Cybereye

CyberEye

  • Looking for insider threats

    Insider threat detection tools: Hard to find, harder to fund

    A new survey shows that with little money to spend on tools aimed at insider threats, most organizations have to limp along by jerry-rigging existing, and unsuitable, cybersecurity tools to do the job.

    Comments: 1
  • Man keeping secret about a security vulnerability

    Would the government have told us about Heartbleed? Should it?

    The government says it did not know about the OpenSSL vulnerability before it was publicly disclosed. But if it had known, it might not have told us, says White House Cybersecurity Coordinator Michael Daniel.

    Comments: 1
  • heartbleed and encryption key

    Heartbleed begets headaches in perfecting encryption

    New guidelines on improving encryption tools in the wake of the Heartbleed bug offer a range of options for improving encryption, but bigger changes loom down the road.

  • Device login screens plugged into the cloud

    Federating identity will slow personal information leaks

    Having a single credential that can be authenticated by a trusted authority and accepted by multiple users can reduce the attack surface by maintaining personally identifiable information at a single point.

    Comments: 2
  • Man looking at light bulbs

    Takeaways from Verizon's data breach report

    Despite all of the fervor and money that's being directed at government cybersecurity, a more immediately effective remedy might be to tighten up on information handling processes and procedures and general data hygiene.

  • Man blamed for using open source

    In the wake of Heartbleed, open source software is under scrutiny

    Open source software is not inherently more risky than proprietary, but you should be involved if you use it. “If it’s open source and it’s not secure, it’s partly your fault.”

    Comments: 1
  • Firefighter working on containment

    Is limiting damage the best hope for cybersecurity?

    With forecasts of more frequent, sophisticated and targeted attacks, government's best bet might be to limit the damage rather than trying to prevent the threats completely.

  • Decorated veteran in a parade

    Making IT security a priority at VA

    In the wake of 16 years of information security problems at the Veterans Affairs Department, Congress is considering legislation to focus management attention on the sprawling department's struggling security program.