Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in May 2019
Cyber Ireland announced by IDA Ireland and Cork Institute of Technology
Products and Releases  |  5/31/2019  | 
National cyber security cluster initiative is recruiting industry and higher education institutes.
FS-ISAC Survey: Nearly 75 Percent of Financial Institutions CISOs Plan to Ask for an Increase in Cybersecurity Investment
Products and Releases  |  5/29/2019  | 
Only four percent of financial institutions prioritize employee education and training in existing budgets
2019 State of Enterprise Secure Access Report
Products and Releases  |  5/23/2019  | 
A full 61% of IT organizations surveyed have little to modest confidence in their ability to mitigate access security threats, despite a majority significantly increasing their near-term budget.
Infocyte Launches Agentless Cloud Workload Protection Platform, Strengthens Capabilities in AWS Environments
Products and Releases  |  5/22/2019  | 
Capabilities include agentless deployment via API, automated threat detection, and instant root cause analysis for certifying cloud workloads are clean and aecure.
Microsoft Joins MANRS to Improve Routing Security
Products and Releases  |  5/22/2019  | 
Hunters.AI Raises $5.4M Seed Round to Equip Cybersecurity Teams with Autonomous Threat Hunting Machine
Products and Releases  |  5/22/2019  | 
Utilizes unique military-grade attack intelligence, artificial intelligence and existing security data to deliver proactive, scalable and actionable attack detection
xMatters open-sources its Chaos Engineering tool
Products and Releases  |  5/16/2019  | 
Cthulhu automates cross-platform failure testing to help developers put better software into production and minimize downtime costs
Sectigo Sponsors Lets Encrypt to Enable Certificate Transparency Log Operation
Products and Releases  |  5/15/2019  | 
Commercial Certificate Authority Helps Ensure Fabric of CT Logs is Adequate for Worlds Certificate Needs
LogRhythm Releases Cloud-Based NextGen Security Information and Event Management (SIEM) Platform
Products and Releases  |  5/15/2019  | 
With LogRhythm Cloud, security analysts get the full experience of an award-winning platform with the benefits of Software as a Service (SaaS)
Semmle appoints its first CSO
Products and Releases  |  5/8/2019  | 
roduct security veteran Fermn Serna leaves Google to help secure all software by bringing the security and development communities together
Sumo Logic Completes $110 Million Funding Round
Products and Releases  |  5/8/2019  | 
Battery Ventures, Tiger Global Management and Franklin Templeton Sign on to Back Sumo Logics Industry Leading Continuous Intelligence Platform
Quad9 Offers Owners of Android-Based Devices DNS Security Protections for Free
Products and Releases  |  5/7/2019  | 
Privacy-centric DNS service blocks access to more than 15 million malicious events per day, limiting access to malware and phishing as well as encrypting private DNS data.
CrowdStrike Falcon Integrates Firmware Attack Detection Capability
Products and Releases  |  5/3/2019  | 
Endpoints protected by CrowdStrike Falcon will now gain continuous monitoring for firmware attacks
NSS Labs Appoints New Chief Executive Officer
Products and Releases  |  5/2/2019  | 


News
Former CISA Director Chris Krebs Discusses Risk Management & Threat Intel
Kelly Sheridan, Staff Editor, Dark Reading,  2/23/2021
Edge-DRsplash-10-edge-articles
Security + Fraud Protection: Your One-Two Punch Against Cyberattacks
Joshua Goldfarb, Director of Product Management at F5,  2/23/2021
News
Cybercrime Groups More Prolific, Focus on Healthcare in 2020
Robert Lemos, Contributing Writer,  2/22/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Building the SOC of the Future
Building the SOC of the Future
Digital transformation, cloud-focused attacks, and a worldwide pandemic. The past year has changed the way business works and the way security teams operate. There is no going back.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23347
PUBLISHED: 2021-03-03
The package github.com/argoproj/argo-cd/cmd before 1.7.13, from 1.8.0 and before 1.8.6 are vulnerable to Cross-site Scripting (XSS) the SSO provider connected to Argo CD would have to send back a malicious error message containing JavaScript to the user.
CVE-2021-25315
PUBLISHED: 2021-03-03
A Incorrect Implementation of Authentication Algorithm vulnerability in of SUSE SUSE Linux Enterprise Server 15 SP 3; openSUSE Tumbleweed allows local attackers to execute arbitrary code via salt without the need to specify valid credentials. This issue affects: SUSE SUSE Linux Enterprise Server 15 ...
CVE-2021-27921
PUBLISHED: 2021-03-03
Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large.
CVE-2021-27922
PUBLISHED: 2021-03-03
Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICNS container, and thus an attempted memory allocation can be very large.
CVE-2021-27923
PUBLISHED: 2021-03-03
Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large.