Tax Reform, Cybersecurity-Style
1/18/2018How the security industry can be more effective and efficient by recognizing four hidden "taxes" in the buying and selling process.
Post a Comment
Author
Profile of Ben Johnson
Co-founder and CTO, Obsidian Security News & Commentary Posts: 7Ben Johnson is CTO and co-founder of Obsidian Security. Prior to founding Obsidian, he co-founded Carbon Black and most recently served as the company's chief security strategist. As the company's original CTO, he led efforts to create the powerful capabilities that helped define the next-generation endpoint security space. Prior to Carbon Black, Ben was an NSA computer scientist and later worked as a cyber engineer in an advanced intrusion operations division for the intelligence community.
Johnson has extensive experience building complex systems for environments where speed and reliability are paramount. His background also includes a great deal of technical "agility," having worked on advanced operational teams supporting US national security missions and writing complex calculation engines for the financial sector.
Johnson earned a bachelor's degree in computer science from the University of Chicago and a master's degree in computer science from Johns Hopkins University. He also taught "Entrepreneurship in Technology" in the Masters Program of Computer Science at the University of Chicago in 2016 and 2017.
Articles by Ben Johnson
How the security industry can be more effective and efficient by recognizing four hidden "taxes" in the buying and selling process.
Post a Comment
Cloud Security's Shared Responsibility Is Foggy
9/14/2017Security is a two-way street. The cloud provider isn't the only one that must take precautions.
Post a Comment
Cybersecurity Self-Esteem: 4 Things Confident Teams Are Doing
8/31/2016By increasing our cybersecurity self-esteem, we can truly make a difference in raising our collective cybersecurity resiliency.
Post a Comment
Shifting The Economic Balance Of Cyberattacks
6/27/2016Our goal should be to simply make the cost of conducting a cyberattack so expensive that cybercriminals view attacking our organization as a bad return on investment.
Post a Comment
A Real World Analogy For Patterns of Attack
6/20/2016Patterns reveal exponentially more relevant information about attempted malfeasance than singular indicators of an attack ever could.
Post a Comment
Patterns Of Attack Offer Exponentially More Insight Than ‘Indicators’
6/13/2016In the cyberworld, patterns of attack provide investigators with context and the precise sequence of events as a cybercrime unfolds.
Post a Comment
‘Must Haves’ & ‘Must Dos’ For The First Federal CISO
3/11/2016Offensive and defensive experience, public/private sector know-how, ‘mini-NSA’ mindset and vision are top traits we need in a chief information security officer.
Post a Comment
White Papers
Video
0 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "Security through obscurity"
Latest Comment: "Security through obscurity"
Current Issue
How to Cope with the IT Security Skills ShortageMost enterprises don't have all the in-house skills they need to meet the rising threat from online attackers. Here are some tips on ways to beat the shortage.
Flash Poll
![[Strategic Security Report] Navigating the Threat Intelligence Maze](https://dsimg.ubm-us.net/asset/393933/543593/DR_ThreatConnect_Report.png)
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-11232
PUBLISHED: 2018-05-18
PUBLISHED: 2018-05-17
PUBLISHED: 2018-05-17
PUBLISHED: 2018-05-17
PUBLISHED: 2018-05-17
From DHS/US-CERT's National Vulnerability Database CVE-2018-11232
PUBLISHED: 2018-05-18
The etm_setup_aux function in drivers/hwtracing/coresight/coresight-etm-perf.c in the Linux kernel before 4.10.2 allows attackers to cause a denial of service (panic) because a parameter is incorrectly used as a local variable.
CVE-2017-15855PUBLISHED: 2018-05-17
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel, the camera application triggers "user-memory-access" issue as the Camera CPP module Linux driver directly accesses the application provided buffer, which resides in u...
CVE-2018-3567PUBLISHED: 2018-05-17
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WLAN while processing the HTT_T2H_MSG_TYPE_PEER_MAP or HTT_T2H_MSG_TYPE_PEER_UNMAP messages.
CVE-2018-3568PUBLISHED: 2018-05-17
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel, in __wlan_hdd_cfg80211_vendor_scan(), a buffer overwrite can potentially occur.
CVE-2018-5827PUBLISHED: 2018-05-17
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WLAN while processing an extscan hotlist event.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This