security laboratory

June 30, 2015:

IETF Officially Deprecates SSLv3

Attacks such as POODLE and BEAST not only caused some sleepless nights for server admins having to patch against the respective weaknesses, but they also accelerated SSLV3 deprecation. In the time since both attacks were disclosed, major browsers have removed the fallback condition that enabled the attacks, which threaten the confidentiality of encrypted communication, and […]
June 29, 2015:

Cyber Resilience And Spear Phishing

Spear phishing continues to be the most successful means of gaining entry to an enterprise network and to valuable business or personal data. According to the latest Verizon Data Breach Investigations Report, two-thirds of all cyber-espionage-style incidents used phishing as the vector. According to a recent study by the Ponemon Institute, the costs of such […]
June 29, 2015:

Common cybersecurity myths debunked

One of the greatest challenges for organizations attempting to address cybersecurity risks is the number of fundamental security myths that cause organizations to incorrectly assess threats, misallocate resources, and set inappropriate goals. Dispelling those myths is key to developing a sophisticated, appropriate approach to information security. MYTH #1: “IT’S ALL ABOUT THE DATA.” All too […]
June 26, 2015:

Financial Firms Hit Hard By Targeted Attacks

A new report finds that financial services firms are being hit hard by cyber attacks, including targeted attacks aimed at luring employees into installing malicious software on corporate networks. Things are bad all over, but they may be worse for firms in the financial sector. A new report from the firm Websense finds that financial […]

Made, Maintained & Powered in USA by CrystalVision