Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in November 2019
Tanium Announces Key Platform Enhancements to Help Customers Achieve Visibility, Management & Security Across Endpoints
Products and Releases  |  11/25/2019  | 
Unified endpoint management and security breaks down organizational silos and provides IT teams with unprecedented visibility and control of their environment.
Allure Security Unveils Anti-Phishing Solution
Products and Releases  |  11/25/2019  | 
Patented Technology Provides Early Detection of Web Spoofing to Help Enterprises Preserve Brand Reputation
Qualys Brings its Vulnerability Management Solution to the Next Level
Products and Releases  |  11/25/2019  | 
Introducing VMDR: Vulnerability Management, Detection, and Response. VMDR delivers a continuous cycle of protection from a single pane of glass with built-in orchestration workflows and real-time vulnerability detection to prioritize, remediate, and audit across hybrid IT environments.
Financial Institutions on the Hook for Data Breaches this Holiday Shopping Season
Products and Releases  |  11/25/2019  | 
American consumers will hold financial institutions accountable for compromised data regardless of who's at fault; Banks stand to lose nearly half of customer base, according to new study from Terbium Labs
Trend Micro Announces Winners of Global Capture the Flag Event
Products and Releases  |  11/25/2019  | 
Fifth annual competition arms young professionals with critical industry skills.
Trend Micro Debuts Security Services Platform for Organizations Building Apps in the Cloud
Products and Releases  |  11/21/2019  | 
Trend Micro Cloud One automates and simplifies cloud security to give organizations the flexibility they need to meet their most strategic cloud priorities.
IBM Launches Open Technology to Speed Response to Cyber Threats Across Clouds
Products and Releases  |  11/21/2019  | 
Industry-first capability to hunt threats across security tools and clouds without moving data
Egnyte Announces New Layer In Its Industry-Leading Content Intelligence Engine
Products and Releases  |  11/20/2019  | 
Advanced Metadata Capabilities to Accelerate Data Discovery and Boost Security
Google Collaborates with Fortanix to Deliver External Key Management System for Public Cloud
Products and Releases  |  11/20/2019  | 
Businesses can migrate sensitive and private data to public cloud without giving up control of encryption keys.
Respond Software Launches First Responder Service to Automate Speed, Accuracy of MDR at Fraction of Cost
Products and Releases  |  11/19/2019  | 
New Service Combines Proprietary Detection and Investigation Software with Human First Responders
Research: A third of the world's largest enterprises use inadequate data sanitization to prevent data breaches at end-of-life
Products and Releases  |  11/19/2019  | 
Gaps in data sanitization knowledge and policies mean global enterprises are putting their organizations at risk of security and compliance breakdowns
NINJIO Introduces Security Awareness Training for SMBS
Products and Releases  |  11/19/2019  | 
Company offers a subscription to animated micro-learning videos to help protect organizations with less than 100 employees from cyberattacks.
Kaspersky: More Senior Execs Making Cyber Decisions
Products and Releases  |  11/14/2019  | 
Statistics support trend of IT security managers being a part of IT decision making discussions.
Trend Micro Launches Smart Factory Security Solutions
Products and Releases  |  11/13/2019  | 
Offerings designed to provide enhanced visibility and protection for embattled industrial control system (ICS) environments.
MITRE Engenuity Announces the Center for Threat-Informed Defense
Products and Releases  |  11/13/2019  | 
Thirteen organizations join Center as founding participants for R&D collaboration
Nuspire Security Researchers Discover 730% Increase in Emotet Activity
Products and Releases  |  11/13/2019  | 
Recent quarterly threat report highlights the return of Emotet activity throughout Q3
Cybrary Lands $15 Million in Series B Funding
Products and Releases  |  11/13/2019  | 
New Funding Propels Growth of Cybrarys Online Workforce Development Platform Being Utilized by Nearly 3 Million Cyber Pros Today
Siemplify Integrates MITRE ATT&CK Framework into Security Operations Platform
Products and Releases  |  11/12/2019  | 
The SOAR Provider aims to enable faster investigations and actionable insights by mapping with the global repository of attacker tools and techniques.
Cybervore Changes Direction, Introduces Fragglestorm
Products and Releases  |  11/12/2019  | 
A new cybersecurity tool aims to protect data from breaches and ransomware.
Jamf Launches Jamf Protect, Enterprise Endpoint Protection Built for Mac
Products and Releases  |  11/12/2019  | 
Jamf Protect uses native Apple security tools and on-device analysis to give security teams visibility into their Mac fleet.
Fortress Launches Collaboration to Help Protect the Power Grid from Cyber Threats
Products and Releases  |  11/8/2019  | 
Fortress Information Security launches the Asset to Vendor Network (A2V), a new platform where electric energy companies can collectively help reduce the costs of protecting the U.S. power grid from cyber threats.
CISA Releases Cyber Essentials for Small Businesses and Governments
Products and Releases  |  11/7/2019  | 
Set of cybersecurity best practices will enhance the nation's collective defense against cyber threats.
Cyxtera Technologies Announces Spin Out of Cybersecurity Business
Products and Releases  |  11/6/2019  | 
New company powers comprehensive secure access and anti-fraud solutions with offensive expertise Mike Aiello appointed CEO of AppGate Inc.
Adaptiva's Evolve VM Now Scans for Every Vulnerability in the National Vulnerability Database Within 15 Minutes
Products and Releases  |  11/4/2019  | 
Enterprises Protected by Unmatched Speed and Scale With Industry's First Complete Life Cycle Vulnerability Management Product
Fewer than half of cybersecurity professionals have a plan in place to deal with IoT attacks, despite the fact that ninety percent worry about future threats
Products and Releases  |  11/1/2019  | 
New study from Neustar finds that 48% of organizations reported experiencing an attack on connected devices in the last year alone


COVID-19: Latest Security News & Commentary
Dark Reading Staff 7/2/2020
Ripple20 Threatens Increasingly Connected Medical Devices
Kelly Sheridan, Staff Editor, Dark Reading,  6/30/2020
DDoS Attacks Jump 542% from Q4 2019 to Q1 2020
Dark Reading Staff 6/30/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
The Threat from the Internetand What Your Organization Can Do About It
The Threat from the Internetand What Your Organization Can Do About It
This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-9498
PUBLISHED: 2020-07-02
Apache Guacamole 1.1.0 and older may mishandle pointers involved inprocessing data received via RDP static virtual channels. If a userconnects to a malicious or compromised RDP server, a series ofspecially-crafted PDUs could result in memory corruption, possiblyallowing arbitrary code to be executed...
CVE-2020-3282
PUBLISHED: 2020-07-02
A vulnerability in the web-based management interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an unauthenticated, remote attack...
CVE-2020-5909
PUBLISHED: 2020-07-02
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, when users run the command displayed in NGINX Controller user interface (UI) to fetch the agent installer, the server TLS certificate is not verified.
CVE-2020-5910
PUBLISHED: 2020-07-02
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized.
CVE-2020-5911
PUBLISHED: 2020-07-02
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller installer starts the download of Kubernetes packages from an HTTP URL On Debian/Ubuntu system.