Mobile App Collusion, The State Of Hashing, And A Troublesome Trojan Returns
6/14/2016Highlights from the June 2016 McAfee Labs Threats Report.
Post a Comment
Author
Profile of Vincent Weafer
Senior Vice President, Intel Security News & Commentary Posts: 11Vincent Weafer is Senior Vice President of Intel Security, managing more than 350 researchers across 30 countries. He's also responsible for managing millions of sensors across the globe, all dedicated to protecting our customers from the latest cyber threats. Vincent's team is dedicated to advancing the research and intelligence gathering capabilities required to provide the latest protection solutions in malware, host and network intrusion, email, vulnerability, regulatory compliance, and web security.
Vincent has an extensive range of experience gained over 25 years in the information technology industry, including 11 years as the leader of Symantec's Security Response team. He is also a highly regarded speaker on Internet security threats and trends, with coverage in national and international press and broadcast media. He has been invited to testify on multiple government committees including the States Senate Committee on the Judiciary hearing on Combating Cyber Crime and Identify Theft in the Digital Age in April 2010, the United States Sentencing Commission's Public Hearing on Identity Theft and Restitution Act of 2008 in March 2009, and the United States Senate Committee on Commerce, Science, and Transportation on Impact and Policy Implications of Spyware onConsumers and Businesses in June 2008. In addition he has presented at many international conferences and was a committee member of the IEEE Industry Connections Study Group (ICSG) 2009-2010, and has also co-authored a book on Internet Security.
Articles by Vincent Weafer
Highlights from the June 2016 McAfee Labs Threats Report.
Post a Comment
10 Questions To Ask Yourself About Securing Big Data
4/27/2016Big data introduces new wrinkles for managing data volume, workloads, and tools. Securing increasingly large amounts of data begins with a good governance model across the information life cycle. From there, you may need specific controls to address various vulnerabilities. Here are a set of questions to help ensure that you have everything covered.
Post a Comment
When It Comes To Cyberthreat Intelligence, Sharing Is Caring
3/31/2016Shared cyberthreat intelligence will soon be a critical component of security operations, enabling organizations to better protect their digital assets and respond more quickly to emerging threats.
Post a Comment
Detecting the Undetectable: Windows Registry Attacks
12/15/2015Fileless attacks are becoming more sophisticated, requiring a team of defenses.
Post a Comment
Macro Malware Is Back
12/15/2015Social engineering drives macro malware levels to six-year highs.
Post a Comment
Investigating Mobile Banking Attacks
12/15/2015Poor mobile app back-end security coding puts consumer information at risk.
Post a Comment
McAfee Labs’ 2016-2020 Threat Predictions, Part 2
12/4/2015Previewing 2020 to inform long-term security strategies.
Post a Comment
McAfee Labs’ 2016-2020 Threat Predictions, Part 1
12/3/2015Two sets of insights inform near- and long-term security strategies.
Post a Comment
Franchising Ransomware
7/1/2015Ransomware-as-a-service is fueling cyberattacks. Is your organization prepared?
Post a Comment
Predictive Analytics: The Future Is Now
4/15/2015Enhanced analytical capabilities will help organizations better understand how attacks will unfold, and how to stop them in their earliest stages.
Post a Comment
2014: The Year of Shaken Trust
12/9/2014We can rebuild that trust.
Post a Comment
White Papers
Video
0 Comments
Current Issue
Flash Poll
The State of IT and Cybersecurity
IT and security are often viewed as different disciplines - and different departments. Find out what our survey data revealed, read the report today!
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-12633
PUBLISHED: 2018-06-22
PUBLISHED: 2018-06-22
PUBLISHED: 2018-06-22
PUBLISHED: 2018-06-21
PUBLISHED: 2018-06-21
From DHS/US-CERT's National Vulnerability Database CVE-2018-12633
PUBLISHED: 2018-06-22
An issue was discovered in the Linux kernel through 4.17.2. vbg_misc_device_ioctl() in drivers/virt/vboxguest/vboxguest_linux.c reads the same user data twice with copy_from_user. The header part of the user data is double-fetched, and a malicious user thread can tamper with the critical variables (...
CVE-2018-12634PUBLISHED: 2018-06-22
CirCarLife Scada v4.2.4 allows remote attackers to obtain sensitive information via a direct request for the html/log or services/system/info.html URI.
CVE-2018-12635PUBLISHED: 2018-06-22
CirCarLife Scada v4.2.4 allows unauthorized upgrades via requests to the html/upgrade.html and services/system/firmware.upgrade URIs.
CVE-2018-12630PUBLISHED: 2018-06-21
NEWMARK (aka New Mark) NMCMS 2.1 allows SQL Injection via the sect_id parameter to the /catalog URI.
CVE-2018-12631PUBLISHED: 2018-06-21
Redatam7 (formerly Redatam WebServer) allows remote attackers to read arbitrary files via /redbin/rpwebutilities.exe/text?LFN=../ directory traversal.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This