Network defense of the nation's critical infrastructure is sorely lacking, according to a report by the Government Accountability Office.
VMware issued an advisory to patch an information disclosure issue.
Microsoft reported this week it will deliver several of its Cloud services from two new datacenters in Germany.
A just-released report surveying endpoint security across the federal government highlighted some dire lapses.
The White House has recruited Greg Shannon, a senior member of the IEEE and chief scientist for the CERT division at Carnegie Mellon.
Microsoft's past success selling software to the masses may end up being its toughest problem going forward as some of this legacy software is now exploitable even though it is supposedly protected, as was determined by researchers at Duo Labs.
The U.S. and South Korea announced that the two nations will begin working together to implement stronger cybersecurity strategies.
The New York Institute of Technology 6th Annual Cybersecurity Conference was held on Thursday in Manhattan.
Security in the cloud is not the same as security in the corporate data center. Different rules and thinking apply when a CISO is trying to secure an infrastructure over which he or she has no physical access.
Schneider Electric released updated firmware to patch a remotely exploitable vulnerability for its StruxureWare Building Expert building automation system.
When it comes to security many corporate employees are willing to take the risk of using unsecured, third-party apps if it means making their job easier, a new IBM Security study found.
Designing user authentication systems for applications is often seen as a trade-off between security and the user experience, but Ant Allan at Gartner says it needn't always be thus.
The U.S. Department of Energy's systems were compromised - successfully - more than 150 times in just four years.
Following a number of recent headline-grabbing breaches, a panel of foreign relations experts convened at the Atlantic Council to discuss retaliation against hackers.
A secret NSA map was obtained by a news outlet shows the locations of "Victims of Chinese Cyber Espionage" targets based in the U.S.
Japan will train approximately 50,000 people in the public and private sectors on cyber-security ahead of the 2020 Summer Olympics in Tokyo, according to local reports.
A study by Lloyd's of London and the Centre for Risk Studies at Cambridge University predicted severe losses in a catastrophic attack on the power grid and a separate poll found that voters were worried as well about those attacks.
From June 8 through June 26 more than 100 organizations participated in the fourth annual Cyber Guard exercise.
The attacks reportedly date back a year, and happened as recently as Tuesday morning.
IOActive, Kaspersky Lab, and the Cloud Security Alliance are among the security organizations supporting the effort.
Trend Micro and the Organization of American States (OAS) polled 575 critical infrastructure security leaders in the Americas.
On Wednesday, the President declared the need to address "malicious cyber-enabled activities" orchestrated by foreign attackers a national emergency.
Four GE products and one MACTek product are impacted by the vulnerability, according to ICS-CERT.
Shared Services Canada plans to spend $55 million to upgrade IT infrastructure.
The updated guide will offer insight on reducing risks to industrial control systems, such as malware, equipment failures, and other threats.
A German iron plant fell victim to a cyberattack that caused physical damage, according to a report on Wednesday from a German federal agency.
The U.S. House of Representatives and the Senate passed to the CyberSecurity Enhancement Act of 2014, giving NIST the go-ahead to develop voluntary cyber standards for critical infrastructure.
The U.S. House of Representatives unanimously approved three bills, including the Critical Infrastructure Protection Act.
The attacks were detected and incident response began immediately, with unscheduled maintenance being performed to mitigate the threat.
The Department of Energy contract will allow Norse to support the agency's Cybersecurity Risk Information Sharing Program (CRISP).