Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in February 2017
SS8 BreachDetect Helps Uncover Breaches Without Forensics Expertise
Products and Releases  |  2/27/2017  | 
New timeline views of the cyber kill chain and simplified explanations complement severity-ranked threat detection.
Ziften Launches Platform to Protect Enterprise Devices, Data Centers, Cloud
Products and Releases  |  2/27/2017  | 
New security architecture enables endpoint discovery, protection, and forensics for enterprise networks.
Cisco Helps Eliminate Performance and Protection Trade-Offs with Next-Generation Firewall for the Internet Edge
Products and Releases  |  2/22/2017  | 
Cisco Helps Businesses Eliminate Performance and Protection Trade-Offs with Next-Generation Firewall for the Internet Edge
80% of IT, Security Pros Claim to Use Outmoded Collaboration Tools
Products and Releases  |  2/22/2017  | 
New research from Intralinks and the Cloud Security Alliance identifies three key obstacles to content-driven digital transformation and data privacy compliance.
KPMG Offers Flat-Rate Automated Tool For Cyber Investigations
Products and Releases  |  2/21/2017  | 
KPMG Digital Responder automates cyber response from the point of collection to reporting, significantly reducing cost and time of cyber investigations
BT, Symantec Partner On Network Traffic Protection, Security Management
Products and Releases  |  2/21/2017  | 
BT and Symantec join forces to improve cloud security and simplify network administration for customers.
Symantec Releases Platform To Address Cloud Security Challenges
Products and Releases  |  2/21/2017  | 
The Symantec Cloud Security Platform ensures information security and protects against threats across the cloud spectrum.
Intercom Launches Bugcrowd Bug Bounty Program
Products and Releases  |  2/16/2017  | 
Bugcrowds curated crowd, simple-to-use platform and deep program expertise helps Intercom to secure customer data.
Intel Security's Unifying Strategy Mends Cybersecurity Fragmentation
Products and Releases  |  2/15/2017  | 
The strategy brings integrated and automated solutions, a broader partner ecosystem, and advanced architecture with cross-industry collaboration.
TrapX Deepens Deception Capabilities with DeceptionGrid 6.0
Products and Releases  |  2/15/2017  | 
The newest version brings Deception-in-Depth architecture, featuring a full OS that can replicate a production environment while increasing attack visualization.
FireEye Announces Endpoint Exploit Prevention, Anti-Virus Replacement
Products and Releases  |  2/15/2017  | 
Anti-virus integration, exploit guard enhancements, and Mac support to offer an endpoint protection platform in 2017 via free subscriber updates.
TopSpin Wins 2017 Cybersecurity Excellence Award For Threat Detection, Intelligence, Response
Products and Releases  |  2/14/2017  | 
TopSpin's DECOYnet intelligent deception and detection platform was voted as a winner by members of the information security community.
Security Skills Gap Leaves 1 In 4 Businesses Exposed For 6 Months Or Longer
Products and Releases  |  2/14/2017  | 
At this year's RSA Conference, ISACA will discuss how to address the growing skills gap as the demand for qualified cybersecurity professionals continues to outstrip supply.
Thales Addresses Business Encryption Key Governance For Microsoft Azure
Products and Releases  |  2/14/2017  | 
Key management-as-a-service (KMaaS)meets enterprise needs for direct control of encryption keys.
Thales Supports Customer-Supplied Encryption Keys on Google Cloud
Products and Releases  |  2/14/2017  | 
The nShield HSM "bring your own key" is now available for Google customers supplying keys.
25 Percent of Web Apps Still Vulnerable to Eight of the OWASP Top Ten
Products and Releases  |  2/14/2017  | 
Research from Contrast Security also finds that 80 Percent of software applications aad at least one vulnerability
ExtraHop Introduces Cloud-Based Machine Learning for Cybersecurity, Data-Driven IT
Products and Releases  |  2/14/2017  | 
New SaaS Offering Delivers Intelligent Performance and Security Alerting to Cut Through the Noise and Keep IT Focused on Improving the Digital Experience
Recorded Future Expands Threat Intelligence Solution
Products and Releases  |  2/14/2017  | 
Armed With All-Source Insight Powered by Machine Learning in a Unified Solution, Analysts Can Investigate Emerging Threats Up to 10x Faster
Aruba Extends Security Leadership for the Intelligent Edge with Niara
Products and Releases  |  2/14/2017  | 
UEBA Enhancements Help Reduce Security Team Anxieties by Accelerating Detection and Response for Internally Targeted Attacks
Untangle Partners with FlashRouters to Distribute Revolutionary Firmware
Products and Releases  |  2/14/2017  | 
Full Next-Generation Firewall Features Now Available on Popular Linksys Router.
