Institute calls on government and regulator to step up outreach efforts
ROCA Crypto Bug Compromises RSA Keys
Organizations urged to hunt down vulnerable Infineon chips
Report: 88% of Java Apps Vulnerable to Attacks from Known Security Defects
New Veracode report exposes the risks companies face from vulnerable open source components
McRee added to ISSA’s Honor Roll for Lifetime Achievement
HolisticInfoSec’s Russ McRee was pleased to be added to ISSA International’s Honor Roll this month, a lifetime achievement award recognizing an individual’s sustained contributions to the information security community, the advancement of the associati…
toolsmith #128 – DFIR Redefined: Deeper Functionality for Investigators with R – Part 1
“To competently perform rectifying security service, two critical incident response elements are necessary: information and organization.” ~ Robert E. Davis
I’ve been presenting DFIR Redefined: Deeper Functionality for Investigators with R across…
Google Rolls Out Advanced Protection for High-Risk Users
Users include journalists who need to protect the confidentiality of their sources, or people in abusive relationships.
DHS Mandates DMARC, HTTPS for All US Federal Agencies
Agencies will have 90 days to implement DMARC and 120 days to upgrade to HTTPS.
Poorly Secured SSH Keys Exposing Firms to Breaches
Venafi finds 90% of organizations don’t even know what they have
Microsoft Kept Quiet About 2013 Bug Database Hack: Report
Five former employees reveal lack of transparency at tech giant
FT30 Firms at Risk from Equifax-Style Breach
RiskIQ report reveals vulnerable web infrastructure is commonplace