How to audit Windows Task Scheduler to detect attacks

InfoWorld - Wed, 03/20/2019 - 6:00am
Learn how to prevent attackers from using Task Scheduler to hide and set up tasks to access Windows systems.
Categories: InfoWorld

2 security tricks your cloud provider won’t tell you

InfoWorld - Tue, 03/12/2019 - 6:00am

Cloudops (cloud operations) and secops (security operations) are quickly evolving practices. While I’m seeing some errors, what’s more common is that ops teams are leaving important things out. If these missing aspects are not addressed, secops will become problematic quickly.

Here are two secops omissions that you can deal with today, even though your public cloud provider won’t tell you about, won’t be on any certification, and is typically widely misunderstood.

[ IDG Research: The state of the cloud: How enterprise adoption is taking shape. | Keep up with the latest developments in cloud computing with InfoWorld’s Cloud Computing newsletter. ] Link secops monitoring to govops monitoring

Both secops and govops (governance operations) need to be proactive, meaning that they need to adjust based on changing threats in the case of secops, and changing policies in the case of govops.

To read this article in full, please click here

Categories: InfoWorld

Huawei’s possible lawsuit, ransomware readiness, old malware resurfaces | TECH(feed)

InfoWorld - Tue, 03/05/2019 - 3:00pm
The ongoing battle between the U.S. and Huawei could soon go to court as Huawei reportedly prepares to sue the U.S. government. Plus, 2019 will see ride sharing companies going public… but which will be first? And as a decade-old malware resurfaces in enterprise networks, a report questions if the world is ready for the next large-scale ransomware attack.
Categories: InfoWorld

How to address IoT’s two biggest challenges: data and security

InfoWorld - Tue, 03/05/2019 - 6:00am

You don’t even need to Google “data growth and IoT” to see the trend for the internet of things; all research shows a steep curve up and to the right. The reason is pretty simple: We’re collectively trying to capture fine-grained, ongoing, machine-generated data from a fast-growing universe of devices because the more data, the better the analyses are possible from that data.

At the same time, it’s clear that security for IoT mostly takes a backseat to everything else. Indeed, half the IoT systems I’ve seen in the last few years have little security to no security at all, cloud-based or not.

[ Read the InfoWorld reviews: Amazon eases developers into IoT. | Azure brings IoT to .Net developers. | Stay up on cloud happenings with InfoWorld’s Cloud Computing Report newsletter. ]

So there are two major challenges with IoT in the cloud: The rapid growth of data, and the lack of IoT data security.

To read this article in full, please click here

Categories: InfoWorld