Staff , 8/5/2020 0 comments | Read | Post a Comment How An Electronic Medical Record System Flaw Exacerbated the Opioid Crisis News Mitch Parker, CISO of Indiana University Health, explains how healthcare appsec vulnerabilities and abuse can go undetected in small medical centers -- at great cost. By Dark Reading Staff , 8/5/2020 0 comments | Read | Post a Comment A Paramedic's Guide to Cybersecurity: Video News In this video segment, the Dark Reading News Desk speaks to several guests about healthcare cybersecurity. We begin with Rich Mogull, infosec pro and paramedic, for a discussion about what lessons cybersecurity can learn from emergency medical services and the parallels that already exist. By Kelly Sheridan Staff Editor, Dark Reading, 8/5/2020 0 comments | Read | Post a Comment Voatz Delivers Multilayered Security to Protect Electronic Voting News SPONSORED CONTENT: While electronic voting has been plagued by fears of tampering or fraud, Voatz is looking to make the process more transparent and auditable, according to company founder Nimit Sawhney. He offers learning points from three recent pilots that highlight how governments can improve the integrity and better protect the voting process and its data. By Terry Sweeney Contributing Editor,...