Risk
11/21/2012
12:57 PM
Elena Malykhina
Elena Malykhina
Slideshows
Connect Directly
RSS
E-Mail
50%
50%

Spy Tech: 10 CIA-Backed Investments

Check out some of the latest technologies to win funding from In-Q-Tel, the venture investment arm of the CIA and other intelligence agencies. That's the first step toward use by agents and analysts.
Previous
4 of 10
Next


Emerging cyber threats are high on the Intelligence Community's priority list. In September, In-Q-Tel partnered with Tenable Network Security, a provider of security tools for vulnerability detection and management, continuous monitoring, and risk management. The company's customers include the Department of Defense and several federal agencies. The deal should help intelligence agencies build stronger defenses to protect classified information.

Credit: Tenable Network Security

Recommended Reading:

Fix The Fear Factor In Government Innovation

Secret Spy Satellite Takes Off: Stunning Images

Weaponized Bugs: Time For Digital Arms Control

Top 15 Government Innovators For 2012

NASA's IT Future: Robot Telework, 3-D Printing

Military Transformers: 20 Innovative Defense Technologies

How The Feds Drive Cloud Innovation

Previous
4 of 10
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Leo Regulus
50%
50%
Leo Regulus,
User Rank: Apprentice
11/26/2012 | 8:40:26 PM
re: Spy Tech: 10 CIA-Backed Investments
Unfortunate article format. I can't read it. That also means that I don't see, or click on your sponsors' ads.
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6117
Published: 2014-07-11
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

CVE-2014-0174
Published: 2014-07-11
Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

CVE-2014-3485
Published: 2014-07-11
The REST API in the ovirt-engine in oVirt, as used in Red Hat Enterprise Virtualization (rhevm) 3.4, allows remote authenticated users to read arbitrary files and have other unspecified impact via unknown vectors, related to an XML External Entity (XXE) issue.

CVE-2014-3499
Published: 2014-07-11
Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

CVE-2014-3503
Published: 2014-07-11
Apache Syncope 1.1.x before 1.1.8 uses weak random values to generate passwords, which makes it easier for remote attackers to guess the password via a brute force attack.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.