Products and Releases

Content posted in August 2017
Hackers Cybersquat on Hundreds of Luxury Fashion Brand Domains
Products and Releases  |  8/31/2017  | 
DomainTools identifies over 500 websites tricking web users into thinking theyre clicking on to luxury fashion websites.
Nearly 25% of Companies Havent Hired a Data Protection Officer: Imperva
Products and Releases  |  8/29/2017  | 
Enterprises say they may look to AI or machine learning to ease the burden of GDPR compliance.
HyTrust Launches DataControl for VMware Cloud on AWS
Products and Releases  |  8/28/2017  | 
Aims to provide customers with an efficient, flexible way to secure critical business applications and data with encryption and key management
NIST, DHS Join Forces to Create Cybersecure Communities Around the Globe
Products and Releases  |  8/28/2017  | 
The groups jointly sponsor the 2018 Global City Teams Challenge (GCTC).
Rohde & Schwarz Cybersecurity Launches DNS Tunneling Detection
Products and Releases  |  8/28/2017  | 
Company launches enhanced traffic analysis capabilities to detect Domain Name Server (DNS) tunneling.
Respond Software Powers Self-Driving SOC
Products and Releases  |  8/25/2017  | 
Company receives $12 Million in Series A Funding from CRV and Foundation Capital.
Calyptix Releases Threat Intelligence Report
Products and Releases  |  8/25/2017  | 
The findings examine cybersecurity threats for small businesses in North America.
Druva Announces $80 Million in Growth Equity Funding
Products and Releases  |  8/23/2017  | 
Funding aims to redefine and accelerate Druva's position in the cloud data protection and management market.
Information Security Forum Updates Information Risk Assessment Methodology
Products and Releases  |  8/23/2017  | 
Methodology Helps Businesses Identify, Analyze and Treat Information Risk throughout the Organization.
Black Duck Streamlines DevSecOps with New Hub Detect Capability
Products and Releases  |  8/23/2017  | 
Multi-factor open source discovery solution provides universal package manager and CI tool support, in a move to improve detection accuracy.
One Identity Launches SaaS ID-Risk Solution
Products and Releases  |  8/23/2017  | 
One Identity Starling Identity Analytics & Risk Intelligence is designed to prevent data breaches from improper user entitlements.
Versive Raises $12.7 Million in Funding for AI-Powered Security Solutions
Products and Releases  |  8/23/2017  | 
Existing investors Goldman Sachs, Madrona Venture Group, Formation 8, and Vulcan Capital contributed to funding.
Bugcrowd Launches Bug Bounty Program for Wi-Fi Device Maker eero
Products and Releases  |  8/23/2017  | 
eeros bug bounty program will allow researchers to submit bugs in a visible, predictable and scalable system.
Nigerian Man Sentenced to Prison for Hacking and Fraud Scheme
Products and Releases  |  8/18/2017  | 
Operated Business Email Compromise Scam from Nigeria
Rackspace Deploys RiskIQ PassiveTotal
Products and Releases  |  8/17/2017  | 
Sqrrls Latest Software Release Adds Self-Service Analytics for Threat Hunters
Products and Releases  |  8/17/2017  | 
Version 2.8 of Sqrrls Threat Hunting Platform Streamlines Creation of Risk-Focused Threat Hunting Analytics
Wells Fargo Brings CEO Mobile Token to Business Customers
Products and Releases  |  8/17/2017  | 
New feature enhances banking user experience anytime, anywhere
ISACA Releases New CISM and CRISC Online Review Courses
Products and Releases  |  8/16/2017  | 
Exploit Leaks Led to Over Five Million Attacks in Q2 2017
Products and Releases  |  8/16/2017  | 
Exploit packages in-the-wild became the game changer of the cyber threat landscape in Q2 2017.
IBM Offers Women Scholarships to Hacker Halted Security Conference
Products and Releases  |  8/16/2017  | 
IBM will cover 100% of the entry fees for women to attend EC-Councils largest annual cyber security conference Hacker Halted.
Alert Logic Releases 2017 Cloud Security Report
Products and Releases  |  8/15/2017  | 
On-Premises Workloads Experience 51% Higher Rate of Security Incidents than Applications Running on Public Cloud Platforms
Darktrace Releases Version 3 of its AI Cyber Defense Solution
Products and Releases  |  8/9/2017  | 
Productivity boost for novice and expert analysts, and executives.
