Wednesday, April 12, 2017

Microsoft changes Patch Tuesday format, issues fixes for zero-day bugs

Security Digest
Information security news and advice from TechTarget's network | April 12, 2017
TechTarget
FEATURED STORY
Security Update Guide brings growing pains to Patch Tuesday
by Michael Heller, Senior Reporter

Microsoft fundamentally changes how IT pros will consume Patch Tuesday releases with the Security Update Guide and brings fixes for an actively exploited Word zero-day. (SearchSecurity.com)

Advertisement
NEWS
 
CIA Vault 7 tools attributed to hacking group for years

Security researchers said the CIA Vault 7 tools and techniques are linked to cyberattacks over the past six years targeting various foreign entities. (SearchCloudSecurity.com)

 
Pegasus malware expands from iOS to Android

One of the more malicious iOS threats -- Pegasus malware -- has made its way to Android devices and it has some dangerous new tricks in its arsenal. (SearchSecurity.com)

 
Chinese hacking group APT10 linked to global trade target
Evidence points to Chinese hacking group APT10 conducting economic espionage in the breach of a trade policy group prior to U.S.-China trade summit talks in Florida. (SearchSecurity.com)
 
 
 

Public/private threat intelligence sharing faces roadblocks

The U.S. government says it wants to improve threat intelligence sharing between the public and private sectors, but experts are unsure that is possible in the current climate. (SearchSecurity.com)

 
State Department hack and APT29 prove attacker resilience
News Roundup: 'Hand-to-hand' combat in State Department hack, APT29 has a stealth backdoor, the creator of the internet backs strong encryption, and more. (SearchSecurity.com)
 
Risk & Repeat: Strong encryption under fire again
One of the more malicious iOS threats -- Pegasus malware -- has made its way to Android devices and it has some dangerous new tricks in its arsenal. (SearchSecurity.com)
 
 
 
EXPERT ADVICE
 
Dedicated security teams: The pros and cons of splitting focus areas

Could using dedicated security teams that focus on one area of risk help reduce the attack surface for enterprises? Expert Steven Weil looks at the pros and cons of that approach. (SearchSecurity.com)

 
Why security in DevOps is essential to software development
Concerned about DevOps security? Learn three key steps to embedding security into the software development process, including how to improve automation. (SearchSecurity.com)
 
 
 
 

The best cloud security certifications for IT professionals

There are a few options for infosec professionals looking for cloud security certifications. Expert Frank Siemons outlines the top choices available with a cloud focus. (SearchCloudSecurity.com)

 
Is it worth using outsourced security services instead of in-house?

Outsourced security services are always an option for enterprises. Expert Mike O. Villegas outlines the pros and cons of using MSSPs instead of in-house security. (SearchSecurity.com)

 
About This E-Newsletter
This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for.

TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com

Copyright 2017 TechTarget. All rights reserved.
TechTarget

No comments: