By Rene Kolga Deploying traditional security solutions like antivirus and firewall (whether next gen or not) that only attempt to detect new malware based on the past knowledge (e.g., previous malware samples and techniques) may have been sufficient in the 1990s, but not today. More and more organizations worldwide are falling victim to targeted attacks […]

As Nyotron Founder and CTO Nir Gaist points out in his recent post, the “enumeration of badness” approach that cybersecurity pros and vendors have relied on for decades is no longer effective for two reasons: the amount of “badness” is practically infinite, and it’s unrealistic to detect all future “badness” based on the past. You […]

By Rene Kolga Writing about the discovery this month of a new Windows zero-day vulnerability that a security researcher disclosed publicly on Twitter, and that got me thinking about whether the federal government should do the same with zero-day threats it discovers. The question of whether the government should stockpile or publicly disclose them is […]

U.S. Director of National Intelligence Dan Coats says the country’s digital infrastructure is under constant attack by state-sponsored cyber attackers from Russia, China, Iran and North Korea. He even compares the situation today to the months before September 11, 2001, adding “here we are nearly two decades later, and the warning lights are blinking red […]

By Rene Kolga Microsoft has built its Windows Defender Antivirus solution into the Windows 10 operating system, and that provides a good foundation for protecting your endpoints. But as the recent discovery of a new zero-day attack reminds us, it’s not good enough. Several journalists including Tara Seals at Threatpost, Lucian Armasu with Tom’s Hardware […]

By Rene Kolga It’s Back to School time again for students, faculty and administrators… and apparently for Iranian cyber attackers too. Kelly Sheridan at Dark Reading reports that COBALT DICKENS, a threat group linked to Iran’s government, is targeting universities around the world with a large-scale credential theft campaign. This should serve as a reminder […]

By Rene Kolga I recently reported on an NSS Labs evaluation of 20 Advanced Endpoint Protection (AEP) solutions that revealed their inability to block unknown threats. I highlighted some statistics around how their efficacy rates drop to as low as 46%. While the rows and columns of numbers from NSS Labs’ controlled testing environment are […]

By Rene Kolga OK, we had some fun, and now let’s get serious. Here’s my list of the presentations I found to be the most interesting and/or educational from last week’s security conferences in Vegas. Favorites: Black Hat: Understanding and Exploiting Implanted Medical Devices Taking the torch from Barnaby Jack, researchers Billy Rios and Jonathan […]

Subscribe to our blog

Follow us on Social Media