Hackers: Privileged Accounts Provide Fastest Access to Sensitive, Critical Data
Products and Releases  |  8/9/2017  | 
Nearly 75 percent state traditional perimeter security firewalls and antivirus are now irrelevant or obsolete.
Security Summit Alert: Tax Pros Warned of New Scam to Steal Their Passwords
Products and Releases  |  8/4/2017  | 
A new phishing email scam impersonates tax software providers, seeking to steal usernames and passwords.
Perimeterx Raises $23 million to Expand AI Behavioral Threat Platform
Products and Releases  |  8/4/2017  | 
The funding will be used to further improve its bot detection technology and expand into automated attack prevention.
Dash Employs Bugcrowd to Hack Its Blockchain
Products and Releases  |  8/4/2017  | 
Bugcrowds professional white-hat hackers and cyber security experts join forces to detect Dash vulnerabilities.
Nyotron Raises $21 Million Funding Round
Products and Releases  |  8/4/2017  | 
Appoints Former McAfee Executive Peter Stewart to Chief Executive Officer
Oracle, SafeLogic and OpenSSL Partner on Next Generation FIPS Module
Products and Releases  |  8/3/2017  | 
Oracle dedicates seed funding towards developing FIPS module for OpenSSL 1.1 and calls on corporate sponsors in the FOSS ecosystem to join the effort
GuardiCore Extends Series B Funding Round to $35 Million
Products and Releases  |  8/3/2017  | 
Funding to accelerate growth in large enterprise accounts and expand further into global markets San Francisco and Israel
HITRUST, Trend Micro Partner to Tackle Cyber Threat Management
Products and Releases  |  8/3/2017  | 
The partnership aims to drive cyber threat research and education to improve organizational cyber threat management.
CrowdStrike Launches Cybersecurity Search Engine
Products and Releases  |  8/3/2017  | 
New CrowdStrike Falcon Search Engine empowers next-gen Security Operation Centers to search in real-time on the worlds fastest and most comprehensive security platform.
Digital Guardian Launches Cloud-Based Data Loss Prevention Service
Products and Releases  |  8/3/2017  | 
Digital Guardian Analytics & Reporting Cloud is released, with aim to deliver data protection as a subscription-based cloud service
Accenture Security Report Identifies Top Cyber Threats of 2017
Products and Releases  |  8/3/2017  | 
Destructive ransomware, alternative crypto-currencies and increased use of deception tactics among threats driving even more lucrative criminal marketplace.


High Stress Levels Impacting CISOs Physically, Mentally
Jai Vijayan, Freelance writer,  2/14/2019
Valentine's Emails Laced with Gandcrab Ransomware
Kelly Sheridan, Staff Editor, Dark Reading,  2/14/2019
Making the Case for a Cybersecurity Moon Shot
Adam Shostack, Consultant, Entrepreneur, Technologist, Game Designer,  2/19/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-8980
PUBLISHED: 2019-02-21
A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures.
CVE-2019-8979
PUBLISHED: 2019-02-21
Koseven through 3.3.9, and Kohana through 3.3.6, has SQL Injection when the order_by() parameter can be controlled.
CVE-2013-7469
PUBLISHED: 2019-02-21
Seafile through 6.2.11 always uses the same Initialization Vector (IV) with Cipher Block Chaining (CBC) Mode to encrypt private data, making it easier to conduct chosen-plaintext attacks or dictionary attacks.
CVE-2018-20146
PUBLISHED: 2019-02-21
An issue was discovered in Liquidware ProfileUnity before 6.8.0 with Liquidware FlexApp before 6.8.0. A local user could obtain administrator rights, as demonstrated by use of PowerShell.
CVE-2019-5727
PUBLISHED: 2019-02-21
Splunk Web in Splunk Enterprise 6.5.x before 6.5.5, 6.4.x before 6.4.9, 6.3.x before 6.3.12, 6.2.x before 6.2.14, 6.1.x before 6.1.14, and 6.0.x before 6.0.15 and Splunk Light before 6.6.0 has Persistent XSS, aka SPL-138827.