Untangle Introduces Cloud-Based Centralized Management
Products and Releases  |  2/13/2017  | 
Command Center Enables Remote Management of NG Firewall Deployments
SentinelOne Enhances Machine Learning For Endpoint Security Platform
Products and Releases  |  2/11/2017  | 
A new deep file inspection engine predicts threats before they execute and sets new standards for pinpoint accuracy.
Domain Name Association Unveils Healthy Domain Practices
Products and Releases  |  2/11/2017  | 
The Healthy Domains initiative establishes voluntary practices aimed at safeguarding the evolution of the domain name system and defines self-regulation measures.
Evident.io Secures $22 Million in Series C Funding Led By GV
Products and Releases  |  2/11/2017  | 
Funding will accelerate a multi-cloud strategy and grow the sales team to support demand for cloud cybersecurity and compliance.
Cyren Announces Integrated Internet Security as a Service Platform
Products and Releases  |  2/11/2017  | 
The platform unifies Web security, email security, DNS security, and cloud sandboxing on a single cloud platform.
LogicHub Raises $8M For Security Intelligence Automation Platform
Products and Releases  |  2/11/2017  | 
New technology scales human analyst capabilities for more effective threat detection, and reduces the chance of a missed breach.
Active Directory Mismanagement Exposes 90% of Businesses to Breaches
Products and Releases  |  2/9/2017  | 
New analysis indicates active directory mismanagement unknowingly exposes 90% of businesses to security breaches.
Dave DeWalt Joins Claroty as Board Chairman
Products and Releases  |  2/9/2017  | 
Industry icon prioritizes safety and security of critical infrastructure as next focus; Claroty continues major market momentum
Vera Announces Vera For Mail
Products and Releases  |  2/9/2017  | 
Data-Centric Security Company Launches Vera for Mail to Protect the Confidentiality of Email Messages and Attachments
Introducing Capsule8: Container-Aware, Real-time Threat Protection for Linux
Products and Releases  |  2/8/2017  | 
Founded by Renowned Security Veterans and Funded by Bessemer Venture Partners
Portnox Reveals Latest Cloud-based NAC for IoT, BYOD Corporate Networks
Products and Releases  |  2/7/2017  | 
Portnox CLEAR solution to be demoed via Microsoft HoloLens at RSA 2017
Exabeam Secures $30 Million in Series C Funding to Disrupt SIEM market
Products and Releases  |  2/7/2017  | 
Leverages Strength in UEBA to Create Analytics and Response Platform
New Endpoint Threat Detection and Response Service to Boost WatchGuard's Network Security Suite
Products and Releases  |  2/6/2017  | 
New ThreatSync correlation and scoring engine automates malware detection and remediation with real-time data from networks, endpoints and cloud intelligence.
Vectra Teams with Carbon Black on AI-Powered Threat Response
Products and Releases  |  2/6/2017  | 
Unified solution delivers security-analyst-in-software capabilities to fill enterprise cybersecurity roles in the midst of a global shortage of skilled professionals.
Research Report: Majority of Organizations Are in the Dark about Daily Network Attacks
Products and Releases  |  2/6/2017  | 
A quarter of enterprises experienced a breach in the past year, pointing to a reliance on multiple systems, limited budget and staff.


SOC 2s & Third-Party Assessments: How to Prevent Them from Being Used in a Data Breach Lawsuit
Beth Burgin Waller, Chair, Cybersecurity & Data Privacy Practice , Woods Rogers PLC,  12/5/2019
Cybersecurity Team Holiday Guide: 2019 Gag Gift Edition
Ericka Chickowski, Contributing Writer,  12/2/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-19645
PUBLISHED: 2019-12-09
alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements.
CVE-2019-19678
PUBLISHED: 2019-12-09
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the generic field entry point via the Generic Test Definition field of a new Generic Test issue.
CVE-2019-19679
PUBLISHED: 2019-12-09
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the Pre-Condition Summary entry point via the summary field of a Create Pre-Condition action for a new Test Issue.
CVE-2019-19647
PUBLISHED: 2019-12-09
radare2 through 4.0.0 lacks validation of the content variable in the function r_asm_pseudo_incbin at libr/asm/asm.c, ultimately leading to an arbitrary write. This allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted input.
CVE-2019-19648
PUBLISHED: 2019-12-09
In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, command_size may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, resulting in Denial of Service (application crash) or potential code execution.