Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Author

 Terry Sweeney
Facebook
Twitter
RSS
E-Mail

Profile of Terry Sweeney

Contributing Editor
News & Commentary Posts: 147

Terry Sweeney is a Los Angeles-based writer and editor who has covered technology, networking, and security for more than 20 years. He was part of the team that started Dark Reading and has been a contributor to The Washington Post, Crain's New York Business, Red Herring, Network World, InformationWeek and Mobile Sports Report.

In addition to information security, Sweeney has written extensively about cloud computing, wireless technologies, storage networking, and analytics. After watching successive waves of technological advancement, he still prefers to chronicle the actual application of these breakthroughs by businesses and public sector organizations.

Sweeney is also the founder and chief jarhead of Paragon Jams, which specializes in small-batch jams and preserves for adults.

Articles by Terry Sweeney

Cisco: Reduced Complexity in the SOC Improves Enterprise Security

5/26/2021
SPONSORED: WATCH NOW -- All it took was a global pandemic and a shift to working from home to expose security operations centers' open secret: Too much software, systems, and data to filter. Dug Song, chief strategy officer of Cisco Secure, makes a strong case for why reducing that complexity is the only tenable way forward for security professionals.

Post a Comment

Orange: Your Leaky Security is Coming from Inside the House!

5/26/2021
SPONSORED: Your home WiFi router may be screaming fast, but it's also a major point of vulnerability in this work-from-home era, says Charl van der Walt, head of security research at Orange Cyberdefense. And while Zero Trust offers some relief, he offers up some how-to advice to ensure it's properly deployed.

Post a Comment

Uptycs Offers Resilience Formula to Boost Business Continuity

5/25/2021
SPONSORED CONTENT: Breaches and data loss are inevitable, but customers can bounce back more readily with some planning and foresight, says Ganesh Pai, CEO and founder of Uptycs. He suggests a trajectory for customers looking to improve their own resilience, starting with proactiveness, followed by reactivity, then predictive capabilities and better protection.

Post a Comment

OpenText Blends Security, Data Protection for Greater Cyber Resilience

8/6/2020
SPONSORED CONTENT: Infosec professionals are taking advantage of technology hybrids to keep users, data, and their networks more safe, according to Hal Lonas of OpenText's Webroot division. And they're also finding new ways to use artificial intelligence and machine learning to improve security management and reduce risk.

Post a Comment

Broadcom: Staying Safe with WastedLocker Ransomware Variant on the Prowl

8/6/2020
SPONSORED CONTENT: Stealthier and more patient than some predecessors, WastedLocker lingers surreptitiously for as long as it needs to for maximum payoff, says Jon DiMaggio with Broadcom's Symantec division. He explains how Windows servers are at a different risk level than their open-source counterparts, and how WastedLocker identifies "valuable" targets.

Post a Comment

Platform Security: Intel Pushes to Reduce Supply Chain Attacks

8/6/2020
SPONSORED CONTENT: Attacks on supply chains involve lots of players and companies, not to mention an exponential amount of data for the stealing, notes Intel's Tom Garrison. Notoriously difficult to detect and mitigate, Garrison discusses new approaches to securing an individual company's computing platforms, including Compute Lifecycle Assurance.

Post a Comment

SynerComm Reboots a Security Staple with 'Continuous' Pentesting

8/5/2020
SPONSORED CONTENT: Penetration testing has evolved well beyond a couple guys you hire to try and break into your network, according to SynerComm's Brian Judd. In addition to a service that offers round-the-clock pen testing, SynerComm also provides purple team testing, effectively splitting the difference with red- and blue-team exercises.

Post a Comment

Synopsys: Why Security-Minded Companies Are Transitioning to DevSecOps

8/5/2020
SPONSORED: For too long, developers have had to weigh the tradeoffs between software security and feature development. But as DevSecOps continues to gain momentum over application security, organizations realize that adopting security in software development needn't be a drag on productivity, says Tim Mackey from the Synopsys Cybersecurity Research Center.

