Advertise

Author

Profile of Greg Martin

CEO of JASK

Member Since: 5/2/2017
Author
News & Commentary Posts: 1
Comments: 0

Greg Martin is CEO of JASK (jask.ai), a Silicon Valley-based cybersecurity startup that has developed a unique enterprise security platform to dramatically improve situational awareness of cyberthreats. Martin is a former cybersecurity technical advisor to the FBI and Secret Service, and he is the past founder of a Google Ventures-backed threat intelligence startup that he successfully exited in 2015.

Articles by Greg Martin

View Content By Month

Why OAuth Phishing Poses A New Threat to Users

5/4/2017
Credential phishing lets attackers gain back-end access to email accounts, and yesterday's Google Docs scam raises the risk to a new level.
Post a Comment

Content by Month
May 2017 - 1
[close this box]

Hot Topics

Editors' Choice

More Than Half of Users Reuse Passwords

Curtis Franklin Jr., Senior Editor at Dark Reading, 5/24/2018

Is Threat Intelligence Garbage?

Chris McDaniels, Chief Information Security Officer of Mosaic451, 5/23/2018

Pet Tracker Flaws Expose Pets and Their Owners to Cybercrime

Dark Reading Staff 5/22/2018

Webinars

Learn About Cyber Attackers & How They Target Your Organization

Inside the Cyber Underworld: The Black Market Report

[Cybersecurity Crash Course] Detecting & Mitigating Malware

Webinar Archives

White Papers

The Real Cost of Insider Threats: 2018 Ponemon Report Highlights

2018 Security Report

Mobile Devices: The New Support Frontier for IT (IDG Report)

Phishing Response Trends: It's a Cluster

Case Study: NYCM's Help Desk Goes From Limited & Inefficient to Fast & Impressive

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: This comment is waiting for review by our moderators.

Cartoon Archive

Current Issue

The Changing Role of the CISO

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

[Strategic Security Report] Navigating the Threat Intelligence Maze

Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.

Download Now!

[Strategic Security Report] Cloud Security's Changing Landscape

0 comments

The State of Ransomware

0 comments

The Dark Reading Security Spending Survey

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-11487
PUBLISHED: 2018-05-26

PHPMyWind 5.5 has XSS via the cid parameter to newsshow.php, or the query string to news.php or about.php.

CVE-2018-11471
PUBLISHED: 2018-05-25

Cockpit 0.5.5 has XSS via a collection, form, or region.

CVE-2018-11472
PUBLISHED: 2018-05-25

Monstra CMS 3.0.4 has Reflected XSS during Login (i.e., the login parameter to admin/index.php).

CVE-2018-11473
PUBLISHED: 2018-05-25

Monstra CMS 3.0.4 has XSS in the registration Form (i.e., the login parameter to users/registration).

CVE-2018-11474
PUBLISHED: 2018-05-25

Monstra CMS 3.0.4 has a Session Management Issue in the Administrations Tab. A password change at admin/index.php?id=users&action=edit&user_id=1 does not invalidate a session that is open in a different browser.

Terms of Service
Privacy Statement
Legal Entities

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]