Features

Features

• ICS kill chain: Adapting the cyber kill chain to ICS environments

  As IT/OT convergence continues to gain traction, industrial control system security cannot be ignored. Performing pen tests based on the ICS Kill Chain can help.  Continue Reading

• An intro to the IDMZ, the demilitarized zone for ICSes

  Setting up an IDMZ -- a demilitarized zone between enterprise and industrial networks -- can prevent operational environments from becoming compromised by IT threats.  Continue Reading

• Reinforce industrial control system security with ICS monitoring

  Monitoring an industrial control system environment isn't that different from monitoring a traditional IT environment, but there are some considerations to keep in mind.  Continue Reading

• Why medical device vulnerabilities are hard to prioritize

  Vulnerabilities in critical medical devices could lead to loss of life. But opinions are mixed on how serious the risk is to patient safety and how best to address the flaws.  Continue Reading

• Publicly disclosed U.S. ransomware attacks in 2023

  TechTarget Editorial's ransomware database collects public disclosures, notifications and confirmed reports of attacks against U.S. organizations each month.  Continue Reading

• SMS pumping attacks and how to mitigate them

  Online forms that use SMS can be costly to organizations if they are vulnerable to SMS pumping attacks. Use the following methods to mitigate or prevent this fraud-based attack.  Continue Reading

• How to apply and edit Wireshark display filters

  Wireshark display filters enable users to narrow the scope of a network traffic scan. Use this tutorial to apply and edit display filters to make detailed network sniffing easier.  Continue Reading

• Customize workflows with Wireshark profiles

  Wireshark has a variety of uses, which is why creating multiple personalized Wireshark profiles is important. Learn about Wireshark profiles, how to share them and more.  Continue Reading

• Inside the PEIR purple teaming model

  Want to try purple team exercises but aren't sure how to do so? Try the 'Prepare, Execute, Identify and Remediate' purple teaming model.  Continue Reading

• Understanding purple teaming benefits and challenges

  Blue teams and red teams are coming together to form purple teams to improve their organization's security posture. What does this mean for the rivals? And how does it work?  Continue Reading

• No relief in sight for ransomware attacks on hospitals

  Despite being off limits for some hackers, hospitals continue to be lucrative targets for ransomware groups because of their valuable data and higher rate of paying ransoms.  Continue Reading

• How to configure Windows privacy settings with Intune

  To personalize UX, Windows devices aren't shy about collecting user data. This isn't ideal for enterprise security. Discover how to lock down privacy settings with Intune.  Continue Reading

• Windows security tips for the enterprise

  Securing a Windows environment is no easy feat. Read up on low-hanging fruit to quickly address, as well as top tips from two security practitioners to get started.  Continue Reading

• 20 companies affected by major ransomware attacks in 2021

  Between hefty ransom demands, major disruptions and leaked data, 2021 saw major ransomware activity across companies and industries.  Continue Reading

• 11 cybersecurity predictions for 2023

  Analysts and experts have looked into their crystal balls and made their cybersecurity predictions for 2023. Is your organization prepared if these predictions come true?  Continue Reading

• After the CISO role: Navigating what comes next

  Former chief information security officers may have numerous career options available but no clear path forward. Here's how to navigate life after the CISO role.  Continue Reading

• 12 types of wireless network attacks and how to prevent them

  From packet sniffing and rogue access points to spoofing attacks and encryption cracking, learn about common wireless network attacks and how to prevent them.  Continue Reading

• Understanding malware analysis and its challenges

  Discover what to expect in a malware analyst career, from the types of malware you'll encounter to important tools to use to difficulties that arise for those new to the field.  Continue Reading

• Why is malware analysis important?