Post a Comment

Voatz Delivers Multilayered Security to Protect Electronic Voting

8/5/2020
SPONSORED CONTENT: While electronic voting has been plagued by fears of tampering or fraud, Voatz is looking to make the process more transparent and auditable, according to company founder Nimit Sawhney. He offers learning points from three recent pilots that highlight how governments can improve the integrity and better protect the voting process and its data.

Post a Comment

Why Clouds Keep Leaking Data

9/26/2019
Most devastating cloud data leaks are caused by the same kinds of common cloud security challenges and configuration errors. Here's what you need to know.

Post a Comment

How a PIA Can CYA

9/16/2019
More than a compliance mandate, privacy impact assessments can also spot risks early in the product development cycle.

Post a Comment

[Strategic Security Report] Assessing Cybersecurity Risk

7/6/2017
As cyber attackers become more sophisticated and enterprise defenses become more complex, many enterprises are faced with a complicated question: what is the risk of an IT security breach? This report delivers insight on how today's enterprises evaluate the risks they face. This report also offers a look at security professionals' concerns about a wide variety of threats, including cloud security, mobile security, and the Internet of Things.

Post a Comment

The Top Cybersecurity Risks And How Enterprises Are Responding

8/1/2016
The information security landscape is a constantly shifting risk environment. Today's IT security department must manage both internal and external threats' ranging from malware to mobile device vulnerabilities, to cloud security and ransomware. Download the Dark Reading 2016 Strategic Security Survey to gain insight into how security professionals view these risks, and how they are addressing them.

Post a Comment

Are EMC And IBM Reliable Storage Bellwethers?

4/23/2008
Their success is no guarantee of success for other vendors, but dismal results from these two companies would augur poorly for the rest of the storage industry, to say the least. And quite apart from my glass half-empty outlook, I'm not sure how much weight to give the recent positive financial performance from EMC and IBM.

Post a Comment

Crank Up The Volume

4/22/2008
If storage were an audio receiver, we'd be flirting with that "9" or "10" mark on that big black dial. But we're talking capacity here (and maybe speed), as vendors appear to bend the rules of physics by cramming more bytes than any space or drive should be able to accommodate.

Post a Comment

Data in Motion, And At Rest

4/15/2008
As an IT professional, which one worries you more? And what do you do about a technology like RFID that splits the difference between those two conditions -- stationary, yet traveling across the airwaves, and god knows where else?

Post a Comment

E-Ignorance Can Be Bliss

4/14/2008
I missed something that was staring me in the face. It wasn't something huge or important, like, "Oh, look, Hillary Clinton's really trying to be nice this week." No, what I happily missed were online ads served up by Evite alongside the "Come to dinner" verbiage. This offense apparently is enough for the New York Times to proclaim the site as the ruination of parties in our modern e-times. But what if we forget

Post a Comment

The Temperature Of Storage

4/12/2008
Why can't I look away from the morning weather report, or just turn the page when I come across the odds-makers' lines on the sports section? Maybe it's the control freak in me. Or that I want to believe some mere mortal really knows how this will all turn out. Maybe I just want information, even if it's deemed reliable but not guaranteed. I try to remember all this as I read the temperature taking going on in the storage industry, against a backdrop of bankruptcies, foreclosures, and r

Post a Comment

Wheeling And Dealing

4/8/2008
With the RSA conference on the West Coast competing with Storage Networking World in Orlando, Fla., this week, there are just a couple of vendors big enough to straddle both realms. Any guesses? Both have figured prominently in the tech headlines in the last 48 hours.

Post a Comment

Second-Guessing Yahoo

4/7/2008
I'm not a native Californian, but after eight years of residency, I often find myself in the position of having to defend or explain aspects of life in the Golden State: the improbability of Gov. Schwarzenegger, the unnatural obsession with Britney Spears, or the latest woo-woo, crystal snorting trend, to name a few. But here's one I recently fielded that I didn't see coming: Why is Yahoo playing hard to get with Microsoft?

Post a Comment

In Lockstep At RSA

4/5/2008
Just a few days before the RSA show begins in San Francisco, it's HP and not EMC that's talking loudest about storage and security. Why is that odd? Maybe because EMC owns RSA.

