Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in January 2014
<<   <   Page 2 / 2
Rogue Wave Software Acquires Source Code Analysis Vendor Klocwork
Products and Releases  |  1/9/2014  | 
Klocwork offers tools that analyze source code on-the-fly, simplify peer code reviews, and extend the life of complex software
Tripwire Announces Technology Partnership With CORE Security
Products and Releases  |  1/9/2014  | 
Partnership provides threat and vulnerability risk management to mutual customers
Barracuda Networks Launches Backup-As-A-Service
Products and Releases  |  1/9/2014  | 
New service gives customers an alternate method of purchasing Barracuda Backup
SANS Announces Results Of Its 2013 Securing The Internet Of Things Survey
Products and Releases  |  1/9/2014  | 
Call on vendors to take responsibility for securing devices
Spiceworks Rolls Out New Version Of Its Free IT Management Application
Products and Releases  |  1/8/2014  | 
Version 7.1 includes performance enhancements to IT inventory, help desk, and mobile device management capabilities
Arbor Networks Appoints Matthew Moynahan President
Products and Releases  |  1/8/2014  | 
Prior to joining Arbor Networks, Moynahan was president and chief executive officer of Veracode
HBGary Announces Next-Gen Responder Pro
Products and Releases  |  1/8/2014  | 
Responder Pro 2.1 detects never rootkits, Trojans, and other malware invisible to antivirus and IOC scanners
Nok Nok Labs/AGNITiO Voice Authentication Demonstration
Products and Releases  |  1/8/2014  | 
Demo showed how Voice iD and Nok Nok Labs' Multifactor Authentication Client can be integrated into a mobile application to perform voiceprint-based strong authentication
CounterTack Unveils Next Generation Of Sentinel For Endpoint Threat Detection And Response
Products and Releases  |  1/7/2014  | 
Platform provides deep behavioral analysis of persistent attacks
Commtouch Renamed CYREN
Products and Releases  |  1/7/2014  | 
New name signals transformation into a cloud-based information security solution provider
Hoyos Labs Issues Biometric Open Protocol Standard For Safer Authentication
Products and Releases  |  1/7/2014  | 
BOPS comprises a set of rules that govern secure communications among a variety of client devices
SANS Investigative Forensic Toolkit (SIFT) Workstation Version 3.0 To Debut At DFIRCON
Products and Releases  |  1/7/2014  | 
SIFT 3.0 is a group of free open-source forensic tools designed to perform detailed digital forensic examinations
BlackBerry Makes New Investment In Security Innovation Center In The Washington, D.C. Area
Products and Releases  |  1/7/2014  | 
Center will serve as a hub for collaboration with key government customers and other partners
Palo Alto Networks Announces First Acquisition
Products and Releases  |  1/7/2014  | 
Morta Security is a stealth-mode startup developing a new paradigm to counter advanced cyberthreats
SnoopWall For Android App Now Available
Products and Releases  |  1/6/2014  | 
SnoopWall provides cybersecurity, personal privacy, granular management of Apps Permissions and device data ports on Android phones and devices
Microsoft Shares BYOD Best Practices For Enterprise Workers
Products and Releases  |  1/6/2014  | 
Infographic depicts a scenario of an enterprise worker who has just received a new tablet during the holidays
Milton Security Introduces Secure WiFi Small Business Bundle
Products and Releases  |  1/6/2014  | 
Bundle priced as a leased capability or as a purchasable product
NexQloud To Bolster Cloud Privacy and DDoS Protection With Perfect Forward Secrecy And SSL Modes
Products and Releases  |  1/6/2014  | 
NexQloud offers three SSL modes for advanced security protection and performance acceleration
<<   <   Page 2 / 2


News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-27180
PUBLISHED: 2021-04-14
An issue was discovered in MDaemon before 20.0.4. There is Reflected XSS in Webmail (aka WorldClient). It can be exploited via a GET request. It allows performing any action with the privileges of the attacked user.
CVE-2021-27181
PUBLISHED: 2021-04-14
An issue was discovered in MDaemon before 20.0.4. Remote Administration allows an attacker to perform a fixation of the anti-CSRF token. In order to exploit this issue, the user has to click on a malicious URL provided by the attacker and successfully authenticate into the application. Having the va...
CVE-2021-27182
PUBLISHED: 2021-04-14
An issue was discovered in MDaemon before 20.0.4. There is an IFRAME injection vulnerability in Webmail (aka WorldClient). It can be exploited via an email message. It allows an attacker to perform any action with the privileges of the attacked user.
CVE-2021-27183
PUBLISHED: 2021-04-14
An issue was discovered in MDaemon before 20.0.4. Administrators can use Remote Administration to exploit an Arbitrary File Write vulnerability. An attacker is able to create new files in any location of the filesystem, or he may be able to modify existing files. This vulnerability may directly lead...
CVE-2021-29449
PUBLISHED: 2021-04-14
Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. Multiple privilege escalation vulnerabilities were discovered in version 5.2.4 of Pi-hole core. See the referenced GitHub security advisory for details.