  Malware continues to plague all organizations, causing data loss and reputational damage. Discover how malware analysis helps protect companies from such attacks.  Continue Reading

• How to prevent SQL injection with prepared statements

  One of the top defenses against SQL injection is prepared statements. In this book excerpt, learn what prepared statements are and how to extend their defense.  Continue Reading

• How to maintain security with an understaffed security team

  Unsurprisingly, many companies function without a complete security team. Security tasks often fall to others in the organization. Here's some advice for stand-in security members.  Continue Reading

• WLAN security: Best practices for wireless network security

  Follow these wireless network security best practices to ensure your company's WLAN remains protected against the top threats and vulnerabilities.  Continue Reading

• 5 ways to overcome multifactor authentication vulnerabilities

  Improve the resiliency of multifactor authentication by giving users more information, making default settings more secure, hiding secrets and more.  Continue Reading

• How to build a shadow IT policy to reduce risks, with template

  With a shadow IT policy in place, organizations reduce security risks from unapproved applications and services that employees introduce independently.  Continue Reading

• Advice for beginner computer forensic investigators

  For those interesting in becoming a computer forensics investigator, learn about the career and what to expect, as well as why digital evidence is the most volatile evidence.  Continue Reading

• Enterprise ransomware preparedness improving but still lacking

  An Enterprise Strategy Group survey found enterprises are making strides in ransomware preparedness, but work remains to prevent and mitigate attacks.  Continue Reading

• Top 10 pen testing interview questions with answers

  Are you pursuing a career in pen testing? Prepare with this list of 10 pen testing interview questions and answers created by three security experts.  Continue Reading

• Top IT security manager interview questions

  Are you looking for a leadership role in cybersecurity? Three security experts offer their advice on how to answer the most common IT security manager interview questions.  Continue Reading

• Why Kali Linux is the go-to distribution for penetration testing

  Discover why penetration testers prefer to use the Kali Linux distribution for offensive security, from collecting useful tools together to being usable from multiple devices.  Continue Reading

• 7 steps for implementing zero trust, with real-life examples

  More than a decade since the term's inception, zero-trust security is still much easier said than done. Here's how to get started.  Continue Reading

• LinkedIn scams, fake Instagram accounts hit businesses, execs

  Even the most secure business and executive social media accounts that have strong passwords and multifactor authentication are vulnerable to cloning schemes.  Continue Reading

• Top zero-trust certifications and training courses

  Most organizations are expected to implement zero trust in the next few years. Learn about zero-trust certifications and trainings that can help prepare your security team.  Continue Reading

• How to prepare for the CompTIA CASP+ exam

  Are you pursuing the CompTIA Advanced Security Practitioner certification? The author of a CASP+ cert guide offers advice on how to prepare for the exam.  Continue Reading

• What is the future of cybersecurity?

  Cybersecurity is top of mind for businesses and their boards amid a relentless rise in cyber threats. What does the future of cybersecurity look like?  Continue Reading

• What is data security? The ultimate guide

  Dig into the essentials of data security, from must-have tools, technologies and processes to best practices for keeping data safe.  Continue Reading

• Is ethical hacking legal? And more ethical hacking advice

  Is ethical hacking legal? Learn about the legality of ethical hacking, why it's important, its benefits and what organizations should look for when hiring an ethical hacker.  Continue Reading

• Ethical hacking: How to conduct a Sticky Keys hack

  Physical security is often overlooked by cybersecurity teams. Learn about physical cybersecurity attacks in step-by-step instruction on how to conduct a Windows Sticky Keys hack.  Continue Reading

• Importance of enterprise endpoint security during a pandemic

  Enterprises often focus greatly on communications security and less on endpoint security. Review the importance of enterprise endpoint security and best practices to implement it.  Continue Reading

• Cybersecurity lessons learned from COVID-19 pandemic

  Cybersecurity lessons companies learn from the COVID-19 pandemic include having work-from-home preparations and developing disaster recovery and business continuity plans.  Continue Reading

• The importance of data security in the enterprise

  Three industry experts discuss the criticality of data security in the enterprise, including the significance of data breaches and compliance regulations.  Continue Reading

• How to secure data at rest, in use and in motion

  With internal and external cyber threats on the rise, check out these tips to best protect and secure data at rest, in use and in motion.  Continue Reading

