Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Database Security

Authentication

Mobile

Privacy

Compliance

Identity & Access Management

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

To InformationWeek

Network Computing Dark Reading

Advertise

Author

Profile of Eyal Benishti

CEO & Founder of IRONSCALES

News & Commentary Posts: 6

Eyal Benishti has spent more than a decade in the information security industry, with a focus on software R&D for startups and enterprises. Before establishing IRONSCALES, he served as security researcher and malware analyst at Radware, where he filed two patents in the information security domain. He also served as technical lead at Imperva, working on the Web Application Firewall product and other security solutions. A passionate cyber researcher from a young age, Eyal holds a degree in computer science and mathematics from Bar-Ilan University in Israel.

Articles by Eyal Benishti

View Content By Month

What the Battle of Britain Can Teach Us About Cybersecurity's Human Element

3/18/2020
During WWII, the British leveraged both technology and human intelligence to help win the war. Security leaders must learn the lessons of history and consider how the human element can make their machine-based systems more effective.
Post a Comment

Email Threats Poised to Haunt Security Pros into Next Decade

10/30/2019
Decentralized threat intel sharing, more public-private collaboration, and greater use of automated incident response are what's needed to combat phishing
Post a Comment

Advanced Phishing Scenarios You Will Most Likely Encounter This Year

1/14/2019
In 2019, there will be no end in sight to email-driven cybercrime such as business email compromise, spearphishing, and ransomware.
Post a Comment

The Return of Email Flooding

11/29/2018
An old attack technique is making its way back into the mainstream with an onslaught of messages that legacy tools and script writing can't easily detect.
Post a Comment

Security Training & Awareness: 3 Big Myths

10/23/2017
The once-overwhelming consensus that security awareness programs are invaluable is increasingly up for debate.
Post a Comment

The Limitations Of Phishing Education

1/9/2017
Human nature means that education will only go so far. Technology needs to take up the slack.
Post a Comment

Editors' Choice

Virgin Media Could Pay £4.5B for Leak Affecting 900,000 Customers

Dark Reading Staff 3/27/2020

Malicious USB Drive Hides Behind Gift Card Lure

Dark Reading Staff 3/27/2020

Microsoft Edge Will Tell You If Credentials Are Compromised

Dark Reading Staff 3/30/2020

Webinars

How to Effectively Analyze Security Data

Building a Strategy for Detection and Response

Chatbots for the Enterprise

Webinar Archives

White Papers

eSentire Annual Threat Intelligence Report: 2019 Perspectives and 2020 Predictions

Cybersecurity Research: 2019 AWS Cloud Security Report

Securing Real-Time Communications for Dummies Book

Hackers: Your Secret Weapon

Embracing the Digital Data Center

More White Papers

Video

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: I read to new remote worker security policy and have it covered!

Cartoon Archive

Current Issue

6 Emerging Cyber Threats That Enterprises Face in 2020

This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

State of Cybersecurity Incident Response

State of Cybersecurity Incident Response

Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.

Download Now!

How Enterprises Are Developing and Maintaining Secure Applications

How Enterprises are Attacking the Cybersecurity Problem

How Data Breaches affect the Enterprise

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Dark Reading - Bug Report

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-8144
PUBLISHED: 2020-04-01

The UniFi Video Server v3.9.3 and prior (for Windows 7/8/10 x64) web interface Firmware Update functionality, under certain circumstances, does not validate firmware download destinations to ensure they are within the intended destination directory tree. It accepts a request with a URL to firmware u...

CVE-2020-8145
PUBLISHED: 2020-04-01

The UniFi Video Server (Windows) web interface configuration restore functionality at the â€&oelig;backupâ€� and â€&oelig;wizardâ€� endpoints does not implement sufficient privilege checks. Low privileged users, belonging to the PUBLIC_GROUP ...

CVE-2020-8146
PUBLISHED: 2020-04-01

In UniFi Video v3.10.1 (for Windows 7/8/10 x64) there is a Local Privileges Escalation to SYSTEM from arbitrary file deletion and DLL hijack vulnerabilities. The issue was fixed by adjusting the .tsExport folder when the controller is running on Windows and adjusting the SafeDllSearchMode in the win...

CVE-2020-6009
PUBLISHED: 2020-04-01

LearnDash Wordpress plugin version below 3.1.6 is vulnerable to Unauthenticated SQL Injection.

CVE-2020-6096
PUBLISHED: 2020-04-01

An exploitable signed comparison vulnerability exists in the ARMv7 memcpy() implementation of GNU glibc 2.30.9000. Calling memcpy() (on ARMv7 targets that utilize the GNU glibc implementation) with a negative value for the 'num' parameter results in a signed comparison vulnerability. If an attacker ...

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]