New & Notable
Manage
How to operationalize a strong cyber-resilience plan
Attackers are becoming increasingly powerful, and regulators are demanding proof of cyber-resilience. In this threat landscape, cyber-resilience plans need to change, too.
News
For CISOs, dawn of OpenAI Daybreak brings good and bad news
OpenAI Daybreak shows how AI reshapes vulnerability discovery. But AI-driven security tools raise accountability questions and fuel the AI arms race between defenders and attackers.
News
Gartner Security & Risk Management Summit 2026: Adapting for AI
Check out SearchSecurity's Gartner Security & Risk Management Summit guide for reports on notable presentations and sessions on the latest security topics.
News
GitHub: How code provenance can prevent supply chain attacks
Through artifact attestation and the SLSA framework, GitHub's Jennifer Schelkopf argues that at least some supply chain attacks can be stopped in their tracks.
— Dark ReadingTrending Topics
-
Data Security & Privacy Manage
Data after the breach: Economics of the dark web
A breach is just the beginning. Once extracted, data moves through a sophisticated supply chain. Peek inside the dark web economy that turns stolen credentials into billions of dollars in profit.
-
Threats & Vulnerabilities Manage
Inside business email compromise attack: Real-world examples
From tech giants to nonprofits, no organization is immune to trust-eroding business email compromise attacks. Learn more about BEC scams and the fallout when employees get tricked.
-
IAM Manage
Identity security for AI agents: The proliferation challenge
Identity teams can accelerate AI adoption with strong security foundations. But managing nondeterministic AI agents is different from securing human identities and traditional NHIs.
-
Analytics & Automation Evaluate
What every CISO should consider before a SIEM migration
Before starting a SIEM migration, the security team must identify the data, rules, workflows and policies they need to transition to the new tool or service. Here's how to get started.
-
Network Security Evaluate
The enterprise case for zero trust
When applied correctly, zero trust can minimize an organization's attack surface. Experts weigh in on the best use cases where zero trust can deliver results.
-
Operations & Management Evaluate
Security platformization vs. best-of-breed: Risks and benefits
With tool sprawl pushing costs and complexity to a breaking point, the choice between unified security platforms and best-of-breed tools has never been more critical.
Sponsored Sites
-
Artificial Intelligence
Intel & Red Hat: Leading the way in Enterprise AI
Combining Intel’s silicon experience with Red Hat’s software innovation to enable AI-driven hybrid multi-cloud solutions.
-
Security
Leading the Way in Corrections Technology
From creating safer facilities to supporting stronger reentry outcomes, Aventiv, and its family of brands: Securus Technologies, Securus Monitoring and JPay, delivers technology solutions that safely and securely transform corrections environments for everyone.
-
Networking
Verizon Private 5G Edge - Enterprise Intelligence
Verizon is leading the development of secure cloud computing power at the edge of the network. Hosting applications at the network edge helps improve response times and performance – enabling the faster collection, processing and analysis of data for better business outcomes, and true Enterprise Intelligence.
Topics Covered
Application and platform security
Careers and certifications
Cloud security
Compliance
Data security and privacy
Identity and access management
Network security
Risk management
Security analytics and automation
Security operations and management
Threat detection and response
Threats and vulnerabilities
Featured Authors
Find Solutions For Your Project
-
Evaluate
Security platformization vs. best-of-breed: Risks and benefits
With tool sprawl pushing costs and complexity to a breaking point, the choice between unified security platforms and best-of-breed tools has never been more critical.
-
SOC vs. MDR: What CISOs need to consider
-
How to implement zero trust for AI
-
The breakup: Why CISOs are decoupling data from their SIEMs
-
-
Problem Solve
Inside business email compromise attack: Real-world examples
From tech giants to nonprofits, no organization is immune to trust-eroding business email compromise attacks. Learn more about BEC scams and the fallout when employees get tricked.
-
Identity security for AI agents: The proliferation challenge
-
Taking care of business: The CISO's role in a cyber crisis
-
Transform SIEM rules with behavior-based threat detection
-
-
Manage
How to operationalize a strong cyber-resilience plan
Attackers are becoming increasingly powerful, and regulators are demanding proof of cyber-resilience. In this threat landscape, cyber-resilience plans need to change, too.
-
What CISOs need to know about AI audit logs
-
Data after the breach: Economics of the dark web
-
Claude Mythos changes the AI security threat matrix
-
Information Security Basics
-
Get Started
SOC vs. MDR: What CISOs need to consider
Security operations centers and managed detection and response providers differ in how they manage threats. What's the best way to choose between a SOC and MDR service?
-
Get Started
CISO's guide: How to test an incident response plan
Creating an incident response plan is only the beginning. Regular testing will help ensure it doesn't fall apart during a real cybersecurity event.
-
Get Started
Buyer's guide for CISOs: Cloud security posture management
Cloud security posture management is a critical component of cloud defense strategy. Need help choosing a CSPM platform? This guide lists key features and platforms to consider.
Multimedia
-
News
View All -
Risk management
OT attacks shift from recon to physical control, raising stakes
Malicious hackers are no longer just snooping around OT systems, researchers warn. They're preparing to cause real-world damage.
-
Threat detection and response
For CISOs, dawn of OpenAI Daybreak brings good and bad news
OpenAI Daybreak shows how AI reshapes vulnerability discovery. But AI-driven security tools raise accountability questions and fuel the AI arms race between defenders and attackers.
-
GitHub: How code provenance can prevent supply chain attacks
Through artifact attestation and the SLSA framework, GitHub's Jennifer Schelkopf argues that at least some supply chain attacks can be stopped in their tracks.
Search Security Definitions
- What is identity and access management? Guide to IAM
- What is data masking?
- What is antivirus software?
- What is a stealth virus and how does it work?
- What is file integrity monitoring (FIM)?
- What is information security (infosec)?
- What is governance, risk and compliance (GRC)?
- What is integrated risk management (IRM)?