dcsimg

Articles by Sean Michael Kerner 

How Much Does Business AV Cost? Try Free

Avast debuts free Business Anti-Virus, but what's the catch?

3 Questions Every CISO Should Answer

FireEye's Kevin Mandia has a few key questions for CISOs.

Why All Linux (Security) Bugs Aren't Shallow

With Heartbleed and Shellshock, the open source community realized that Linus' law can be challenged.

Google Blinks on Project Zero Security Disclosure

Common sense prevails as Google relaxes its 90-day disclosure policy for zero-day security vulnerabilities.

Report: PlugX Is RAT of Choice for Nation States

Crowdstrike's Global Threat Intel report details tactics used in nation-state attacks.

Google Ups Ante for Security Researchers

After paying out $1.5 million in bug bounties in 2014, Google is boosting payments for ongoing security research.

Google Pays Big Bug Bounties in Chrome 40 Fix

Google pays out $88,500 in bug bounties, with the largest browser security update yet in 2015. In all, Google fixed 62 different security flaws.

How Secure Is Android if Google Won't Patch?

A security researcher alleges that Google won't patch its older Android software for a new vulnerability. Luckily, users have options to boost security for older versions of the OS.

Black Friday Cyber Attacks Declined in 2014

While 61 million records were stolen from retailers in 2014, Black Friday and Cyber Monday attacks declined, IBM finds.

FireEye Expands Security Platform

FireEye CTO Dave Merkel details his firm's latest additions and offers some security predictions for 2015.

Crowdstrike: On a Mission to Find Malware-Free Attacks

Crowdstrike CTO Dmitri Alperovitch explains how his company's newest Falcon platform improves security with detection and prevention.

Google Brings Open Source Security Gifts

Google isn't just about search anymore. In recent weeks it has announced multiple security projects including Santa for Mac.

IBM Boosts Cloud Data Protection, Compliance

IBM has patented an invention that will help global businesses navigate complex regulatory landscape for cloud data.

Microsoft Buys Aorato to Boost Active Directory Security

Microsoft buys Aorato, the company that earlier this year disclosed a critical vulnerability in Microsoft's security.

IBM Boosts Cyber Security Education Efforts

IBM is investing in outreach to universities in a bid to better educate future security professionals.

Shellshock a Fail for Security Disclosure

Shellshock and the Xen vulnerability. One of these things is not like the other, and an expert says they can teach us a lot about how to disclose security vulnerabilities.

Keeping SCADA Systems Secure

FireEye Turns Its Attention to SCADA industrial control systems.

Veracode Gears up for Security IPO

Veracode CEO explains what his company is doing now as he heads toward a public offering.

An Open Source Solution to Shellshock

An open source tool can mitigate risks associated with Bash shell attack.

IBM Brings Bare Metal Intel TXT Security to Cloud

The cloud isn't just about virtual servers. The physical layer and its security still matter, which is why IBM is using Intel's Trusted Execution Technology.

Security Research and the Law: What You Need to Know

Security researchers must navigate a minefield of U.S. laws and statutes, such as the Computer Fraud and Abuse Act.

How to Detect SSL Leakage in Mobile Apps

LinkedIn researchers find piles of SSL configuration flaws in mobile apps and so can you.

DefCon: Advice on Evading Black Helicopters

You say 'paranoid,' I say 'careful.' Expert offers 'practical' advice on living the paranoid lifestyle.

Yahoo CISO Details Challenge of Security at Scale

Security vendors focus on banks not Web-scale companies, says Yahoo CISO Alex Stamos.