Author

 Galina Antova & Patrick McBride
Twitter
LinkedIn
RSS

Profile of Galina Antova & Patrick McBride

Co-founder & Chief Marketing Officer, Claroty
News & Commentary Posts: 1

Galina Antova, Co-founder & Chief Business Development Officer, Claroty
Galina Antova is the co-founder and chief business development officer at Claroty. Prior to co-founding the company, she was the global head of industrial security services at Siemens, overseeing the development of its portfolio of services that protect industrial customers against cyberattacks. While at Siemens, she was also responsible for leading the Cyber Security Practice and the Cyber Security Operations Center, providing managed security services for industrial control systems operators. Previously, Galina was with IBM in Canada in various roles in the provisioning and cloud solutions business. She holds a BS in computer science from York University in Toronto, and an MBA from IMD in Lausanne, Switzerland.

https://twitter.com/GalinaAntova

https://www.linkedin.com/in/galinaantova

 

Patrick McBride, Chief Marketing Officer, Claroty

Patrick McBride is the chief marketing officer of Claroty. Prior to joining the company, he was the vice president of marketing and communications at iSIGHT Partners (now FireEye). In addition to expanding the sales pipeline to bolster aggressive revenue growth, he was responsible for defining the global threat intelligence market, and was a key advocate for security professionals shifting from attack response to proactive preparation. Before iSIGHT Partners, Patrick led global marketing at Xceedium Inc. Previously, he co-founded and served as the CEO of META Security Group, a security and compliance software company, and was a senior vice president of META Group, where he led the global research team's network security and IT operations practice. Patrick holds a BS in Management and an AS in Computer Programming from Keene State College.

https://twitter.com/pmcbrideva1
https://www.linkedin.com/in/patrickmcbride/

Articles by Galina Antova & Patrick McBride
WebAuthn, FIDO2 Infuse Browsers, Platforms with Strong Authentication
John Fontana, Standards & Identity Analyst, Yubico,  9/19/2018
Turn the NIST Cybersecurity Framework into Reality: 5 Steps
Mukul Kumar & Anupam Sahai, CISO & VP of Cyber Practice and VP Product Management, Cavirin Systems,  9/20/2018
NSS Labs Files Antitrust Suit Against Symantec, CrowdStrike, ESET, AMTSO
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/19/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-11763
PUBLISHED: 2018-09-25
In Apache HTTP Server 2.4.17 to 2.4.34, by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only HTTP/2 connections. A possible mitigation is to not enable the h2 protocol.
CVE-2018-14634
PUBLISHED: 2018-09-25
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerabl...
CVE-2018-1664
PUBLISHED: 2018-09-25
IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 echoing of AMP management interface authorization headers exposes login credentials in browser cache. ...
CVE-2018-1669
PUBLISHED: 2018-09-25
IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 are vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote atta...
CVE-2018-1539
PUBLISHED: 2018-09-25
IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6 could allow remote attackers to bypass authentication via a direct request or forced browsing to a page other than URL intended. IBM X-Force ID: 142561.