On-Premises & In The Cloud: Making Sense Of Your Cybersecurity Ecosystem
9/23/2016As enterprises continue to invest in hybrid cloud strategies, they need their fragmented security solutions to work together.
Post a Comment
Author
Profile of Yishai Beeri
Director of Cybersecurity Research, CloudLock Member Since: 9/21/2016Author
News & Commentary Posts: 1
Comments: 0
As director for cybersecurity research at CloudLock (now part of Cisco), Yishai is responsible for exploring the future of the company's products and technology, as well as CloudLock's CyberLab research facility. Prior to joining CloudLock, Yishai co-founded and managed a high-end technology consultancy trusted by many of Israel's leading technology companies, including Check Point, TASE, Sungard, and CommTouch. Yishai has over 20 years of experience in software development, technology research and entrepreneurship.
Articles by Yishai Beeri
As enterprises continue to invest in hybrid cloud strategies, they need their fragmented security solutions to work together.
Post a Comment
White Papers
Video
4 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: I guess this answers the question: who's watching the watchers?
Latest Comment: I guess this answers the question: who's watching the watchers?
Current Issue
10 Best Practices That Could Reshape Your IT Security DepartmentThis Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.
Flash Poll
How Enterprises Are Using IT Threat Intelligence
Large organizations are harnessing data about cyberattackers and their exploits to improve the safety of their critical data. Find out what they're doing.
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-20000
PUBLISHED: 2018-12-10
PUBLISHED: 2018-12-10
PUBLISHED: 2018-12-10
PUBLISHED: 2018-12-10
PUBLISHED: 2018-12-09
From DHS/US-CERT's National Vulnerability Database CVE-2018-20000
PUBLISHED: 2018-12-10
Apereo Bedework bw-webdav before 4.0.3 allows XXE attacks, as demonstrated by an invite-reply document that reads a local file, related to webdav/servlet/common/MethodBase.java and webdav/servlet/common/PostRequestPars.java.
CVE-2018-20001PUBLISHED: 2018-12-10
In Libav 12.3, there is a floating point exception in the range_decode_culshift function (called from range_decode_bits) in libavcodec/apedec.c that will lead to remote denial of service via crafted input.
CVE-2018-20002PUBLISHED: 2018-12-10
The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, has a memory leak via a crafted ELF file, leading to a denial of service (memory consumption), as demonstrated by nm.
CVE-2018-19991PUBLISHED: 2018-12-10
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because there is no error handler (for get_uri_args or get_post_args) to block the API misuse described in CVE-2018-9230.
CVE-2018-19653PUBLISHED: 2018-12-09
HashiCorp Consul 0.5.1 through 1.4.0 can use cleartext agent-to-agent RPC communication because the verify_outgoing setting is improperly documented. NOTE: the vendor has provided reconfiguration steps that do not require a software upgrade.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This