Cloud Security: Lessons Learned from Intrusion Prevention Systems
7/17/2018The advancement of AI-driven public cloud technology is changing the game of "protection by default" in the enterprise.
Post a Comment
Author
Profile of Gunter Ollmann
CTO, Security, Microsoft Cloud and AI Division Member Since: 7/5/2018Author
News & Commentary Posts: 11
Comments: 0
Gunter Ollmann serves as CTO for security and helps drive the cross-pillar strategy for the cloud and AI security groups at Microsoft. He has over three decades of information security experience in an array of cyber security consulting and research roles. Before to joining Microsoft, Gunter served as chief security officer at Vectra AI, driving new research and innovation into machine learning and AI-based threat detection of insider threats. Prior to Vectra AI, he served as CTO of domain services at NCC Group, where he drove the company's generic Top Level Domain (gTLD) program. He was also CTO at security consulting firm IOActive, CTO and vice president of research at Damballa, chief security strategist at IBM, and built and led well-known and respected security research groups around the world, such as X-Force. Gunter is a widely respected authority on security issues and technologies and has researched, written and published hundreds of technical papers and bylined articles.
Originally, Gunter had wanted to be an architect but he lost interest after designing retaining walls during a three-month internship. After that, he qualified as a meteorologist, but was lured to the dark side of forecasting Internet threats and cyberattacks. His ability to see dead people stoked an interest in history and first-millennium archaeology.
Articles by Gunter Ollmann
The advancement of AI-driven public cloud technology is changing the game of "protection by default" in the enterprise.
Post a Comment
How Artificial Intelligence Will Solve The Security Skills Shortage
12/28/2016Unlike industries that fear the intrusion of AI, the infosec world is embracing this revolutionary technology, and the seismic changes it will bring to threat detection and mitigation.
Post a Comment
Sticking It To The ATM
12/31/2013The folly of not preemptively disabling 'boot from USB' on an ATM
Post a Comment
NSA's TAO
12/30/2013NSA's Q-branch upgrades Omega laser watch with Huawei backdoors
Post a Comment
Target's Christmas Data Breach
12/26/2013Why, oh, why would Target be storing debit card PINs?
Post a Comment
A Mercenary Approach To Botnets
11/28/2013When does a botnet become valuable to government intelligence agencies?
Post a Comment
Healthcare.gov Security Hiccups
11/20/2013Take two aspirin and call me in the morning
Post a Comment
The Reality Of Freshly Minted Software Engineers
10/15/2013Why do recent computer science graduates need to be retrained when they hit the commercial world?
Post a Comment
Penetration Testing With Honest-To-Goodness Malware
10/1/2013When did penetration-testing methodologies stop replicating the vectors attackers make?
Post a Comment
Dolloping Out Threat Intelligence
9/21/2013When too much of a good thing causes confusion and setbacks
Post a Comment
Hacking The Emergency Alerting System
7/15/2013More EAS devices vulnerable now than when vendors were alerted in January
Post a Comment
White Papers
Video
10 Comments
Current Issue
5 Emerging Cyber Threats to Watch for in 2019Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2019-8423
PUBLISHED: 2019-02-18
PUBLISHED: 2019-02-18
PUBLISHED: 2019-02-18
PUBLISHED: 2019-02-18
PUBLISHED: 2019-02-18
From DHS/US-CERT's National Vulnerability Database CVE-2019-8423
PUBLISHED: 2019-02-18
ZoneMinder through 1.32.3 has SQL Injection via the skins/classic/views/events.php filter[Query][terms][0][cnj] parameter.
CVE-2019-8424PUBLISHED: 2019-02-18
ZoneMinder before 1.32.3 has SQL Injection via the ajax/status.php sort parameter.
CVE-2019-8425PUBLISHED: 2019-02-18
includes/database.php in ZoneMinder before 1.32.3 has XSS in the construction of SQL-ERR messages.
CVE-2019-8426PUBLISHED: 2019-02-18
skins/classic/views/controlcap.php in ZoneMinder before 1.32.3 has XSS via the newControl array, as demonstrated by the newControl[MinTiltRange] parameter.
CVE-2019-8427PUBLISHED: 2019-02-18
daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2019 UBM, All rights reserved
Tweet This