Top Stories

 

How open source flaws pose a rising threat to all businesses

By Byron Acohido Arguably the biggest security blind spot in just about every business network is something too few security executives are aware of, much less focusing on: open source software vulnerabilities. This truism first rose to the fore in 2014 with the flurry of malicious activity following the discovery of gaping defects in three […]

Machine learning shows promise for improving cyber defenses

By Byron Acohido LAS VEGAS — The cyber security sector  generates mountains of data. Security Information & Event Management, or SIEM, systems, like Splunk, generate logs of all network traffic. Threat data pours in from next generation firewalls, endpoint security systems, intrusion prevention and  detection systems and vulnerability management systems. A growing crop of threat […]

Why $3.6 million to prevent next Heartbleed isn’t enough

By Byron Acohido, Last Watchdog A dozen tech behemoths — led by Microsoft, IBM, Google, Intel and Cisco — have stepped forward with cold, hard cash to prevent the next Heartbleed. Each has pledged $100,000 annually for the next three years to a war chest earmarked to fund improvements of open source technology. That’s a […]

Why certain Heatbleed exposures won’t be so easy for bad guys to exploit

Heartbleed + Android: A Not-So Love Story from Lookout By Byron Acohido, Last Watchdog KINGSTON, Wash. – The security headaches raised by the Heartbleed coding flaw keep expanding. Ars Technica reporter Dan Goodin has broken stories about how the Canadian government and Yahoo Mail have been bitten by Heartbleed exploits in the wild. And there […]

Heartbleed threatens financial channels

(Editor’s note: In this guest essay, Scott Borg, CEO and chief economist at the U.S. Cyber Consequences Unit, outlines why online financial accounts are most exposed to the Heartbleed coding flaw – and why few criminal hackers are in a position to take advantage. The accompanying video conveys an overview of the state of the […]

A roadmap for triaging Heartbleed exposures

By Byron Acohido, Last Watchdog The acute notoriety of Heartbleed is a good thing in this sense: it ought to compel CIOs and CISOs to drill down on developing a roadmap for dealing with exposures that could run very deep. The most worrisome aspect of Heartbleed arguably is the fact that  this gaping security hole […]

Über nasty Heartbleed bug exposes fabric of the Internet

By Byron Acohido, Last Watchdog KINGSTON, Wash. – An über nasty security flaw has arisen from the din to command the attention of the global security community, rightfully so. The so-called “Heartbleed” flaw represents a path bad guys can use to tap into OpenSSL, the open-source implementation of the SSL and TLS protocols that are […]