Products and Releases

Content posted in September 2017
SecurityFirst DataKeep Protecting Data From Creation to Deletion
Products and Releases  |  9/27/2017  | 
Cost-effective, scalable and transparent data-centric protection for companies of any size
Lacework Announces Immediate Support for Microsoft Windows Server
Products and Releases  |  9/27/2017  | 
Simplifies Cloud Security with Technology That Addresses Hybrid Cloud Environments in One Solution
BullGuard Launches Next-Generation Anti-Malware Engine Across All BullGuard Products And First-of-Its-Kind, Real-Time Home Network Scanner
Products and Releases  |  9/27/2017  | 
Comprehensive range of leading-edge consumer cybersecurity products cover both the endpoint and network layers; Home Network Scanner features industry-first, internal and external scanner that monitors and scans all connected devices to protect from outside hackers
Citadels New Department of Intelligence and Security Studies First of its Kind in South Carolina
Products and Releases  |  9/27/2017  | 
Founded by former FBI special agent
Aruba Modernizes Network Security to Reduce Risk
Products and Releases  |  9/22/2017  | 
Aruba 360 Secure Fabric delivers new analytics-driven, advanced cyber protection in UEBA to simplify enterprise security.
Dashlane Announces Dashlane Business 2.0
Products and Releases  |  9/22/2017  | 
Launch of latest enterprise password management solution lets IT administrators educate, onboard, and enforce corporate password policies.
New Research from Intermedia Reveals a False Sense of Confidence Among Office Workers with Phishing Scams Still on the Rise
Products and Releases  |  9/22/2017  | 
Despite continued education and awareness, one in five office workers continue to be a victim of costly phishing emails
Attivo Networks Tackles Cloud Threat Detection Gaps
Products and Releases  |  9/22/2017  | 
Expands ThreatDefend Cloud Data Center offerings for Azure, AWS, and OpenStack.
HID Global to Acquire Mercury Security, Expanding its Leadership in Access Control
Products and Releases  |  9/21/2017  | 
HID Global signs an agreement to acquire Mercury Security, an OEM supplier of controllers for physical access control.
Intelisecure Launches Solutions, Managed Services Offering to Protect Critical Data
Products and Releases  |  9/21/2017  | 
New offering aims to help midsize enterprises meet their data protection needs at a consumable price point.
Symantec Protects Data Everywhere with Information Centric Security
Products and Releases  |  9/20/2017  | 
Symantec Data Loss Prevention 15 integrates with tagging, encryption and access management to secure regulated and sensitive data wherever it goes.
SMBs are Huge Target for Hackers: 2017 Ponemon Study
Products and Releases  |  9/20/2017  | 
Benchmarking Critical Exercise in Early Stages of Software Security: BSIMM8
Products and Releases  |  9/20/2017  | 
Latest iteration of the building security in maturity model shows more organizations jumpstarting their software security initiatives with assessments and improving over time.
Atlantic.Net Unveils Cloud Platform to Encrypt Customer Data
Products and Releases  |  9/19/2017  | 
Cloud hosting solutions provider encrypts all customer data stored at rest.
Venafi Awarded Two New Patents
Products and Releases  |  9/14/2017  | 
Stuart McClure, CEO and Co-Founder of Cylance Inc., Joins JASKs Board of Directors
Products and Releases  |  9/14/2017  | 
JASK Appoints Cybersecurity Pioneer to Help Usher in Next Iteration of Machine Learning-Based Security Technology
AppGuard Closes a $30 Million Series B to Accelerate Growth in Enterprise and SMB Markets
Products and Releases  |  9/14/2017  | 
Series B funding brings total financing to $100m for AppGuard since April
CyberScout Elite Brings Commercial Cyber Coverage to High Net Worth Households
Products and Releases  |  9/13/2017  | 
Offering combines concierge service with a suite of commercial quality protective services and the convenience of a mobile app.
Former General Counsel for US Intelligence Community Joins Morrison & Foerster
Products and Releases  |  9/13/2017  | 
Robert S. Litt will further strengthen the firms growing National Security and Global Risk & Crisis Management Practices.
81% of Infosec Pros Say Required Job Skills Have Changed
Products and Releases  |  9/6/2017  | 
The change comes amid a skills gap the industry is facing.


Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/14/2018
Intel Reveals New Spectre-Like Vulnerability
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/15/2018
Australian Teen Hacked Apple Network
Dark Reading Staff 8/17/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-15572
PUBLISHED: 2018-08-20
The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks.
CVE-2018-15573
PUBLISHED: 2018-08-20
** DISPUTED ** An issue was discovered in Reprise License Manager (RLM) through 12.2BL2. Attackers can use the web interface to read and write data to any file on disk (as long as rlm.exe has access to it) via /goform/edit_lf_process with file content in the lfdata parameter and a pathname in the lf...
CVE-2018-15574
PUBLISHED: 2018-08-20
** DISPUTED ** An issue was discovered in the license editor in Reprise License Manager (RLM) through 12.2BL2. It is a cross-site scripting vulnerability in the /goform/edit_lf_get_data lf parameter via GET or POST. NOTE: the vendor has stated "We do not consider this a vulnerability."
CVE-2018-15570
PUBLISHED: 2018-08-20
In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter.
CVE-2018-15564
PUBLISHED: 2018-08-20
An issue was discovered in daveismyname simple-cms through 2014-03-11. There is a CSRF vulnerability that can delete any page via admin/?delpage=8.