The Detection Trap: Improving Cybersecurity by Learning from the Secret Service
6/12/2017Intruders often understand the networks they target better than their defenders do.
Post a Comment
Author
Profile of Nathaniel Gleicher
Head of Cybersecurity Strategy, Illumio News & Commentary Posts: 3As head of cybersecurity strategy, Nathaniel is responsible for thought leadership, public engagement, and overseeing Illumio's security technology strategy. Nathaniel is a regular speaker at leading industry events, and his writing has appeared in industry publications, the popular press, and academic journals.
Prior to Illumio, Nathaniel investigated and prosecuted domestic and international cybercrime at the U.S. Department of Justice, advised the South Korean government on technology policy, and served as director for cybersecurity policy on the National Security Council at the White House. Nathaniel received a B.S. in computer science from the University of Chicago and a J.D. from Yale Law School. He has served as a Peace Corps volunteer on the island of Saint Vincent and as a Luce Scholar based in Seoul, South Korea.
Articles by Nathaniel Gleicher
Intruders often understand the networks they target better than their defenders do.
Post a Comment
Cyber Lessons From NSA’s Admiral Michael Rogers
1/19/2017Security teams must get better at catching intruders where we have the advantage: on our own networks.
Post a Comment
The Big Lesson We Must Learn From The Dyn DDoS Attack
11/9/2016The vulnerabilities that make IoT devices susceptible to being used in a botnet also make them the perfect avenue into our data centers and clouds.
Post a Comment
White Papers
Video
3 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
Online Malware and Threats: A Profile of Today's Security Posture
This report offers insight on how security professionals plan to invest in cybersecurity, and how they are prioritizing their resources. Find out what your peers have planned today!
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-17906
PUBLISHED: 2018-11-19
PUBLISHED: 2018-11-19
PUBLISHED: 2018-11-19
PUBLISHED: 2018-11-19
PUBLISHED: 2018-11-19
From DHS/US-CERT's National Vulnerability Database CVE-2018-17906
PUBLISHED: 2018-11-19
Philips iSite and IntelliSpace PACS, iSite PACS, all versions, and IntelliSpace PACS, all versions. Default credentials and no authentication within third party software may allow an attacker to compromise a component of the system.
CVE-2018-9209PUBLISHED: 2018-11-19
Unauthenticated arbitrary file upload vulnerability in FineUploader php-traditional-server <= v1.2.2
CVE-2018-9207PUBLISHED: 2018-11-19
Arbitrary file upload in jQuery Upload File <= 4.0.2
CVE-2018-15759PUBLISHED: 2018-11-19
Pivotal Cloud Foundry On Demand Services SDK, versions prior to 0.24 contain an insecure method of verifying credentials. A remote unauthenticated malicious user may make many requests to the service broker with different credentials, allowing them to infer valid credentials and gain access to perfo...
CVE-2018-15761PUBLISHED: 2018-11-19
Cloud Foundry UAA release, versions prior to v64.0, and UAA, versions prior to 4.23.0, contains a validation error which allows for privilege escalation. A remote authenticated user may modify the url and content of a consent page to gain a token with arbitrary scopes that escalates their privileges...
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This