About

Latest security certification news


‘We don’t teach devs how to write secure software’

Linux Foundation’s David A Wheeler on reversing the CVE surge14 October 2022‘We don’t teach devs how to write secure software’Linux Foundation’s David A Wheeler on reversing the CVE surge

Infosec beginner?

A rough guide to launching a career in cybersecurity07 September 2022Infosec beginner?A rough guide to launching a career in cybersecurity

Legitimate hacking activities under UK law proposed by ‘expert consensus’

16 August 2022Legitimate hacking activities under UK law proposed by ‘expert consensus’Contentious edge case activities are no excuse for further delaying of ‘much overdue’ reform, say campaigners

HID Mercury access control vulnerabilities leave door open to lock manipulation

14 June 2022HID Mercury access control vulnerabilities leave door open to lock manipulationManufacturer addresses threat to integrity and availability of products sold to more than 20 OEM vendors

Securing the supply chain

NIST refreshes risk management guidance for orgs11 May 2022Securing the supply chainNIST refreshes risk management guidance for orgs

Pressing issue

WordPress sites getting hacked ‘within seconds’ of TLS certs being issued06 May 2022Pressing issueWordPress sites getting hacked ‘within seconds’ of TLS certs being issued

‘Dangerous trend’

EU web authentication plan threatens to undercut browser-led certification system, say detractors30 March 2022‘Dangerous trend’ EU web authentication plan threatens to undercut browser-led certification system, say detractors

Women in infosec

Aspiring pros need role models and collective strength, industry panel hears08 March 2022Women in infosecAspiring pros need role models and collective strength, industry panel hears

Alan Paller

Infosec world pays homage after SANS founder dies12 November 2021Alan PallerInfosec world pays homage after SANS founder dies

Infosec skills gap widens in all regions bar Asia-Pacific

26 October 2021Infosec skills gap widens in all regions bar Asia-PacificOverall worldwide shortfall shrinks 400k to 2.7m unfilled positions

NSA warns of heightened wildcard TLS certificate risk

12 October 2021NSA warns of heightened wildcard TLS certificate riskWild Alpaca peril

APNIC stations

Asia-Pacific internet registry says WHOIS admin passwords were exposed for three months22 June 2021APNIC stationsAsia-Pacific internet registry says WHOIS admin passwords were exposed for three months

Get the message

Organizations without VDPs failing to address researchers’ security warnings03 June 2021Get the messageOrganizations without VDPs failing to address researchers’ security warnings

UK Computer Misuse Act

Lord Chris Holmes CBE on the CyberUp campaign’s call to overhaul ‘archaic’ legislation30 April 2021UK Computer Misuse ActLord Chris Holmes CBE on the CyberUp campaign’s call to overhaul ‘archaic’ legislation

ExpertCyber

French certification scheme for infosec service providers off to promising start31 March 2021ExpertCyberFrench certification scheme for infosec service providers off to promising start

‘In security, every problem is different’

Offensive Security’s Ning Wang on finding the next generation of infosec pros19 February 2021‘In security, every problem is different’Offensive Security’s Ning Wang on finding the next generation of infosec pros

EU funding initiative aims to boost cybersecurity sector

28 September 2020EU funding initiative aims to boost cybersecurity sector€10.5 million has been allocated as part of eurozone infrastructure development program

Testing, training, teamwork

Australian Cyber Collaboration Centre to open on July 115 June 2020Testing, training, teamworkAustralian Cyber Collaboration Centre to open on July 1

Coronavirus study

Cybersecurity professionals being sidetracked by home-working drive28 April 2020Coronavirus studyCybersecurity professionals being sidetracked by home-working drive

Remote learning

Carnegie Mellon University launches cybersecurity master’s course30 March 2020Remote learningCarnegie Mellon University launches cybersecurity master’s course

Incident response

How security certification and training orgs are tackling the coronavirus disruption19 March 2020Incident responseHow security certification and training orgs are tackling the coronavirus disruption

‘We’re our own focus group’

Ning Wang on certification, training, and keeping Kali Linux on top03 March 2020‘We’re our own focus group’Ning Wang on certification, training, and keeping Kali Linux on top

SwigCast, Episode 5: EDUCATION

Does a university degree make for better pen testers? 25 February 2020SwigCast, Episode 5: EDUCATIONDoes a university degree make for better pen testers?

BSides Leeds: Security industry must improve ties with academia

28 January 2020BSides Leeds: Security industry must improve ties with academiaEducation, the skills gap, and learning on the job

Finland launches cybersecurity label for IoT devices

27 November 2019Finland launches cybersecurity label for IoT devices‘Buy smart, not blind’

Growing the cybersecurity workforce

(ISC)² releases annual report on bridging the skills gap07 November 2019Growing the cybersecurity workforce(ISC)² releases annual report on bridging the skills gap

Bridging the skills gap

(ISC)² launches Professional Development Institute14 February 2019Bridging the skills gap(ISC)² launches Professional Development Institute

Shipshape and Bristol fashion

New partnership aims to address maritime cybersecurity woes27 November 2018Shipshape and Bristol fashionNew partnership aims to address maritime cybersecurity woes

‘Security is not just an application, it’s a lifestyle’

Allen Dillon, vice president of CyberNB, discusses the launch of the Cyber Essentials Canada certification program18 January 2018‘Security is not just an application, it’s a lifestyle’Allen Dillon, vice president of CyberNB, discusses the launch of the Cyber Essentials Canada certification program

US lawmakers back IoT certification program

Proposed Cyber Shield Act aims to help consumers identify most secure products27 October 2017US lawmakers back IoT certification programProposed Cyber Shield Act aims to help consumers identify most secure products

Crest rolls out threat intelligence analyst certification

Industry accreditation body sets the bar for threat intel professionals03 October 2017Crest rolls out threat intelligence analyst certificationIndustry accreditation body sets the bar for threat intel professionals