DOD Looks to the Cloud for Browser Security
6/6/2018The US Department of Defense just published its cloud browser strategy. What's yours?
Post a Comment
Author
Profile of Scott Petry
Co-Founder & CEO of Authentic8 News & Commentary Posts: 3Scott Petry is Co-Founder and CEO of Authentic8. Prior to Authentic8, Scott founded Postini and served in a variety of C-level roles until its acquisition by Google in 2007. He served as Director of Product Management at Google until 2009. Prior to Postini, Scott was General Manager and Vice President of Cygnus Solutions (acquired by Redhat), Director of Advanced Messaging Products at SkyTel, and a Product Manager at Apple Computer. He graduated with a B.S. degree from San Diego State University. Scott was a member of the U.S. National Rowing Team and earned a bronze medal in the world championships. Scott is currently a director of Authentic8, Return Path, Virtru and Scriptrock.
Articles by Scott Petry
The US Department of Defense just published its cloud browser strategy. What's yours?
Post a Comment
The Architecture of the Web Is Unsafe for Today's World
4/19/2017The Internet is based on protocols that assume content is secure. A new, more realistic model is needed.
Post a Comment
As Good As They're Getting, Analytics Don't Inherently Protect Data
2/2/2016It is only a matter of time before your system is breached, and when your data is lost, analytics won't help you.
Post a Comment
White Papers
Video
1 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Could you pass the hash, I really have to use the bathroom!
Latest Comment: Could you pass the hash, I really have to use the bathroom!
Current Issue
Building and Managing an IT Security Operations ProgramAs cyber threats grow, many organizations are building security operations centers (SOCs) to improve their defenses. In this Tech Digest you will learn tips on how to get the most out of a SOC in your organization - and what to do if you can't afford to build one.
Flash Poll
How Enterprises Are Developing Secure Applications
IT security and application development are disparate processes that are increasingly coming together. Here's a look at how that's happening.
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2019-12253
PUBLISHED: 2019-05-21
PUBLISHED: 2019-05-21
PUBLISHED: 2019-05-21
PUBLISHED: 2019-05-21
PUBLISHED: 2019-05-21
From DHS/US-CERT's National Vulnerability Database CVE-2019-12253
PUBLISHED: 2019-05-21
my little forum before 2.4.20 allows CSRF to delete posts, as demonstrated by mode=posting&delete_posting.
CVE-2019-12250PUBLISHED: 2019-05-21
IdentityServer IdentityServer4 through 2.4 has stored XSS via the httpContext to the host/Extensions/RequestLoggerMiddleware.cs LogForErrorContext method, which can be triggered by viewing a log.
CVE-2019-12251PUBLISHED: 2019-05-21
sadmin/ceditpost.php in UCMS 1.4.7 allows SQL Injection via the index.php?do=sadmin_ceditpost cvalue parameter.
CVE-2019-10319PUBLISHED: 2019-05-21
A missing permission check in Jenkins PAM Authentication Plugin 1.5 and earlier, except 1.4.1 in PamSecurityRealm.DescriptorImpl#doTest allowed users with Overall/Read permission to obtain limited information about the file /etc/shadow and the user Jenkins is running as.
CVE-2019-10320PUBLISHED: 2019-05-21
Jenkins Credentials Plugin 2.1.18 and earlier allowed users with permission to create or update credentials to confirm the existence of files on the Jenkins master with an attacker-specified path, and obtain the certificate content of files containing a PKCS#12 certificate.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2019 UBM, All rights reserved
Tweet This