As of April 25, this site seizure message greets visitors to Webstresser.org.

Police Seize Webstresser.org, Bust 6 Suspected Admins

Mathew J. Schwartz • April 26, 2018

Police have taken down Webstresser, a leading stresser/booter service tied to 4 million on-demand DDoS attacks, which could be used for as little as $15 per month. Six of the site's administrators have been arrested, as have some of the site's top users, authorities say.

Anti-Malware

Gartner's Litan on Blockchain

Latest

Breach Preparedness

Sophisticated Attacks Have Gone Mainstream

Varun Haran • April 26, 2018

The likelihood of encountering a sophisticated cyberattack is much higher than ever before - especially with the leak of government-grade hack tools in the public domain, says Dan Larson of CrowdStrike, who discusses the latest threat research.

Breach Preparedness

Taking a Zero-Trust Approach to Security

Varun Haran • April 26, 2018

Too many organizations believe in the fallacy that firewalls are keeping the bad guys out, when in reality, bad actors likely are already within their environments, says Bill Mann at Centrify, who calls for a "zero trust" approach.

Fraud

Machine Learning, AI Mitigating Insider Threats

Nick Holland • April 26, 2018

Insider threats aren't going away, but the introduction of machine learning and AI are proving to be powerful tools in the fight, says Randy Trzeciak of Carnegie Mellon University's CERT.

Fraud

Improving Fraud Prevention: Key Steps

Nick Holland • April 26, 2018

Machine learning and data analytics are both critical to fraud prevention, says Kedar Samant, CTO of Simility.

Big Data Security Analytics

Making the Most of Big Data

Varun Haran • April 26, 2018

What are the key elements of leveraging big data for analytics? Stu Bradley of SAS provides an overview of the essential steps.

Risk Management

Preparing for the Operational Technology Challenge

Tom Field • April 26, 2018

Plenty has been said about threats to internet of things devices - and rightfully so. But what about operational technology that often has been neglected by security controls? Mark Nunnikhoven of Trend Micro weighs in on OT risks.

Encryption

Improving Key Management

Varun Haran • April 26, 2018

Managing the key management lifecycle for multiple encryption capabilities across platforms and infrastructures is emerging as a challenge for enterprises, says Peter Galvin of Thales eSecurity.

Breach Response

Moving Beyond Prevention to Detection and Response

Varun Haran • April 26, 2018

Rather than focusing solely on preventing breaches, organizations must also embrace detection and response, says Tim Roddy of Fidelis Cybersecurity, who offers strategic insights.

Fraud

Real-Time Detection: Reversing the Fraud Trend

Varun Haran • April 26, 2018

Although many financial institutions are growing their security and fraud budgets, their losses to fraud are still increasing, says John Gunn of Vasco. Real-time detection capabilities are key to preventing fraud and reversing this trend, he says.

Artificial Intelligence & Machine Learning

The Promise of Artificial Intelligence in Security

Varun Haran • April 26, 2018

Artificial intelligence can help the security community tackle the skills shortage and is also essential to fighting the volume and sophistication of cyberattacks, says Gary Weiss of OpenText.

Anti-Malware

Toolkit Generates Malicious Office Macro Malware

Mathew J. Schwartz • April 25, 2018

Are you a fraudster craving an easy way to generate Microsoft Office documents with embedded malicious macros designed to serve as droppers that install banking Trojans onto a victim's PC? Say hello to a toolkit that debuted in February called Rubella Macro Builder.

Cloud Computing

Achieving Granular Visibility in the Cloud

Varun Haran • April 25, 2018

Visibility in the cloud includes understanding all aspects of critical applications and comparing this data in real time with historical data, says Sharon Besser of GuardiCore. This enables implementation of an effective and efficient security policy, he says.