Advertise

Author

Profile of Nick Hayes

Analyst, Forrester

Member Since: 9/1/2016
Author
News & Commentary Posts: 1
Comments: 2

Nick Hayes is an analyst at Forrester. His research is dedicated to helping risk professionals and other business leaders understand and manage customer-facing risks in order to build more resilient brands. He has extensive knowledge of the security, privacy, archiving, and other compliance challenges of social media, as well as the technical controls used to address them. He also specializes in the tools that monitor and analyze social data to improve oversight and mitigation tactics of myriad reputational, third-party, security, and operational risks.

Nick advises Forrester's clients on a range of governance, risk, and compliance (GRC) topics, including corporate culture, training and awareness, and corporate social responsibility. He presents at leading industry and technology conferences, and he works with organizations of all sizes across all major industries.

Articles by Nick Hayes

View Content By Month

Why Social Media Sites Are The New Cyber Weapons Of Choice

9/6/2016
Facebook, LinkedIn, and Twitter can’t secure their own environments, let alone yours. It’s time to sharpen your security acumen.
Post a Comment

Content by Month
September 2016 - 1
[close this box]

Hot Topics

Editors' Choice

Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms

Kelly Jackson Higgins, Executive Editor at Dark Reading, 8/14/2018

Intel Reveals New Spectre-Like Vulnerability

Curtis Franklin Jr., Senior Editor at Dark Reading, 8/15/2018

Data Privacy Careers Are Helping to Close the IT Gender Gap

Dana Simberkoff, Chief Compliance and Risk Management Officer, AvePoint, Inc, 8/20/2018

Live Events

Webinars

More UBM Tech
Live Events

INsecurity Conference - An Event Like No Other

Black Hat Trainings - October 22 & 23

Are You Looking to Learn About New Cybersecurity Threats & Challenges? Then INsecurity Is For You!

White Papers

The Hacker-Powered Security Report 2018

[Frost and Sullivan] IoT Security for Connected Space

Distributed Defense: How Government Agencies Deploy Hacker-Powered Security

Protecting Against the Top 5 Attack Vectors

Essential Guide - Blocking Malware Without a SOC

More White Papers

Video

All Videos

Cartoon

Latest Comment: -- John Klossner's latest cartoon!

Cartoon Archive

Current Issue

The Biggest Cybersecurity Breaches of 2018 (So Far)

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The State of IT and Cybersecurity

IT and security are often viewed as different disciplines - and different departments. Find out what our survey data revealed, read the report today!

Download Now!

[Strategic Security Report] Navigating the Threat Intelligence Maze

0 comments

[Strategic Security Report] Cloud Security's Changing Landscape

0 comments

The State of Ransomware

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-15601
PUBLISHED: 2018-08-21

apps/filemanager/handlers/upload/drop.php in Elefant CMS 2.0.3 performs a urldecode step too late in the "Cannot upload executable files" protection mechanism.

CVE-2018-15603
PUBLISHED: 2018-08-21

An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen.

CVE-2018-15598
PUBLISHED: 2018-08-21

Containous Traefik 1.6.x before 1.6.6, when --api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable.

CVE-2018-15599
PUBLISHED: 2018-08-21

The recv_msg_userauth_request function in svr-auth.c in Dropbear through 2018.76 is prone to a user enumeration vulnerability because username validity affects how fields in SSH_MSG_USERAUTH messages are handled, a similar issue to CVE-2018-15473 in an unrelated codebase.

CVE-2018-0501
PUBLISHED: 2018-08-21

The mirror:// method implementation in Advanced Package Tool (APT) 1.6.x before 1.6.4 and 1.7.x before 1.7.0~alpha3 mishandles gpg signature verification for the InRelease file of a fallback mirror, aka mirrorfail.

Terms of Service
Privacy Statement
Legal Entities

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]