Threat Intelligence

Threat Hunting: Going After The Big Game

100%
0%

It's Jian Zhen's turn at the News Desk, as the senior VP of product for Endgame discusses the company's automated hunting platform for detecting and evicting event adversaries. It doesn't require a trip to the jungle: Endgame has added pre-exploit detection, malware scoring, and automated investigation to its services. We also discuss HaaS (Hunting as a Service), which is a managed service for organizations that lack the security talent to detect threats before they happen.

Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
randallsykes
100%
0%
randallsykes,
User Rank: Apprentice
7/19/2017 | 4:03:52 PM
Website Design
Good post/video. I'll be checking out the other content on this site as well, very informative.
Rico777
50%
50%
Rico777,
User Rank: Apprentice
2/21/2017 | 10:05:29 AM
Good video
Very interesting video, thank you so much
SEO Marketing
50%
50%
SEO Marketing,
User Rank: Apprentice
1/12/2017 | 2:48:19 PM
SEO Marketing
I like this site.  You can learn a lot here.  Thanks!
Benefiter
50%
50%
Benefiter,
User Rank: Apprentice
11/12/2016 | 10:06:47 AM
Re:
Fine post. Thanks, I ll follow the next one. Useful and interesting information.  
Lily652
50%
50%
Lily652,
User Rank: Moderator
11/12/2016 | 5:17:00 AM
prayer times
good video, interesting information, I also agree with all
Weaponizing IPv6 to Bypass IPv4 Security
John Anderson, Principal Security Consultant, Trustwave Spiderlabs,  6/12/2018
'Shift Left' & the Connected Car
Rohit Sethi, COO of Security Compass,  6/12/2018
Microsoft Fixes 11 Critical, 39 Important Vulns
Kelly Sheridan, Staff Editor, Dark Reading,  6/12/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-1060
PUBLISHED: 2018-06-18
python before versions 2.7.15, 3.4.9, 3.5.6 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method. An attacker could use this flaw to cause denial of service.
CVE-2018-1090
PUBLISHED: 2018-06-18
In Pulp before version 2.16.2, secrets are passed into override_config when triggering a task and then become readable to all users with read access on the distributor/importer. An attacker with API access can then view these secrets.
CVE-2018-1152
PUBLISHED: 2018-06-18
libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image.
CVE-2018-1153
PUBLISHED: 2018-06-18
Burp Suite Community Edition 1.7.32 and 1.7.33 fail to validate the server certificate in a couple of HTTPS requests which allows a man in the middle to modify or view traffic.
CVE-2018-12530
PUBLISHED: 2018-06-18
An issue was discovered in MetInfo 6.0.0. admin/app/batch/csvup.php allows remote attackers to delete arbitrary files via a flienamecsv=../ directory traversal. This can be exploited via CSRF.