If the FBI and DoJ are now criminalizing every white-hat who creates a PoC, they risk marginalizing the US’s role in infosec.
Proposed legislation would allow companies a limited ability to hack back at attackers. Here's what security pros need to know.
Ignore the politics. If Bossert, Huntsman, and Scaramucci can be fooled this easily, what about your executives? Time for some Red Team exercises?
As the ISACA training program grows, it will expand beyond security pros to engineers and developers—in the enterprise, academia and practitioners.
Calls for a renewed focus on traditional defense haunted by rising threats such as IoT and containers.
As malware detection tools continue to evolve, AI will play a larger and more important role. Here's how and why.
Antivirus has focused on the user. With fileless malware, security experts say it's time to approach security from the kernel level.
IoT security is different. Here's why, and how to deal with those challenges.
You need a 24/7 team actively fighting abuse and acting on reports—if you want to take security seriously.
Security analysts are in short supply, so focus on hiring, developing and keeping your talented team. Here are three ways to do that.