Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Database Security

Authentication

Mobile

Privacy

Compliance

Identity & Access Management

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

To InformationWeek

Network Computing Dark Reading

Advertise

Author

Profile of Dimitri Sirota

Founder & CEO of BigID

Member Since: 3/13/2017
Author
News & Commentary Posts: 3
Comments: 0

Dimitri Sirota is a 10+ year privacy expert and identity veteran. He is CEO and cofounder of data protection and privacy software company BigID. Prior to starting BigID, Dimitri founded two enterprise software companies focused on security (eTunnels) and API management (Layer 7 Technologies), which was sold to CA Technologies in 2013.

Articles by Dimitri Sirota

View Content By Month

Data Privacy Protections for the Most Vulnerable — Children

10/17/2019
The business case for why companies that respect the privacy of individuals, and especially minors, will have a strong competitive advantage.
Post a Comment

The Right to Be Forgotten & the New Era of Personal Data Rights

7/27/2017
Because of the European Union's GDPR and other pending legislation, companies must become more transparent in how they protect their customers' data.
Post a Comment

Privacy Babel: Making Sense of Global Privacy Regulations

3/29/2017
Countries around the world are making their own privacy laws. How can a global company possibly keep up?
Post a Comment

Editors' Choice

COVID-19: Latest Security News & Commentary

Dark Reading Staff 4/7/2020

The Coronavirus & Cybersecurity: 3 Areas of Exploitation

Robert R. Ackerman Jr., Founder & Managing Director, Allegis Capital, 4/7/2020

'Unkillable' Android Malware App Continues to Infect Devices Worldwide

Jai Vijayan, Contributing Writer, 4/8/2020

Webinars

How to Effectively Analyze Security Data

Building a Strategy for Detection and Response

5 Steps to Integrate SAST into the DevSecOps Pipeline

Webinar Archives

White Papers

Hacker's Almanac

Threat Hunting with Zeek Guide

Global Password Security Report

Two-Factor Evaluation Guide

Threat Intelligence Spotlight: The Shifting Framework of Modern Malware

More White Papers

Video

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: Digitized COVID-19 Prevention

Cartoon Archive

Current Issue

6 Emerging Cyber Threats That Enterprises Face in 2020

This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

State of Cybersecurity Incident Response

State of Cybersecurity Incident Response

Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.

Download Now!

How Enterprises Are Developing and Maintaining Secure Applications

How Enterprises are Attacking the Cybersecurity Problem

How Data Breaches affect the Enterprise

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Dark Reading - Bug Report

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-7922
PUBLISHED: 2020-04-09

X.509 certificates generated by the MongoDB Enterprise Kubernetes Operator may allow an attacker with access to the Kubernetes cluster improper access to MongoDB instances. Customers who do not use X.509 authentication, and those who do not use the Operator to generate their X.509 certificates are u...

CVE-2018-21034
PUBLISHED: 2020-04-09

In Argo versions prior to v1.5.0-rc1, it was possible for authenticated Argo users to submit API calls to retrieve secrets and other manifests which were stored within git.

CVE-2020-1895
PUBLISHED: 2020-04-09

A large heap overflow could occur in Instagram for Android when attempting to upload an image with specially crafted dimensions. This affects versions prior to 128.0.0.26.128.

CVE-2020-5263
PUBLISHED: 2020-04-09

auth0.js (NPM package auth0-js) greater than version 8.0.0 and before version 9.12.3 has a vulnerability. In the case of an (authentication) error, the error object returned by the library contains the original request of the user, which may include the plaintext password the user entered. If the er...

CVE-2020-9499
PUBLISHED: 2020-04-09

Some Dahua products have buffer overflow vulnerabilities. After the successful login of the legal account, the attacker sends a specific DDNS test command, which may cause the device to go down.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]