Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in May 2019
Cyber Ireland announced by IDA Ireland and Cork Institute of Technology
Products and Releases  |  5/31/2019  | 
National cyber security cluster initiative is recruiting industry and higher education institutes.
FS-ISAC Survey: Nearly 75 Percent of Financial Institutions CISOs Plan to Ask for an Increase in Cybersecurity Investment
Products and Releases  |  5/29/2019  | 
Only four percent of financial institutions prioritize employee education and training in existing budgets
2019 State of Enterprise Secure Access Report
Products and Releases  |  5/23/2019  | 
A full 61% of IT organizations surveyed have little to modest confidence in their ability to mitigate access security threats, despite a majority significantly increasing their near-term budget.
Infocyte Launches Agentless Cloud Workload Protection Platform, Strengthens Capabilities in AWS Environments
Products and Releases  |  5/22/2019  | 
Capabilities include agentless deployment via API, automated threat detection, and instant root cause analysis for certifying cloud workloads are clean and aecure.
Microsoft Joins MANRS to Improve Routing Security
Products and Releases  |  5/22/2019  | 
Hunters.AI Raises $5.4M Seed Round to Equip Cybersecurity Teams with Autonomous Threat Hunting Machine
Products and Releases  |  5/22/2019  | 
Utilizes unique military-grade attack intelligence, artificial intelligence and existing security data to deliver proactive, scalable and actionable attack detection
xMatters open-sources its Chaos Engineering tool
Products and Releases  |  5/16/2019  | 
Cthulhu automates cross-platform failure testing to help developers put better software into production and minimize downtime costs
Sectigo Sponsors Lets Encrypt to Enable Certificate Transparency Log Operation
Products and Releases  |  5/15/2019  | 
Commercial Certificate Authority Helps Ensure Fabric of CT Logs is Adequate for Worlds Certificate Needs
LogRhythm Releases Cloud-Based NextGen Security Information and Event Management (SIEM) Platform
Products and Releases  |  5/15/2019  | 
With LogRhythm Cloud, security analysts get the full experience of an award-winning platform with the benefits of Software as a Service (SaaS)
Semmle appoints its first CSO
Products and Releases  |  5/8/2019  | 
roduct security veteran Fermn Serna leaves Google to help secure all software by bringing the security and development communities together
Sumo Logic Completes $110 Million Funding Round
Products and Releases  |  5/8/2019  | 
Battery Ventures, Tiger Global Management and Franklin Templeton Sign on to Back Sumo Logics Industry Leading Continuous Intelligence Platform
Quad9 Offers Owners of Android-Based Devices DNS Security Protections for Free
Products and Releases  |  5/7/2019  | 
Privacy-centric DNS service blocks access to more than 15 million malicious events per day, limiting access to malware and phishing as well as encrypting private DNS data.
CrowdStrike Falcon Integrates Firmware Attack Detection Capability
Products and Releases  |  5/3/2019  | 
Endpoints protected by CrowdStrike Falcon will now gain continuous monitoring for firmware attacks
NSS Labs Appoints New Chief Executive Officer
Products and Releases  |  5/2/2019  | 


COVID-19: Latest Security News & Commentary
Dark Reading Staff 9/21/2020
Cybersecurity Bounces Back, but Talent Still Absent
Simone Petrella, Chief Executive Officer, CyberVista,  9/16/2020
Meet the Computer Scientist Who Helped Push for Paper Ballots
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/16/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Latest Comment: Exactly
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-24619
PUBLISHED: 2020-09-22
In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyMode(QSslSocket::VerifyNone). A man-in-the-middle attacker could offer a spoofed download resource.
CVE-2020-8887
PUBLISHED: 2020-09-22
Telestream Tektronix Medius before 10.7.5 and Sentry before 10.7.5 have a SQL injection vulnerability allowing an unauthenticated attacker to dump database contents via the page parameter in a page=login request to index.php (aka the server login page).
CVE-2020-7734
PUBLISHED: 2020-09-22
All versions of package cabot are vulnerable to Cross-site Scripting (XSS) via the Endpoint column.
CVE-2020-6564
PUBLISHED: 2020-09-21
Inappropriate implementation in permissions in Google Chrome prior to 85.0.4183.83 allowed a remote attacker to spoof the contents of a permission dialog via a crafted HTML page.
CVE-2020-6565
PUBLISHED: 2020-09-21
Inappropriate implementation in Omnibox in Google Chrome on iOS prior to 85.0.4183.83 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.