Infosecurity Opinions
The Long Goodbye
Much can be done to ensure the restriction to physical and remote access of soon to leave employees
How Security Pros Can Stay Ahead in the Ever-Changing Digital World
How can we put our trust in inherently untrusted environments? This is the question that businesses repeatedly ask themselves, as they navigate a digital world that is increasingly connected, distributed and virtualized, says John Grimm
How to Choose the Right Web Vulnerability Scanner
When deploying a web vulnerability scanner (WVS), most users take into account the price, and most providers take into consideration the features
Thinking Continuous – A New Mindset for SCADA Security
SCADA systems are ever more open to security threats – Amol Sarwate explains how to mitigate the risks
Third-Party Android App Stores Aren’t All Bad News
Malware may lurk in some third-party app stores, but if you’re smart about where you shop, you do have safe choices, writes Noah Gamer
Incident Response Tabletop Exercises for Beginners
As the cost of breaches of electronically stored information continue to afflict companies, the need to be prepared for a potential cybersecurity incident is more important than ever. This is especially true from a financial perspective.
How to Prevent Employees from Compromising your Data
Mav Turner explains how to protect your business from itself
In Protecting Against Bad Bot Attacks, Knowing Where to Look is Important
Think bad bots on the internet are just a nuisance and nothing more? Think again, writes Rami Essaid
Paint it Black: The Role of Taint Detection in Java Application Security
RASP is changing the negative perception of data tainting as a tool for application security, writes John Matthew Holt
Corporate Cybersecurity: Complacent Parents, Kids In Charge
Security efforts are being hampered by business-immature practitioners and stand-offish management, writes Jason Polancich
Why You Need to Understand your App Exposure
An often-overlooked key to good security, says Sumir Karayi, is understanding your application estate and managing it appropriately
Can Certification Make a Difference to Organizations?
Panagiotis Fiampolis, R&D director at PEOPLECERT, discusses why it is time for organizations to look at certification in cybersecurity
How to Improve Access Security in Healthcare
Data security is a high priority in the healthcare industry, where correct access rights for data are essential, says Dean Wiech
Demystifying Threat Intelligence
‘Threat intelligence’ could be the answer to defeating dangerous cyber-threats. But what does it really mean? asks Adam Schoeman
Go, Slow and No: Bringing DevOps Speed to IT Security
As DevOps speeds make their way into the security cycle, it is likely new security titles will appear
Are Keyless Car Manufacturers Clueless About Disclosure?
Convenience always seems to come at a cost and never more so than with the keyless car.
Security Pros Must Join Forces to Combat the Internet of Evil Things
Vulnerable IoT devices and low-cost, plug-and-play cyber-espionage tools represent an emerging threat vector: the ‘internet of evil things’ (IoET). Dave Porcello argues infosec pros need to better understand this threat and collectively develop a standardized framework and taxonomy to enable IoET information exchange
Superfish: One Step Closer to Sinking our Boat
It is clear that the system of trust established by keys and certificates is under attack
Why CISOs Should Care Who’s Attacking their Firm
Chief information security officers and their teams should collect information on who's attacking their firm, rather than just how, says Jeremy Bergsman
The Cybersecurity Challenges Facing State and Local Governments
IT departments are focused like never before on keeping their networks and data secure, but they face several critical challenges, says Paul Lipman
