Threats and vulnerabilities

Keeping up with the latest threats and vulnerabilities is a battle for any security pro. Get up-to-date information on email threats, nation-state attacks, phishing techniques, ransomware and malware, DDoS attacks, APTs, application vulnerabilities, zero-day exploits, malicious insiders and more.

Top Stories

Tip 10 Dec 2024
Webhook security: Risks and best practices for mitigation

Webhook security is an ongoing process, with responsibility shared between providers and consumers to protect against threats and ensure a secure webhook ecosystem. Continue Reading
By
- Twain Taylor, Twain Taylor Consulting
News 09 Dec 2024
Attackers exploit vulnerability in Cleo file transfer software

Cleo disclosed and patched the remote code execution vulnerability in late October, but managed file transfer products have proved to be popular targets for threat actors. Continue Reading
By
- Arielle Waldman, News Writer

Answer 09 Apr 2007
How can attackers exploit RSS software flaws?

RSS syndication feeds are a convenient way to get your news, blogs or other favorite content, but these popular tools are often left exposed. In this SearchSecurity.com Q&A, Ed Skoudis explains how malicious hackers can attack RSS software and distribute malicious code. Continue Reading
By
- Ed Skoudis, SANS Technology Institute
Feature 26 Jan 2007

Balancing the cost and benefits of countermeasures

The final tip in our series, "How to assess and mitigate information security threats," excerpted from Chapter 3: The Life Cycle of Internet Access Protection Systems of the book "The Shortcut Guide to Protecting Business Internet Usage published by Realtimepublishers. Continue Reading
Feature 26 Jan 2007

Network-based attacks

The second tip in our series, "How to assess and mitigate information security threats," excerpted from Chapter 3: The Life Cycle of Internet Access Protection Systems of the book The Shortcut Guide to Protecting Business Internet Usage published by Realtimepublishers. Continue Reading
Feature 12 May 2005

E-mail policies -- A defense against phishing attacks

In this excerpt of Chapter 6 from "Phishing: Cutting the Identity Theft Line," authors Rachael Lininger and Russell Dean Vines explain how e-mail policies help protect companies from phishing attacks. Continue Reading

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20

Search Networking

The business case for AI-driven network orchestration
Organizations that are considering AI-driven network orchestration will find it has many business cases -- chief among them are ...
The purpose of route poisoning in networking
Route poisoning is an effective way of stopping routers from sending data packets across bad links and stop routing loops. This ...
How to monitor network traffic in 7 steps
Effective network monitoring is an ongoing process that requires the right tool set to gain visibility into infrastructure ...

Search CIO

Trump appointments show potential for U.S.-China relations
Apart from President-elect Donald Trump's promise to take a strong stance on goods imported from China, collaboration might be ...
Experts urge DOGE to prioritize tech over agency cuts
Elon Musk and Vivek Ramaswamy want to 'delete' federal agencies. However, some hope the duo will turn their focus to improving ...
Intel CEO Pat Gelsinger out; board searches for new CEO
Gelsinger's turnaround plans -- including layoffs, restructuring and foundries -- weren't enough to pull the company out of ...

Search Enterprise Desktop

7 steps to fix a black screen in Windows 11
A black screen can be a symptom of several issues with a Windows 11 desktop. Knowing where to look for the source of the problem ...
Comparing Microsoft 365 Copilot vs. GitHub Copilot
There are significant differences between the various Copilots Microsoft has brought to market. Find out details about two of the...
How to choose between Windows 10 IoT and Linux
Choosing between Windows IoT and Linux for IoT device management might seem like an obvious choice, but six core factors could ...

Cloud Computing

How to prepare for long-lasting cloud outages
Cloud outages are more than a technical inconvenience -- they can threaten business continuity, customer satisfaction, security ...
How to create an EC2 instance from the AWS Console
AWS has made launching EC2 instances an easy task, but there are still many steps to the result. Learn how to successfully create...
Understanding SaaS migration benefits and best practices
Consider the four common approaches to single-tenant and multi-tenant SaaS migration and get a good grasp on tradeoffs and ...

ComputerWeekly.com

Microsoft shares details of plans to reduce water usage of AI datacentres
Microsoft has released details of the latest bit of work it has done to minimise the environmental footprint of its datacentres
Google demos next-gen error correction with Willow quantum tech
Willow represents Google’s latest development in its goal to produce quantum computing that can scale beyond error limits
IaaS firm uses Pure Storage as a service for ‘virtual datacentres’
Espresso Gridpoint moved from largely NetApp to Pure Storage FlashBlade file and object for its ‘virtual datacentres’ business ...

Close