Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in April 2021
Kaspersky: Targeted Ransomware Grows Nearly 800%
Products and Releases  |  4/23/2021  | 
Deep Instinct Receives $100 Million in Series D Funding
Products and Releases  |  4/22/2021  | 
Trend Micro Revamps Partner Program
Products and Releases  |  4/22/2021  | 
Netacea Releases "Buying Bad Bots Wholesale: The Genesis Market" Report
Products and Releases  |  4/22/2021  | 
New report uncovers the tactics used to steal and sell genuine digital fingerprints on the most popular deep web marketplace.
Former Google Security Execs Join Red Canary
Products and Releases  |  4/21/2021  | 
Cynet Activates Competitive Replacement Program for Customers Migrating to Cynet 360 XDR Platform
Products and Releases  |  4/20/2021  | 
Under new initiative, organizations receive software at no charge until end of competitive product contract period.
Sift Streamlines Digital Trust & Safety Suite to Protect Merchants Against the Fraud Economy
Products and Releases  |  4/20/2021  | 
New features deliver more control, transparency, and connection to combat fraud and accelerate growth.
Zerto Announces General Availability of Zerto for Kubernetes and New Public Cloud Capabilities
Products and Releases  |  4/20/2021  | 
Unlocking continuous cloud protection for hybrid, public, and native cloud workloads.
Zerto Announces Zerto Backup for SaaS, Powered by Keepit
Products and Releases  |  4/20/2021  | 
Protects data against accidental deletion, ransomware attacks, reduces compliance errors, and improves recoverability.
Zscaler Advances Zero Trust Security for the Digital Business
Products and Releases  |  4/20/2021  | 
Security Innovations, Resources for CxOs and IT Practitioners, and Zero Trust Deployment Programs Overcome Security Barriers to Accelerate Digital Transformation
Mastercard to Acquire Ekata to Advance Digital Identity Efforts
Products and Releases  |  4/19/2021  | 
New capabilities strengthen trust in every interaction through AI-powered identity verification reinforced by commitment to strong data management principles.
Kasada and GreyNoise Team up to Identify Which Potential Threats Demand Immediate Attention
Products and Releases  |  4/16/2021  | 
Collaboration Brings Together Leading Internet Noise Detection and Bot Mitigation Companies, Providing Free Access to Real-Time Scanner, Attack and Bot Threat Information
$125M Growth Round Fuels Keyfactor & PrimeKey Merger to Bring Machine Identity Management to the Mainstream
Products and Releases  |  4/16/2021  | 
Merger between certificate automation and certificate authority providers set to impact IAM strategy for enterprises.
Cado Security Closes $10M in Funding to Accelerate Adoption of Cloud-Native Digital Forensics Platform
Products and Releases  |  4/16/2021  | 
Blossom Capital leads Series A investment round; Cado Security platform enables security teams to effectively investigate and respond to cyber incidents at cloud speed.
Vital Pandemic Industries Foster Unprecedented DDoS Attack Activity, NETSCOUT Threat Intelligence Report Finds
Products and Releases  |  4/14/2021  | 
Record-setting 10 million-plus DDoS attacks and 22% increase in attack frequency; WISR survey findings reinforce impact of global DDoS extortion attack campaign.
1Password Launches Secrets Automation & Makes Acquisition to Protect Infrastructure Secrets
Products and Releases  |  4/14/2021  | 
1Password expands focus to protect both human and machine secrets for companies worldwide.
Invicti Security Reports on Lost Year in Web Application Security
Products and Releases  |  4/14/2021  | 
Covid-19, remote work, and economic headwinds interrupted progress, putting businesses and consumers at risk.
SafeGuard Cyber Raises $45M In Strategic Growth Financing Led By NightDragon
Products and Releases  |  4/13/2021  | 
Digital risk protection platform secures communications across all third-party social media, collaboration, and mobile chat channels.
CloudKnox Uncovers Permissions Gap Across Enterprise Hybrid & Multi-Cloud Environments
Products and Releases  |  4/13/2021  | 
Industrys first State of Cloud Entitlements Report reveals significant security risk with more than 90% of organizations using less than 5% of permissions granted.
Beyond Identity Integration With Auth0 Enables Completely Passwordless Authentication
Products and Releases  |  4/13/2021  | 
Beyond Identity now available on Auth0 Marketplace to eliminate user friction and credential-based attacks.
Lookout Launches New Global Channel Program
Products and Releases  |  4/9/2021  | 
ThreatQuotient Closes $22.5 Million in New Financing
Products and Releases  |  4/7/2021  | 
Andy Ellis Named Operating Partner at YL Ventures
Products and Releases  |  4/7/2021  | 
VMware Expands Into Container Security
Products and Releases  |  4/7/2021  | 
Announcing Zero Trust Authentication for Managed Devices & BYOD
Products and Releases  |  4/6/2021  | 
Beyond Identity now integrates with Jamf, Microsoft Intune, and VMware Workspace ONE UEM, collecting additional device attributes to further expand risk-based authentication decisions.
ThreatQuotient Closes $22.5M in New Financing to Accelerate Innovation & Execution
Products and Releases  |  4/6/2021  | 
Continued momentum in 2020 including record bookings, new customers and revenue growth garners attention of new investors.


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Practical Network Security Approaches for a Multicloud, Hybrid IT World
The report covers areas enterprises should focus on for their multicloud/hybrid cloud security strategy: -increase visibility over the environment -learning cloud-specific skills -relying on established security frameworks -re-architecting the network
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-30333
PUBLISHED: 2022-05-09
RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file. NOTE: WinRAR and Android RAR are unaffected.
CVE-2022-23066
PUBLISHED: 2022-05-09
In Solana rBPF versions 0.2.26 and 0.2.27 are affected by Incorrect Calculation which is caused by improper implementation of sdiv instruction. This can lead to the wrong execution path, resulting in huge loss in specific cases. For example, the result of a sdiv instruction may decide whether to tra...
CVE-2022-28463
PUBLISHED: 2022-05-08
ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow.
CVE-2022-28470
PUBLISHED: 2022-05-08
marcador package in PyPI 0.1 through 0.13 included a code-execution backdoor.
CVE-2022-1620
PUBLISHED: 2022-05-08
NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim prior to 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allows attackers to cause a denial of service (application crash) via a crafted input.