Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in May 2019
Cyber Ireland announced by IDA Ireland and Cork Institute of Technology
Products and Releases  |  5/31/2019  | 
National cyber security cluster initiative is recruiting industry and higher education institutes.
FS-ISAC Survey: Nearly 75 Percent of Financial Institutions CISOs Plan to Ask for an Increase in Cybersecurity Investment
Products and Releases  |  5/29/2019  | 
Only four percent of financial institutions prioritize employee education and training in existing budgets
2019 State of Enterprise Secure Access Report
Products and Releases  |  5/23/2019  | 
A full 61% of IT organizations surveyed have little to modest confidence in their ability to mitigate access security threats, despite a majority significantly increasing their near-term budget.
Infocyte Launches Agentless Cloud Workload Protection Platform, Strengthens Capabilities in AWS Environments
Products and Releases  |  5/22/2019  | 
Capabilities include agentless deployment via API, automated threat detection, and instant root cause analysis for certifying cloud workloads are clean and aecure.
Microsoft Joins MANRS to Improve Routing Security
Products and Releases  |  5/22/2019  | 
Hunters.AI Raises $5.4M Seed Round to Equip Cybersecurity Teams with Autonomous Threat Hunting Machine
Products and Releases  |  5/22/2019  | 
Utilizes unique military-grade attack intelligence, artificial intelligence and existing security data to deliver proactive, scalable and actionable attack detection
xMatters open-sources its Chaos Engineering tool
Products and Releases  |  5/16/2019  | 
Cthulhu automates cross-platform failure testing to help developers put better software into production and minimize downtime costs
Sectigo Sponsors Lets Encrypt to Enable Certificate Transparency Log Operation
Products and Releases  |  5/15/2019  | 
Commercial Certificate Authority Helps Ensure Fabric of CT Logs is Adequate for Worlds Certificate Needs
LogRhythm Releases Cloud-Based NextGen Security Information and Event Management (SIEM) Platform
Products and Releases  |  5/15/2019  | 
With LogRhythm Cloud, security analysts get the full experience of an award-winning platform with the benefits of Software as a Service (SaaS)
Semmle appoints its first CSO
Products and Releases  |  5/8/2019  | 
roduct security veteran Fermn Serna leaves Google to help secure all software by bringing the security and development communities together
Sumo Logic Completes $110 Million Funding Round
Products and Releases  |  5/8/2019  | 
Battery Ventures, Tiger Global Management and Franklin Templeton Sign on to Back Sumo Logics Industry Leading Continuous Intelligence Platform
Quad9 Offers Owners of Android-Based Devices DNS Security Protections for Free
Products and Releases  |  5/7/2019  | 
Privacy-centric DNS service blocks access to more than 15 million malicious events per day, limiting access to malware and phishing as well as encrypting private DNS data.
CrowdStrike Falcon Integrates Firmware Attack Detection Capability
Products and Releases  |  5/3/2019  | 
Endpoints protected by CrowdStrike Falcon will now gain continuous monitoring for firmware attacks
NSS Labs Appoints New Chief Executive Officer
Products and Releases  |  5/2/2019  | 


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Practical Network Security Approaches for a Multicloud, Hybrid IT World
The report covers areas enterprises should focus on for their multicloud/hybrid cloud security strategy: -increase visibility over the environment -learning cloud-specific skills -relying on established security frameworks -re-architecting the network
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-30333
PUBLISHED: 2022-05-09
RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file. NOTE: WinRAR and Android RAR are unaffected.
CVE-2022-23066
PUBLISHED: 2022-05-09
In Solana rBPF versions 0.2.26 and 0.2.27 are affected by Incorrect Calculation which is caused by improper implementation of sdiv instruction. This can lead to the wrong execution path, resulting in huge loss in specific cases. For example, the result of a sdiv instruction may decide whether to tra...
CVE-2022-28463
PUBLISHED: 2022-05-08
ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow.
CVE-2022-28470
PUBLISHED: 2022-05-08
marcador package in PyPI 0.1 through 0.13 included a code-execution backdoor.
CVE-2022-1620
PUBLISHED: 2022-05-08
NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim prior to 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allows attackers to cause a denial of service (application crash) via a crafted input.