Database Security

Identity & Access Management

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

To InformationWeek

Network Computing Darkreading

Advertise

DRTV

View Content By Month

NSS Labs Talks Operationalizing Security

NSS Labs Talks Operationalizing Security

Dark Reading Videos | 2/17/2017 |

At RSA, NSS Labs CTO Jason Brvenik discusses how to find the gaps in your current web of security products and how to discover what you're not finding.

Exhibitor Spotlight: Recorded Future @ RSA 2017

Exhibitor Spotlight: Recorded Future @ RSA 2017

Dark Reading Videos | 2/16/2017 |

At the RSA Conference, Recorded Future's vice president of intelligence and strategy Levi Gundert and director of advanced collection Andrei Barysevich discuss threat intelligence.

Mimecast Tackles Email-Bound Risks

Mimecast Tackles Email-Bound Risks

Dark Reading Videos | 2/16/2017 |

At RSA, Mimecast cyber security strategy Bob Adams discusses graduating from basic filtering to true email security risk assessment.

Raytheon Foreground Security Talks Proactive Risk-Based Security

Raytheon Foreground Security Talks Proactive Risk-Based Security

Dark Reading Videos | 2/16/2017 |

At RSA, Raytheon Foreground Security's president, Paul Perkinson, and chief strategy officer, Joshua Douglas discuss how to get proactive with advanced threat hunting and managed detection response.

Cylance Talks Third-Party Testing

Cylance Talks Third-Party Testing

Dark Reading Videos | 2/16/2017 |

At the RSA Conference, Chad Skipper, vice president of industry relations and product testing for Cylance, discusses the customs and controversies of third-party testing and verification of security products.

CA Technologies Views On How Machine Learning Is Powering The Next Generation Of Security

CA Technologies Views On How Machine Learning Is Powering The Next Generation Of Security

Dark Reading Videos | 2/16/2017 |

At RSA, Mordecai Rosen, SVP and general manager of security business for CA Technologies talks machine learning, analytics, and identity management.

Juniper Discusses The New Network & How To Secure It

Juniper Discusses The New Network & How To Secure It

Dark Reading Videos | 2/16/2017 |

At RSA, Mihir Maniar, Juniper Networks' vice president of security products and strategy, and Laurence Pitt, Juniper Networks' EMEA security strategy director, discuss how the network has not disappeared, it's just become more elastic.

Veracode Tackles App Sec & The Pace Of DevOps

Veracode Tackles App Sec & The Pace Of DevOps

Dark Reading Videos | 2/15/2017 |

At the RSA Conference, Pete Chestna, Director of Developer Engagement at Veracode, discusses the persistent challenges of both continuous delivery and relentless attacks on the application layer.

Anomali Talks Threat Intelligence & Info Sharing

Anomali Talks Threat Intelligence & Info Sharing

Dark Reading Videos | 2/15/2017 |

At RSA Conference, Hugh Njemanze, CEO of Anomali talks about threat intelligence and the benefit of bi-directional information sharing with government agencies, as well as the benefit of free software.

Deloitte Tackles Identity Management

Deloitte Tackles Identity Management

Dark Reading Videos | 2/15/2017 |

At RSA Conference, Mike Wyatt, Managing Director of Deloitte Advisory Cyber Risk Service, discusses the identity management landscape and its growing importance, from "least privileges" to identity-as-a-service.

BAE Systems’ Cyber Defense Monitor Study Digs Into Defense

BAE Systems’ Cyber Defense Monitor Study Digs Into Defense

Dark Reading Videos | 2/15/2017 |

At the 2017 RSA Conference, BAE Systems Vice President of Cyber Security Strategy Colin McKinty discusses the new Cyber Defense Monitor study as well as enterprise wide challenges of understanding and responding to the threat landscape

How to Handle Threats When Short-Staffed

How to Handle Threats When Short-Staffed

Dark Reading Videos | 2/3/2017 |

Skybox’s Michelle Cobb, VP of Worldwide Marketing, explains how automation and advanced analytics can give security teams the data they need when their teams are stretched

View Content by Month

Editors' Choice

Want Your Daughter to Succeed in Cyber? Call Her John

John De Santis, CEO, HyTrust, 5/16/2018

Don't Roll the Dice When Prioritizing Vulnerability Fixes

Ericka Chickowski, Contributing Writer, Dark Reading, 5/15/2018

Why Enterprises Can't Ignore Third-Party IoT-Related Risks

Charlie Miller, Senior Vice President, The Santa Fe Group, 5/14/2018

Live Events

Webinars

Migrating Security Controls to the Cloud

Cloud & Security Risks: How to Discover and Manage Them

Dark Reading Virtual Event: Why Cybercriminals Attack

Webinar Archives

White Papers

Phishing Attack Bypasses Two-Factor Authentication

Mobile Devices: The New Support Frontier for IT (IDG Report)

Cyber-Attack Security Guide

Identity and Access Management Maturity Assessment

4 Support Teams That Embraced Mobile

More White Papers

Video

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: "Security through obscurity"

Cartoon Archive

Current Issue

How to Cope with the IT Security Skills Shortage

Most enterprises don't have all the in-house skills they need to meet the rising threat from online attackers. Here are some tips on ways to beat the shortage.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

[Strategic Security Report] Navigating the Threat Intelligence Maze

[Strategic Security Report] Navigating the Threat Intelligence Maze

Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.

Download Now!

[Strategic Security Report] Cloud Security's Changing Landscape

The State of Ransomware

The Dark Reading Security Spending Survey

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Dark Reading - Bug Report

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-11232
PUBLISHED: 2018-05-18

The etm_setup_aux function in drivers/hwtracing/coresight/coresight-etm-perf.c in the Linux kernel before 4.10.2 allows attackers to cause a denial of service (panic) because a parameter is incorrectly used as a local variable.

CVE-2017-15855
PUBLISHED: 2018-05-17

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel, the camera application triggers "user-memory-access" issue as the Camera CPP module Linux driver directly accesses the application provided buffer, which resides in u...

CVE-2018-3567
PUBLISHED: 2018-05-17

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WLAN while processing the HTT_T2H_MSG_TYPE_PEER_MAP or HTT_T2H_MSG_TYPE_PEER_UNMAP messages.

CVE-2018-3568
PUBLISHED: 2018-05-17

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel, in __wlan_hdd_cfg80211_vendor_scan(), a buffer overwrite can potentially occur.

CVE-2018-5827
PUBLISHED: 2018-05-17

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WLAN while processing an extscan hotlist event.

Terms of Service
Privacy Statement
Legal Entities
Copyright © 2018 UBM, All rights reserved

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]