Reality Check: Getting Serious About IoT Security
12/5/2016The Department of Homeland Security is fully justified in urging security standards for the Internet of Things.
Post a Comment
Author
Profile of Troy Dearing
Senior Ethical Hacker News & Commentary Posts: 1Troy Dearing (Gunnery Sergeant, Retired) joined Armor as a senior ethical hacker, bringing 20 years of expertise in IT and cybersecurity to the Threat Resistant Unit (TRU). Before joining Armor, Troy was a computer network operator for the NSA, where he was tasked with performing computer network exploitation operations. For 20 years he served the Marine Corps with distinction as a network intelligence subject matter expert, instrumental in the creation of a service level course on network exploitation and analysis. Early in his career he was selected for an internship at the NSA's Red Team which established his foundation in cybersecurity expertise.
Troy hails from the great state of Arizona. He graduated magna cum laude from the University of Maryland University College attaining his Bachelor of Science in cybersecurity. Troy is a Certified Information Systems Security Professional (CISSP).
Articles by Troy Dearing
The Department of Homeland Security is fully justified in urging security standards for the Internet of Things.
Post a Comment
White Papers
Video
7 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "It appears they are all using the new app called 'Cats near me'"
Latest Comment: "It appears they are all using the new app called 'Cats near me'"
Current Issue
The Year in Security 2018This Dark Reading Tech Digest explores the biggest news stories of 2018 that shaped the cybersecurity landscape.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2015-9276
PUBLISHED: 2019-01-16
PUBLISHED: 2019-01-16
PUBLISHED: 2019-01-16
PUBLISHED: 2019-01-16
PUBLISHED: 2019-01-16
From DHS/US-CERT's National Vulnerability Database CVE-2015-9276
PUBLISHED: 2019-01-16
SmarterTools SmarterMail before 13.3.5535 was vulnerable to stored XSS by bypassing the anti-XSS mechanisms. It was possible to run JavaScript code when a victim user opens or replies to the attacker's email, which contained a malicious payload. Therefore, users' passwords could be reset by using an...
CVE-2015-9277PUBLISHED: 2019-01-16
MailEnable before 8.60 allows Directory Traversal for reading the messages of other users, uploading files, and deleting files because "/../" and "/.. /" are mishandled.
CVE-2015-9278PUBLISHED: 2019-01-16
MailEnable before 8.60 allows Privilege Escalation because admin accounts could be created as a consequence of %0A mishandling in AUTH.TAB after a password-change request.
CVE-2015-9279PUBLISHED: 2019-01-16
MailEnable before 8.60 allows Stored XSS via malformed use of "<img/src" with no ">" character in the body of an e-mail message.
CVE-2015-9280PUBLISHED: 2019-01-16
MailEnable before 8.60 allows XXE via an XML document in the request.aspx Options parameter.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2019 UBM, All rights reserved
Tweet This