Vulnerability Management Reports

EGUIDE: The extent of fundamental security flaws in most applications often requires a re-architecture, but there are some secondary measures information security teams can take to safeguard faulty applications. This expert tip maps out the steps security professionals should take to lock down their Web applications.

Posted: 14 Jul 2011 | Published: 14 Jul 2011

ANALYST REPORT: The threat landscape is evolving and a new breed of sophisticated cyber attacks have emerged – APT. APT is highly targeted, thoroughly researched, amply funded, and difficult to detect. This report offers expert insight from information security leaders on APT, risks and defensive measures you can take against escalating threats.

Posted: 15 Aug 2011 | Published: 15 Aug 2011

WHITE PAPER: Cloud computing is a flexible, cost-effective and proven delivery platform for providing business or consumer IT services over the Internet. This whitepaper discusses the who, what, when, why and how of cloud-based security services.

Posted: 01 Jul 2011 | Published: 01 Jul 2011

PRESENTATION TRANSCRIPT: This presentation transcript will teach you about the downfalls of endpoint management including, complexity, compliance and cost. You will also learn how to mitigate these downfalls and find a product where these are non issues.

Posted: 17 Jun 2011 | Published: 16 Jun 2011

EGUIDE: Information security practices of government organizations is at an all time high as attackers begin to focus on critical infrastructures and resources. This expert e-guide, presented by SearchSecurity.com, explores where government organizations need to direct their efforts in order to understand and properly mitigate critical threats.

Posted: 26 May 2011 | Published: 23 May 2011

EBOOK: In this eBook from the experts at SearchCompliance.com, discover all you need to know about e-discovery, compliance, and data security in order to plan for success in your organization. Find out how effective records management can ease the pain of e-discovery, how Web forensics can help protect your data, and more.

Posted: 12 May 2011 | Published: 04 Oct 2011

PRESENTATION TRANSCRIPT: Keeping up with patches is a tedious and time consuming task for security pros, and often prompts them to look for a more efficient and effective solution. This presentation transcript discusses a patch management approach that offers effective monitoring and increased productivity.

Posted: 04 May 2011 | Published: 04 May 2011

PRESENTATION TRANSCRIPT: In this presentation transcript, Nick Lewis discusses the best ways to efficiently handle vendor security updates, how to prioritize patch deployment on mission-critical and non-mission critical systems, and why testing patches before deployment is such a crucial step.

Posted: 04 May 2011 | Published: 04 May 2011

PRESENTATION TRANSCRIPT: This presentation transcript discusses the various types of JavaScript client-side issues that exist in today’s Web applications, their prevalence on the internet and how to locate and fix them.

Posted: 12 Apr 2011 | Published: 12 Apr 2011

EGUIDE: This e-guide will walk you through data protection strategy and how to protect your business critical assets. Continue reading to learn best practices for effective data protection.

Posted: 29 Mar 2011 | Published: 29 Mar 2011

EGUIDE: This e-guide discusses how the appropriate risk management tactics are imperative for organizations, and how companies should pay close attention to agent risk and waste no time in making it part of their risk management models.

Posted: 22 Mar 2011 | Published: 22 Mar 2011

EGUIDE: This month’s Information Security Magazine Online cover story explores the current state of endpoint security enforcement and the challenges enterprises face during implementation.

Posted: 02 Feb 2011 | Published: 31 Jan 2011

WHITE PAPER: An explosion in system and application vulnerabilities has been met with new ways to attack these weaknesses. In this paper, EMA analysts take a look at factors driving the need for increased security, and how new approaches to mitigating vulnerabilities such as virtual patching or remediation, provide more ways to deliver vulnerability management.

Posted: 31 Jan 2011 | Published: 31 Jan 2011

WHITE PAPER: As more people cross more borders – physically and virtually – the need to implement a reliable human identity system for proper verification becomes crucial. Read on to see how IBM dissuades credential abuse while helping customs, border management and law enforcement organizations ensure the safety and security of citizens and workers.

Posted: 10 Jan 2011 | Published: 10 Jan 2011

WHITE PAPER: Read this white paper to learn the top ten best practices to help fulfill the SSLP’s mission of building hack-resilient software.

Posted: 15 Dec 2010 | Published: 15 Dec 2010

WHITE PAPER: Read this paper to view the latest news and information about VB100 testing,  Windows Vista,  Windows 7, Windows Server 2003, Windows 7 Professional, and  so much more.

Posted: 14 Dec 2010 | Published: 14 Dec 2010

EBOOK: This e-book explores how many of the risks associated with scanning can be avoided with careful planning and by focusing your scans on exploring where and how a system is vulnerable to attack and not trying to simulate an actual attack. Continue reading to learn more about scanning production applications.

Posted: 07 Dec 2010 | Published: 07 Dec 2010

PODCAST: In the 200th episode of “The Malware Report” Matt Grant talks with Randy Abrams and Paul Lansky about the past 4 years and how the threat landscape has evolved and changed over the years. In this podcast, Randy and Paul discuss many of these changes. Listen to this podcast to hear more. 

Posted: 02 Dec 2010 | Premiered: Dec 2, 2010

PRESENTATION TRANSCRIPT: This presentation transcript of the webcast “Path to a Secure Application” explains how automatic vulnerability scanning tools can greatly improve the speed and accuracy of code review, and integrate seamlessly into the development life cycle.

Posted: 01 Dec 2010 | Published: 01 Dec 2010

PRESENTATION TRANSCRIPT: This presentation transcript discusses the importance of performance considerations when buying endpoint security suites. You’ll gain insight on how to improve the performance of security and configurations in order to keep downtime to an absolute minimum.

Posted: 29 Nov 2010 | Published: 29 Nov 2010

EGUIDE: This expert e-guide brought to you by SearchSecurity.com, explains the importance of integrating application security throughout the entire software development lifecycle and provides 4 tips that must be kept in mind on the application security forefront. Read on to uncover these tips and review an assessment of Web application security.

Posted: 10 Nov 2010 | Published: 10 Nov 2010

PRESENTATION TRANSCRIPT: In this presentation transcript, you’ll gain insight on how to improve your asset discovery processes, determine the patch level of the machines in your environment, and improve testing and deployment processes to keep pace with Patch Tuesday and quarterly Oracle and Adobe releases.

Posted: 02 Nov 2010 | Published: 01 Nov 2010

WHITE PAPER: In this report covering January to June 2010, we examine various cybercrime incidents, the criminal’s use of multiple tools such as botnets, and look at threat trends and activity currently causing, and likely to continue to cause the most pain, cost and disruption to connected users across the world.

Posted: 22 Oct 2010 | Published: 22 Oct 2010

TRIAL SOFTWARE: A new wave of vulnerabilities is threatening our endpoints and browsers at a much greater rate than operating systems and servers, which is why the SANS Institute has ranked “patching client-side software” as the number one security priority.

Posted: 13 Sep 2010 | Premiered: 13 Sep 2010

EGUIDE: In this month’s issue we provide our 5th annual Readers’ Choice Awards for the best security products in the market. We’ve talked with over 1,500 Information Security readers to find what their favorite products are and why. Read through to see which ones take the gold.

Posted: 10 Sep 2010 | Published: 10 Sep 2010