RSA Conference 2018: Can hacking back be done right?

Security Digest Information security news and advice from TechTarget's network| April 25, 2018 FEATURED STORY Experts describe how hacking back can be done right by Michael Heller, Senior Reporter A panel of experts at the RSA Conference all expressed support for the idea of hacking back against threat actors, but each offered caveats in hopes of minimizing collateral damage. (SearchSecurity.com) Advertisement NEWS   Keeper Security forms vulnerability disclosure program with Bugcrowd Following its controversial lawsuit against an Ars Technica security reporter, Keeper Security has teamed with Bugcrowd on a formal vulnerability disclosure program. (SearchSecurity.com)   CrowdStrike unveils Meltdown exploit in unusual fashion At RSA Conference 2018, CrowdStrike demonstrated a new Meltdown exploit that can harvest sensitive data such as passwords even on systems that are patched. (SearchSecurity.com)   Moussouris: Bug bounty programs need to avoid jumping the shark Bug bounty programs may seem to offer salvation at a bargain price for securing networks and systems, but Katie Moussouris offers tips for avoiding major pitfalls. (SearchSecurity.com)   Government hacking tactics questioned at OURSA The ACLU's Jennifer Granick took government hacking to task at the OURSA Conference this week, calling out mass surveillance techniques and the limited scope of search warrants. (SearchSecurity.com)   Schneier talks cyber regulations, slams U.S. lawmakers Speaking at RSA Conference 2018, Bruce Schneier slammed U.S. lawmakers and Facebook in discussions on internet security regulations and technology policy. (SearchSecurity.com)   Another misconfigured Amazon S3 bucket exposes 48M records News roundup: A misconfigured Amazon S3 bucket led to the exposure of 48 million records collected by a private data analytics firm. Plus, PCI SSC updated its cloud guidelines, and more. (SearchSecurity.com) EXPERT ADVICE   Considering cloud threat intelligence and detection services Cloud threat intelligence and detection services can provide better security for enterprises. Expert Dave Shackleford discusses some offerings from the major cloud providers. (SearchCloudSecurity.com)   Marcus Ranum decodes hardware vulnerabilities with Joe Grand Computer hardware designs with dangerous security flaws? That's no surprise to renowned hardware hacker Grand. (SearchSecurity.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2018 TechTarget. All rights reserved.