Why Everybody Loves (And Hates) Security
9/9/2015Even security professionals hate security. So why do we all harbor so much dislike for something we need so much? And what can we do about it?
Post a Comment
Author
Profile of Sergio Galindo
GM, GFI Software Member Since: 12/11/2014Author
News & Commentary Posts: 2
Comments: 0
Sergio Galindo has more than 20 years of global professional IT experience. Prior to his appointment as General Manager of GFI Software, he served as the company's CIO. He also spent 18 years managing global IT programs for large companies in the financial industry, including the Bank of New York, Bankers Trust, and most recently, Lehman Brothers, where he was Senior Vice President in the Information Technology Division. Sergio's responsibilities at Lehman Brothers also included implementing global initiatives, including standardization of the Windows Desktop and Server infrastructures, as well as Microsoft Exchange/email, BlackBerry, and LehmanLive, the group's web portal. He was also responsible for developing IT strategies, product development, global application deployment, and production support for the Americas.
Articles by Sergio Galindo
Even security professionals hate security. So why do we all harbor so much dislike for something we need so much? And what can we do about it?
Post a Comment
Dear Cyber Criminals: We’re Not Letting Our Guard Down in 2015
12/31/2014Next year, you’ll keep exploiting vulnerabilities, and we’ll make sure our systems are patched, our antivirus is up to date, and our people are too smart to click the links you send them.
Post a Comment
White Papers
Video
0 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "I'm not sure I like this top down management approach!"
Latest Comment: "I'm not sure I like this top down management approach!"
Current Issue
Flash Poll
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security — even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-17338
PUBLISHED: 2018-09-23
PUBLISHED: 2018-09-23
PUBLISHED: 2018-09-22
PUBLISHED: 2018-09-22
PUBLISHED: 2018-09-22
From DHS/US-CERT's National Vulnerability Database CVE-2018-17338
PUBLISHED: 2018-09-23
An issue has been found in pdfalto through 0.2. It is a heap-based buffer overflow in the function TextPage::dump in XmlAltoOutputDev.cc.
CVE-2018-17341PUBLISHED: 2018-09-23
BigTree 4.2.23 on Windows, when Advanced or Simple Rewrite routing is enabled, allows remote attackers to bypass authentication via a ..\ substring, as demonstrated by a launch.php?bigtree_htaccess_url=admin/images/..\ URI.
CVE-2018-17332PUBLISHED: 2018-09-22
An issue was discovered in libsvg2 through 2012-10-19. The svgGetNextPathField function in svg_string.c returns its input pointer in certain circumstances, which might result in a memory leak caused by wasteful malloc calls.
CVE-2018-17333PUBLISHED: 2018-09-22
An issue was discovered in libsvg2 through 2012-10-19. A stack-based buffer overflow in svgStringToLength in svg_types.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because sscanf is misused.
CVE-2018-17334PUBLISHED: 2018-09-22
An issue was discovered in libsvg2 through 2012-10-19. A stack-based buffer overflow in the svgGetNextPathField function in svg_string.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because a strncpy copy limit is miscalculated.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This