Post a Comment

A Federal Indictment, That's What

4/3/2008
Stop me if you've heard this one: What do you get if you try to board a flight to China while carrying confidential documents, a thumb drive, four external hard drives, 29 recordable CDs, a videotape, and $30,000 in cash?

Post a Comment

A Paradigm Spins Down

4/2/2008
Which is better (and less cliché) than a paradigm that shifts, in my opinion. But based on public and private comments from readers, it's well past time to do away with these fault-prone spinning platters called storage arrays. Here's why.

Post a Comment

Mission Creep And Storage

4/1/2008
Anyone who has ever worked in an organization of, say, more than 50 people is aware of the phenomenon of mission-creep. It's always clear that it has occurred when the person whose initial job was ordering Post-its finds himself handling quality control, handling "external relations" (whatever that is), and traveling two-thirds of the time to make sure branch offices are using the right copying paper. Does any of this ring a bell for today's storage professionals?

Post a Comment

Lockdown Tradeoffs

3/29/2008
Enterprise users and consumers alike have been scared straight about data protection, given the regular headlines about laptop theft or misplaced hard drives. But as users rush to secure the desktop, are their good intentions making the jobs (and lives) of storage pros more difficult?

Post a Comment

And I Recommend Caviar For Dinner

3/27/2008
Yes, every night. Because in this age of federal bailouts of brokerages, record mortgage defaults, and a stock market that doesn't know which way is up, it's time to indulge. At least that seems to be a piece of the logic behind this report, encouraging would-be videoconferencing customers to go HD.

Post a Comment

The Disruption Factor

3/25/2008
Here's a hypothetical based on a lot of ifs. If you had a bunch of money to invest, if you had access to the smartest brokers around, and if the economy were on firm ground, which of these ideas would you invest in?

Post a Comment

Real Tossers

3/24/2008
How long do you hang on to decommissioned hard drives and storage devices? Do you at least wait to make sure your new drives or backup applications are functioning properly? If you answered yes to that last question, there might be a job at the White House for you.

Post a Comment

Behind Microsoft's Visor

3/21/2008
What if Microsoft decided to get really serious about server virtualization? Yeah, yeah, I know Hyper-V is coming this summer. But especially now that they've made such a hash of Vista, virtualization's a natural place for the company to regain a bit of

Post a Comment

De-Dupe Do-Si-Do

3/19/2008
I'm not sure if you need a dance card or a scorecard to keep track of the pairings in the data deduplication market. One thing's abundantly clear: this storage app must have more commercial appeal than most everything else that's come down the pike lately, given the scramble for partners.

Post a Comment

Information Is Power

3/18/2008
Government officials' seeming inability to manage information has led me to conclude they don't need a backup and archiving policy so much as they need a virtual Roto-Rooter turned on their servers and tape drives and cardboard boxes. And here are three cases in point.

Post a Comment
Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-20332
PUBLISHED: 2021-08-02
Specific MongoDB Rust Driver versions can include credentials used by the connection pool to authenticate connections in the monitoring event that is emitted when the pool is created. The user's logging infrastructure could then potentially ingest these events and unexpectedly leak the credentials. ...
CVE-2021-37160
PUBLISHED: 2021-08-02
A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware validation (e.g., cryptographic signature validation) during a File Upload for a firmware update.
CVE-2021-37161
PUBLISHED: 2021-08-02
A buffer overflow issue was discovered in the HMI3 Control Panel contained within the Swisslog Healthcare Nexus Panel, operated by released versions of software before Nexus Software 7.2.5.7. A buffer overflow allows an attacker to overwrite an internal queue data structure and can lead to remote co...
CVE-2021-37162
PUBLISHED: 2021-08-02
A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. If an attacker sends a malformed UDP message, a buffer underflow occurs, leading to an out-of-bounds copy and possible remote code ...
CVE-2021-37163
PUBLISHED: 2021-08-02
An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus operated by released versions of software before Nexus Software 7.2.5.7. The device has two user accounts with passwords that are hardcoded.