A ‘Building Code’ For Internet of Things Security, Privacy
3/4/2015In the fast-emerging IoT, medical device safety is reaching a critical juncture. Here are three challenges InfoSec professionals should begin to think about now.
Post a Comment
Author
Profile of Greg Shannon
Ph.D., chair, IEEE Cybersecurity Initiative & Chief Scientist, CERT Division, Carnegie Mellon University Software Engineering Institute News & Commentary Posts: 1Dr. Greg Shannon is chair, IEEE Cybersecurity Initiative and the Chief Scientist for the CERT(r) Division at Carnegie Mellon University's Software Engineering Institute, where his role is to expand the division's research results, impact, and visibility. Outside of CERT, Shannon influences national and international research agendas by promoting data-driven science for cybersecurity. Shannon is also a co-organizer for the DIMACS and IEEE Workshop on Efficient and Scalable Cyber-security using Algorithms Protected by Electricity (ESCAPE, dimacs.rutgers.edu/Workshops/ESCAPE<http://dimacs.rutgers.edu/Workshops/ESCAPE/announcement.html>). He cofounded the Workshop on Learning from Authoritative Security Experiment Results (LASER, www.laser-workshop.org<http://www.laser-workshop.org/>).
Prior to joining CERT, Shannon was Chief Scientist at two startups working on statistical anomaly detection in sensor streams, the science of cybersecurity, and insider threats. In earlier positions, he led applied research and development in cybersecurity and data analysis at Lucent Technologies, Lumeta, Ascend Communications, Los Alamos National Laboratory, Indiana University, and his own startup company.
Articles by Greg Shannon
In the fast-emerging IoT, medical device safety is reaching a critical juncture. Here are three challenges InfoSec professionals should begin to think about now.
Post a Comment
White Papers
Video
4 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Look deep into my eyes. You are getting sleepy, very sleepy......
Latest Comment: Look deep into my eyes. You are getting sleepy, very sleepy......
Current Issue
10 Best Practices That Could Reshape Your IT Security DepartmentThis Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.
Flash Poll
How Enterprises Are Using IT Threat Intelligence
Large organizations are harnessing data about cyberattackers and their exploits to improve the safety of their critical data. Find out what they're doing.
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-20154
PUBLISHED: 2018-12-14
PUBLISHED: 2018-12-14
PUBLISHED: 2018-12-14
PUBLISHED: 2018-12-14
PUBLISHED: 2018-12-14
From DHS/US-CERT's National Vulnerability Database CVE-2018-20154
PUBLISHED: 2018-12-14
The WP Maintenance Mode plugin before 2.0.7 for WordPress allows remote authenticated users to discover all subscriber e-mail addresses.
CVE-2018-20155PUBLISHED: 2018-12-14
The WP Maintenance Mode plugin before 2.0.7 for WordPress allows remote authenticated subscriber users to bypass intended access restrictions on changes to plugin settings.
CVE-2018-20156PUBLISHED: 2018-12-14
The WP Maintenance Mode plugin before 2.0.7 for WordPress allows remote authenticated "site administrator" users to execute arbitrary PHP code throughout a multisite network.
CVE-2018-19007PUBLISHED: 2018-12-14
In Geutebrueck GmbH E2 Camera Series versions prior to 1.12.0.25 the DDNS configuration (in the Network Configuration panel) is vulnerable to an OS system command injection as root.
CVE-2018-20147PUBLISHED: 2018-12-14
In WordPress versions before 5.0.1, authors could modify metadata to bypass intended restrictions on deleting files.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This