Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Database Security

Careers and People

Identity & Access Management

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

To InformationWeek

Network Computing Dark Reading

Advertise

Author

Profile of Eyal Benishti

CEO & Founder of IRONSCALES

News & Commentary Posts: 7

Eyal Benishti has spent more than a decade in the information security industry, with a focus on software R&D for startups and enterprises. Before establishing IRONSCALES, he served as security researcher and malware analyst at Radware, where he filed two patents in the information security domain. He also served as technical lead at Imperva, working on the Web Application Firewall product and other security solutions. A passionate cyber researcher from a young age, Eyal holds a degree in computer science and mathematics from Bar-Ilan University in Israel.

Articles by Eyal Benishti

View Content By Month

What the Battle of Britain Can Teach Us About Cybersecurity's Human Element

3/18/2020
During WWII, the British leveraged both technology and human intelligence to help win the war. Security leaders must learn the lessons of history and consider how the human element can make their machine-based systems more effective.
Post a Comment

Email Threats Poised to Haunt Security Pros into Next Decade

10/30/2019
Decentralized threat intel sharing, more public-private collaboration, and greater use of automated incident response are what's needed to combat phishing
Post a Comment

Advanced Phishing Scenarios You Will Most Likely Encounter This Year

1/14/2019
In 2019, there will be no end in sight to email-driven cybercrime such as business email compromise, spearphishing, and ransomware.
Post a Comment

The Return of Email Flooding

11/29/2018
An old attack technique is making its way back into the mainstream with an onslaught of messages that legacy tools and script writing can't easily detect.
Post a Comment

Office 365 & G-Suite: How Email Security Is Failing Your Business

5/29/2018
Microsoft's Office 365 and Google's G-Suite boast of many advanced features to secure email, however, as phishers and other attackers get better at attacking email platforms, these two companies need to do more to keep up.
Post a Comment

Security Training & Awareness: 3 Big Myths

10/23/2017
The once-overwhelming consensus that security awareness programs are invaluable is increasingly up for debate.
Post a Comment

The Limitations Of Phishing Education

1/9/2017
Human nature means that education will only go so far. Technology needs to take up the slack.
Post a Comment

Editors' Choice

7 Tips for Choosing Security Metrics That Matter

Ericka Chickowski, Contributing Writer, 10/19/2020

IoT Vulnerability Disclosure Platform Launched

Dark Reading Staff 10/19/2020

GravityRAT Spyware Targets Android & MacOS in India

Dark Reading Staff 10/19/2020

Get Your Pass | Interop Digital December 3rd FREE Event

Interop Digital December 3rd FREE Event on Cloud & Networking

More Informa Tech Live Events

White Papers

When and How to Best Leverage an MSSP

The Threat Hunt That Uncovered Novel Malware

An Integrated Approach to Embedding Security into DevOps

Meetup Vulnerabilities: Escalation of Privilege and Redirection of Funds

Dark Reading Report Round Up

More White Papers

Cartoon

Latest Comment: This comment is waiting for review by our moderators.

Cartoon Archive

Current Issue

Special Report: Computing's New Normal

This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.

Download This Issue!

Back Issues | Must Reads

Flash Poll

How IT Security Organizations are Attacking the Cybersecurity Problem

How IT Security Organizations are Attacking the Cybersecurity Problem

The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.

Special Report: Understanding Your Cyber Attackers

2020 State of Cybersecurity Operations and Incident Response

The Changing Face of Threat Intelligence

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Dark Reading - Bug Report

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-26649
PUBLISHED: 2020-10-22

AtomXCMS 2.0 is affected by Incorrect Access Control via admin/dump.php

CVE-2020-26650
PUBLISHED: 2020-10-22

AtomXCMS 2.0 is affected by Arbitrary File Read via admin/dump.php

CVE-2020-27533
PUBLISHED: 2020-10-22

A Cross Site Scripting (XSS) issue was discovered in the search feature of DedeCMS v.5.8 that allows malicious users to inject code into web pages, and other users will be affected when viewing web pages.

CVE-2020-24033
PUBLISHED: 2020-10-22

An issue was discovered in fs.com S3900 24T4S 1.7.0 and earlier. The form does not have an authentication or token authentication mechanism that allows remote attackers to forge requests on behalf of a site administrator to change all settings including deleting users, creating new users with escala...

CVE-2020-27560
PUBLISHED: 2020-10-22

ImageMagick 7.0.10-34 allows Division by Zero in OptimizeLayerFrames in MagickCore/layer.c, which may cause a denial of service.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]