• VMDR: Inside vulnerability management, detection and response

  VMDR offers automated asset identification, threat prioritization and patch management. But do companies need another vulnerability management tool?  Continue Reading

• Cyber-war game case study: Preparing for a ransomware attack

  In this real-world cyber-war game case study, an exercise on ransomware preparedness helped a company discover shortcomings in its incident response plan.  Continue Reading

• Clearing up cybersecurity architecture confusion, challenges

  There's no lack of cybersecurity frameworks, but there is a lack of resources to help small and midsize organizations build a cybersecurity architecture -- until now.  Continue Reading

• 4 criteria to measure cybersecurity goal success

  Measuring the success of cybersecurity goals is challenging because they are components of larger goals and often probabilistic rather than deterministic.  Continue Reading

• Top 7 types of data security technology

  These seven types of data security technologies -- from encryption to masking -- will better protect customer and enterprise data from inappropriate and unauthorized access and use.  Continue Reading

• How to write a cybersecurity job posting

  Is your organization struggling to find cybersecurity talent? Your job descriptions could be the problem. Learn how to write a good cybersecurity job posting.  Continue Reading

• A 'CISO evolution' means connecting business value to security

  As cybersecurity has changed, so has the CISO role. 'The CISO Evolution: Business Knowledge for Cybersecurity Executives' aims to help security leaders succeed in the C-suite.  Continue Reading

• How to find your niche in cybersecurity

  It's difficult to navigate a career in cybersecurity, especially with all the varying roles. A veteran CISO offers advice on how to find your niche in the security industry.  Continue Reading

• How to determine out-of-scope bug bounty assets

  What happens when a security researcher discovers a bug in an out-of-scope asset? Learn how to handle bug bounty scope in this excerpt from 'Corporate Cybersecurity.'  Continue Reading

• An enterprise bug bounty program vs. VDP: Which is better?

  Creating a bug bounty or vulnerability disclosure program? Learn which option might prove more useful, and get tips on getting a program off the ground.  Continue Reading

• Publicly disclosed U.S. ransomware attacks database

  Each day SearchSecurity looks for every publicly available instance of a ransomware attack in the U.S. and compiles this data into a list to keep readers updated on recent threats.  Continue Reading

• 3 types of PKI certificates and their use cases

  Public key infrastructure helps authenticate senders via cryptography and digital certificates. Learn about three types of PKI certificates and their use cases.  Continue Reading

• Using SSH tunneling for good and evil

  Secure Shell tunneling takes the secure application protocol to the next level for bypassing firewalls and creating secure connections everywhere.  Continue Reading

• How ransomware kill chains help detect attacks

  Reconstructing cyber attacks is a key step in incident response. Learn how ransomware kill chains can help security teams detect and mitigate the consequences of an attack.  Continue Reading

• How to improve cyber attack detection using social media

  Social media has cybersecurity pros and cons. One benefit is that it can help improve cyber attack detection. These four real-world examples show how.  Continue Reading

• Implementing wireless security in the enterprise

  Learn how to properly secure your enterprise wireless network while considering UX, zero trust and commonly overlooked architectural mistakes.  Continue Reading

• How to design architecture for enterprise wireless security

  Learn about a five-phase design methodology that will help your company plan for and create an enterprise wireless security architecture.  Continue Reading

• Apple, Microsoft, Google expand FIDO2 passwordless support

  Achieving true passwordless experiences begins with companies working together to adopt standards that enable customers to use multiple devices seamlessly, regardless of OS.  Continue Reading

• Case study: Scaling DevSecOps at Comcast

  Comcast's DevSecOps transformation started small but quickly gained steam, resulting in 85% fewer security incidents in production. Learn more in this case study.  Continue Reading

• Cyber-war gaming: A cybersecurity tabletop exercise

  Based off military war games, cyber-war gaming examines a company's security posture. Learn how it works, the readiness needed, who should be involved and more.  Continue Reading

