Aggregator

Facing data breach disclosure requirements across the globe, organizations need to be prepare in advance to respond well.

如果是多线程的环境下使用 ServiceStack.Redis，就必须使用连接池，每次从连接池里面获取一个连接供当前线程使用，或者每次都重新实例化一个！

Providers and manufacturers could go a long way toward reducing the very real threat of IoT.

Windows事件日志为涉及计算机犯罪案件的破获提供重要证据或线索，因此，在电子数据取证调查过程中扮演越来越重要的作用。

《网络安全法》已于2017.6.1正式实施，那对于白帽子来说可能都会有一些忐忑和迷茫。一句话建议：自律方能自由。

Learn to recognize different types of CISOs so you can ensure you’re hiring the right one.

We’ve seen cyberattacks truly embody their names as of late, given how the massive WannaCry ransomware attack left quite a...

The post Android Devices Potentially Compromised by Judy App Weaknesses appeared first on McAfee Blog.

How a token-based authorization model can help organizations dramatically reduce credential stuffing attacks.

Surface设备的取证难一直困扰大家的问题，本次CCFC峰会上，Surface设备取证的主题分享获得了与会人士的一致关注。

With simple exploits plaguing Windows and Linux SMB week over week, do yourself a favor and patch for CVE-2017-7494 now to avoid having to do it in panic mode.

本文曾首发于Sec-UN，现搬运到这个公众号上，略修改。

Cyber security can be a difficult and thankless job, but you can learn to love it when you know how to go about it.

WannaCry was the ransomware attack heard around the world. It impacted more than 150 countries and infected over 250,000 devices...

The post Fake WannaCry Protection Apps Hit the Google Play Store appeared first on McAfee Blog.

Verisign just released its Q1 2017 DDoS Trends Report, which represents a unique view into the attack trends unfolding online, through observations and insights derived from distributed denial of service (DDoS) attack mitigations enacted on behalf of Verisign DDoS Protection Services. Verisign saw a 23 percent decrease in the number of attacks in Q1 2017; however, […]

The post Q1 2017 DDoS Trends Report: 26 Percent Increase in Average Peak Attack Size appeared first on Verisign Blog.

More and more CISOs are finding themselves pulled into the sales cycle to defend and sell their security programs. Here’s how to do it right.

针对Esteemaudit漏洞的一些缓解措施尝试

Cloud sprawl isn’t just a budget sinkhole; it’s quickly becoming a security blind spot and potential attack vector for data theft.