Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Perimeter posted in May 2006
AirTight's Security MOM
News  |  5/31/2006  | 
AirTight eyes large enterprise market with its latest release
Fortinet Thinks Big
News  |  5/30/2006  | 
The security company has big designs on the carrier market but no immediate plans for an IPO
Aerospace, Feds Activate PKI Bridge
News  |  5/24/2006  | 
The US Federal government and the aerospace industry are giving new life to PKI, building a bridge certificate authority to ease federated identity management
ServGate Acquired in Fire Sale
News  |  5/24/2006  | 
Cirond bought the security startup's intellectual property as part of foreclosure sale
Light Reading Gets Turked
News  |  5/22/2006  | 
Thanks to a hack from Japan, visitors to Light Reading and some other sites operated by CMP were redirected to a Turkish music and entertainment site
Custom Trojans: The Next Big Thing
News  |  5/19/2006  | 
Zombies and bots are just the opening parries from an emerging form of malware
AirMagnet: Life Beyond Security
News  |  5/18/2006  | 
Vendor broadens focus in anticipation of a shakeout in wireless intrusion detection market
Wanadooops! Flaw Reveals User Data
News  |  5/18/2006  | 
Indexing flaw in the systems of Europe's top broadband ISP reveals personal data of many UK customers
Fortinet Scoops Up CoSine IP
News  |  5/18/2006  | 
Vendor buys intellectual property of CoSine's virtualized firewall/VPN platform
PacketMotion Ups Management IQ
News  |  5/16/2006  | 
Identity Intelligence 2.1 to provide better view of network user activities
House Has New Crime Bill
News  |  5/12/2006  | 
Broader, tougher computer crime legislation is proposed by members of the US House of Representatives
Wave After TPM Wave
News  |  5/11/2006  | 
Wave Systems' Embassy Trust Suite 5.1 offers new authentication methods, file-level encryption for PCs
CipherOptics Encrypts Ethernet
News  |  5/9/2006  | 
Firm readies Layer 2 encryption for metro-area Ethernet, seeking to reduce the latency of traditional IPSec-based VPNs
Cymphonix Tunes Security Management
News  |  5/3/2006  | 
New DC30s handle correlation of user, application activity; malware threats; and content filtering
Bank Looks for Anomalies
News  |  5/3/2006  | 
Investment bank Thomas Weisel Partners has decided to forego intrusion detection systems in favor of anomaly detection


NSA Appoints Rob Joyce as Cyber Director
Dark Reading Staff 1/15/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-21238
PUBLISHED: 2021-01-21
PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Signature wrapping bec...
CVE-2021-21239
PUBLISHED: 2021-01-21
PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ...
CVE-2021-21253
PUBLISHED: 2021-01-21
OnlineVotingSystem is an open source project hosted on GitHub. OnlineVotingSystem before version 1.1.2 hashes user passwords without a salt, which is vulnerable to dictionary attacks. Therefore there is a threat of security breach in the voting system. Without a salt, it is much easier for attacker...
CVE-2020-4966
PUBLISHED: 2021-01-21
IBM Security Identity Governance and Intelligence 5.2.6 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the...
CVE-2020-4968
PUBLISHED: 2021-01-21
IBM Security Identity Governance and Intelligence 5.2.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 192427.