• Do phishing simulations work? Sometimes

  Phishing simulations are becoming increasingly popular to pinpoint which employees fall victim to scams, but their effectiveness and morality have been called into question.  Continue Reading

• Case study: Why it's difficult to attribute nation-state attacks

  If two attacks look similar, don't assume they're from the same attacker. It's difficult to attribute nation-state attacks, as evidenced by the notorious 2016 Odinaff malware.  Continue Reading

• Tips for using a threat profile to prevent nation-state attacks

  Is your organization concerned about state-sponsored attacks? Threat profiling can help prevent nation-state attacks. Get advice on how to create an effective threat profile.  Continue Reading

• How to conduct Linux privilege escalations

  Learn how to conduct Linux kernel exploitation with Metasploit and manually, as well as how to identify vulnerabilities on Linux using enumeration scripts.  Continue Reading

• Why companies should focus on preventing privilege escalation

  If attackers can elevate privileges once inside a system, their access can be unlimited. Discover common privilege escalation techniques and how to mitigate them.  Continue Reading

• An introduction to binary diffing for ethical hackers

  Binary diffing is a useful tool in the ethical hacker's arsenal. This excerpt teaches aspiring penetration testers and red teamers how to get started.  Continue Reading

• Unethical vulnerability disclosures 'a disgrace to our field'

  The cybersecurity field needs more people who use their powers for good, the lead author of Gray Hat Hacking: The Ethical Hacker's Handbook, Sixth Edition says.  Continue Reading

• Study attests: Cloud apps, remote users add to data loss

  A study from ESG found many customers attribute data loss and compliance troubles to the race to put apps in the cloud and accommodate remote workers amid the pandemic.  Continue Reading

• How secure are one-time passwords from attacks?

  Adding an additional authentication layer makes it harder for attackers to get into accounts, but not all authentication factors are equal -- especially when it comes to OTPs.  Continue Reading

• How effective is security awareness training? Not enough

  Annual security awareness trainings do little to improve security. Learn why they aren't helpful, and discover steps to improve your organization's training program.  Continue Reading

• How to implement OpenID Connect for single-page applications

  The OpenID Connect authentication protocol can be used to secure a variety of applications. This excerpt teaches developers how it works with single-page applications.  Continue Reading

• How to use OpenID Connect for authentication

  OpenID Connect has become a trusted protocol to connect with identity providers. Explore how to use it for IAM, common threats to be aware of and how to connect to multiple IdPs.  Continue Reading

• The importance of HR's role in cybersecurity

  HR teams must keep security top of mind when hiring and onboarding employees and enforcing data privacy policies. Get advice on the procedures and mechanisms to do so.  Continue Reading

• Why CISOs need to understand the business

  While CISOs need technical skills, business skills help them push their team's agenda and get the support and funding they need to protect their company.  Continue Reading

• Cryptocurrency cyber attacks on the rise as industry expands

  Consumers, businesses and governments are finding new ways to use cryptocurrency, but a recent string of cyber attacks has highlighted security risks and shortcomings.  Continue Reading

• Use digital identity proofing to verify account creation

  Validating users during account creation with identity proofing helps prevent data breaches but isn't without challenges. Discover how it works and concerns to address.  Continue Reading

• How to stop malicious or accidental privileged insider attacks

  How many permissions or privileges a user has will affect how big of an insider threat they are. Discover the issues surrounding privileged users and how to curtail these threats.  Continue Reading

• Tips for creating a cybersecurity resume

  Resumes help candidates leave an impression on potential employers. But did you know one resume often isn't enough? Learn this and other tips for creating a cybersecurity resume.  Continue Reading

• How to manage imposter syndrome in cybersecurity

  The imposter syndrome phenomenon is readily apparent in cybersecurity. Learn how to manage it, along with mishaps to avoid during the job hunt and other career advice.  Continue Reading

