Firewalls | News, how-tos, features, reviews, and videos

MIT researchers advance cloud security with end-to-end encryption

University researchers have taken an important step forward on cloud security by proving it's possible for a server to process encrypted data and to send back a still-encrypted result.

McAfee offers business endpoint security suites for broader protection

Aiming to better address the security needs of businesses of all sizes that are facing increasingly complex attacks, McAfee has added two endpoint security suites to its product lineup.

Layered defenses largely fail to block exploits, says NSS

Security experts have long touted a layered approach to cyber security as the most effective way to thwart network intruders, and the strategy is most effective when companies use a mix of vendors and security products, NSS Labs found....

IT security vendors seen as clueless on industrial control systems

Many IT security vendors have a minimal understanding of industrial control systems (ICS) and try to sell technology that could easily damage the devices found in plants running the nation's critical infrastructure, experts say.

Experts ding DHS vulnerability sharing plan as too limited

The Department of Homeland Security's plan to selectively share information on zero-day vulnerabilities is too restrictive and should be opened up to more companies, experts say.

Researchers develop industrial systems that watch for security breaches

University researchers have developed a methodology for enabling networked devices in an industrial control system to police each other for abnormal behavior that would indicate a compromise.

Feds' offensive fueling hacker underground, report says

The U.S. government is contributing to the Internet's underground economy by scooping up hacker tools to incorporate into offensive cyber weapons, a report from Reuters says.

Companies, government unprepared for new wave of cybersabotage

A new wave of cyberattacks reportedly aimed at industrial control systems comes at a time when private companies and government are still struggling to protect the nation's critical infrastructure, experts say.

Security practices wanting in virtual machine world, survey finds

While organizations have been hot to virtualize their machine operations, that zeal hasn't been transferred to their adoption of good security practices, according to a survey released on Wednesday.

Lesson from the Google office hack: Do not trust third-parties

The recent hack of the building management system in a Google's Australian HQ demonstrates how organizations should not trust third-party installers to adequately secure the technology.

Experts wary of Pentagon cybersecurity report fingering China

A recent Pentagon report blaming the Chinese military for cyberattacks on U.S. government computers and defense contractors marks an escalation in rhetoric, but offers no surprises, experts say.

Islamic group expands targets in bank DDoS attacks

An Islamic group that launched a third wave of high-powered denial-of-service attacks against U.S. banks in March have started targeting other financial organizations, including credit card companies and financial brokerages, security...

More malware discovered from drone cyberattacks

Researchers following a cyberespionage campaign apparently bent on stealing drone-related technology secrets have found additional malware related to the targeted attacks.

Air Force reclassification of cyber tools as weapons sparks speculation

An Air Force general this week stoked speculation about the military's cyberwar preparedness when he revealed it had reclassified six cyber tools as weapons.

Control system hack at manufacturer raises red flag

An unreported attack on the energy management system of a New Jersey manufacturer has been revealed by the U.S. Cyber Emergency Response Team (US-CERT).

Sophos fixes vulnerabilities in its Web security appliance

Security vendor Sophos has released an update for the software used on its Web gateway security appliance in order to address three serious vulnerabilities in the product's Web-based user interface.

South Korea bank attacks should prompt rethink in U.S.

The simplicity of the malware that paralyzed the computer networks of three banks and two broadcasters in technically sophisticated South Korea is a warning that U.S. corporations need to rethink security.

Security appliances are riddled with serious vulnerabilities, researcher says

The majority of email and Web gateways, firewalls, remote access servers, UTM (united threat management) systems and other security appliances have serious vulnerabilities, according to a security researcher who analyzed products from...

Kaspersky Internet Security 2013 bug can lead to system freeze

Kaspersky Lab's Internet Security 2013 product contains a bug that can be exploited remotely, especially on local networks, to completely freeze the OS on computers running the software.

Islamic group promises to resume U.S. bank cyberattacks

An Islamic group that has claimed responsibility for several waves of attacks on major U.S. banks since last September has promised to resume its assault next week using a lot more firepower.

Load More