Tax Reform, Cybersecurity-Style
1/18/2018How the security industry can be more effective and efficient by recognizing four hidden "taxes" in the buying and selling process.
Post a Comment
Author
Profile of Ben Johnson
Co-founder and CTO, Obsidian Security News & Commentary Posts: 7Ben Johnson is CTO and co-founder of Obsidian Security. Prior to founding Obsidian, he co-founded Carbon Black and most recently served as the company's chief security strategist. As the company's original CTO, he led efforts to create the powerful capabilities that helped define the next-generation endpoint security space. Prior to Carbon Black, Ben was an NSA computer scientist and later worked as a cyber engineer in an advanced intrusion operations division for the intelligence community.
Johnson has extensive experience building complex systems for environments where speed and reliability are paramount. His background also includes a great deal of technical "agility," having worked on advanced operational teams supporting US national security missions and writing complex calculation engines for the financial sector.
Johnson earned a bachelor's degree in computer science from the University of Chicago and a master's degree in computer science from Johns Hopkins University. He also taught "Entrepreneurship in Technology" in the Masters Program of Computer Science at the University of Chicago in 2016 and 2017.
Articles by Ben Johnson
How the security industry can be more effective and efficient by recognizing four hidden "taxes" in the buying and selling process.
Post a Comment
Cloud Security's Shared Responsibility Is Foggy
9/14/2017Security is a two-way street. The cloud provider isn't the only one that must take precautions.
Post a Comment
Cybersecurity Self-Esteem: 4 Things Confident Teams Are Doing
8/31/2016By increasing our cybersecurity self-esteem, we can truly make a difference in raising our collective cybersecurity resiliency.
Post a Comment
Shifting The Economic Balance Of Cyberattacks
6/27/2016Our goal should be to simply make the cost of conducting a cyberattack so expensive that cybercriminals view attacking our organization as a bad return on investment.
Post a Comment
A Real World Analogy For Patterns of Attack
6/20/2016Patterns reveal exponentially more relevant information about attempted malfeasance than singular indicators of an attack ever could.
Post a Comment
Patterns Of Attack Offer Exponentially More Insight Than ‘Indicators’
6/13/2016In the cyberworld, patterns of attack provide investigators with context and the precise sequence of events as a cybercrime unfolds.
Post a Comment
‘Must Haves’ & ‘Must Dos’ For The First Federal CISO
3/11/2016Offensive and defensive experience, public/private sector know-how, ‘mini-NSA’ mindset and vision are top traits we need in a chief information security officer.
Post a Comment
White Papers
Video
10 Comments
Current Issue
5 Emerging Cyber Threats to Watch for in 2019Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2019-8980
PUBLISHED: 2019-02-21
PUBLISHED: 2019-02-21
PUBLISHED: 2019-02-21
PUBLISHED: 2019-02-21
PUBLISHED: 2019-02-21
From DHS/US-CERT's National Vulnerability Database CVE-2019-8980
PUBLISHED: 2019-02-21
A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures.
CVE-2019-8979PUBLISHED: 2019-02-21
Koseven through 3.3.9, and Kohana through 3.3.6, has SQL Injection when the order_by() parameter can be controlled.
CVE-2013-7469PUBLISHED: 2019-02-21
Seafile through 6.2.11 always uses the same Initialization Vector (IV) with Cipher Block Chaining (CBC) Mode to encrypt private data, making it easier to conduct chosen-plaintext attacks or dictionary attacks.
CVE-2018-20146PUBLISHED: 2019-02-21
An issue was discovered in Liquidware ProfileUnity before 6.8.0 with Liquidware FlexApp before 6.8.0. A local user could obtain administrator rights, as demonstrated by use of PowerShell.
CVE-2019-5727PUBLISHED: 2019-02-21
Splunk Web in Splunk Enterprise 6.5.x before 6.5.5, 6.4.x before 6.4.9, 6.3.x before 6.3.12, 6.2.x before 6.2.14, 6.1.x before 6.1.14, and 6.0.x before 6.0.15 and Splunk Light before 6.6.0 has Persistent XSS, aka SPL-138827.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2019 UBM, All rights reserved
Tweet This