• Implement API rate limiting to reduce attack surfaces

  Rate limiting can help developers prevent APIs from being overwhelmed with requests, thus preventing denial-of-service attacks. Learn how to implement rate limiting here.  Continue Reading

• API security methods developers should use

  Developers can reduce the attack surface by implementing security early in the API development process and knowing methods to secure older APIs that can't be deprecated.  Continue Reading

• Pros and cons of manual vs. automated penetration testing

  Automated penetration testing capabilities continue to improve, but how do they compare to manual pen testing? Get help finding which is a better fit for your organization.  Continue Reading

• A day in the life of a cybersecurity manager

  The role of a cybersecurity leader is often misunderstood. Experience a day in the life of a cybersecurity manager with this breakdown of a security leader's typical schedule.  Continue Reading

• Top cybersecurity leadership challenges and how to solve them

  Security isn't always a top business priority. This creates challenges for the cybersecurity managers and teams that hope to integrate security into their company's agenda.  Continue Reading

• How to prepare for malicious insider threats

  Stopping malicious insider threats is just as important as preventing external ones. Uncover what to look for and strategies to prevent insider threats before they cause damage.  Continue Reading

• Include defensive security in your cybersecurity strategy

  Is your company's cybersecurity strategy comprehensive enough to protect against an expanding threat landscape? Learn how developing defensive security strategies can help.  Continue Reading

• 4 data privacy predictions for 2022 and beyond

  Data privacy will continue to heat up in 2022. From regulations to staffing to collaboration, will these data privacy predictions come to fruition in the next 12 months and beyond?  Continue Reading

• Nmap use cases, tools and product comparisons

  Nmap is historically known for port scanning, but thanks to several subprojects, its use cases have expanded. Learn how Nmap is used, along with other comparable tools.  Continue Reading

• How to use Nmap to scan specific ports

  One of Nmap's primary functions is conducting port scans. In this walkthrough, learn how to launch a default scan, along with other options that affect Nmap port scan behavior.  Continue Reading

• Enterprises reluctant to report cyber attacks to authorities

  Despite some successful law enforcement operations, including the seizure of a ransom payment, infosec experts say many enterprises are still unlikely to report cyber attacks.  Continue Reading

• Is quantum computing ready to disrupt cybersecurity?

  Quantum computing isn't here yet, but now is the time for companies to start considering how it may affect their business -- both negatively and positively -- in the next decade.  Continue Reading

• Editor's picks: Top cybersecurity articles of 2021

  As we call it a wrap on 2021, SearchSecurity looks at the top articles from the last 12 months and their sweeping trends, including ransomware, career planning and more.  Continue Reading

• Top infosec best practices, challenges and pain points

  Weak infosec practices can have irrevocable consequences. Read up on infosec best practices and challenges, as well as the importance of cybersecurity controls and risk management.  Continue Reading

• GDPR as we enter 2022: Challenges, enforcement and fines

  Take a look at where GDPR stands as it reaches its fourth birthday, including enforcement and fine changes, current challenges, how COVID-19 affected it and more.  Continue Reading

• Is a passwordless future getting closer to reality?

  Industry analysts offer predictions on the future of passwordless authentication and whether we'll ever truly get rid of one of security's weakest links.  Continue Reading

• Passwordless authentication issues to address before adoption

  The technology for passwordless authentication exists, but challenges remain. Companies must grapple with differing use cases, legacy software, adoption costs and more.  Continue Reading

• Elastic Stack Security tutorial: How to create detection rules

  This excerpt from 'Threat Hunting with Elastic Stack' provides step-by-step instructions to create detection rules and monitor network security events data.  Continue Reading

• Elastic Security app enables affordable threat hunting

  New to threat hunting in cybersecurity? Consider using the open code Elastic Stack suite to gather security event data and create visualizations for decision-makers.  Continue Reading

• The components and objectives of privacy engineering

  Privacy engineering helps organizations balance business and privacy needs, while mitigating the impact of data breaches. Learn about its components and objectives.  Continue Reading