Maintaining the secrecy of private keys and certificates can save businesses millions of dollars in losses.
In a follow-up to my last post, I’d like to address how infosec professionals can help non-security folks understand the need for security basics.
On the heels of an announcement last summer that websites using HTTPS will receive a SEO boost, Google is taking more steps to encourage a more encrypted web. Google created a version of Chrome with a feature designed to warn users when they visit unencrypted web pages. For now, this feature is only available on […]
It’s up to the infosec community to reach out to engineering and manufacturing and to help them understand security risks and best practices. We need to engage in conversation. We need to gain a seat at the table so that security is not an afterthought in the era of connectivity.
In the last two weeks, we have seen quite a few poor security practices in use with Superfish, Komodia/Lavasoft, and now PrivDog.
Lenovo’s violation of security best practices demonstrates the dangers of using self-signed certificates and the importance of the public trust system.
The IoT environment is growing at a rapid pace, but user privacy and security are still topics that need to be addressed.
50% of consumers stated that data security is a major factor when they choose who to shop from online.
A look back at the Anthem hack and what possibly could have prevented the breach of 80 million customer records.