A Checklist for Securing the Internet of Things
10/26/2017IoT devices promise endless benefits, but they also come with serious security issues. Use this checklist to make sure your company stays safe.
Post a Comment
Author
Profile of Naresh Persaud
Senior Director, Security, for CA Technologies News & Commentary Posts: 1With more than 15 years of experience in security and identity management across roles in engineering and architecture, Naresh Persaud is responsible for CA Technologies' security products. As a solution architect, Naresh has devoted much of his career to following the dynamic security industry. He launched the industry's first identity audit solution, which enabled organizations to automate identity governance and privilege controls. Before working at CA Technologies, he held leadership roles in security at Oracle, Sun Microsystems, Waveset, and Alcatel. He began his career in security engineering at IBM Tivoli.
Articles by Naresh Persaud
IoT devices promise endless benefits, but they also come with serious security issues. Use this checklist to make sure your company stays safe.
Post a Comment
White Papers
Video
7 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "It appears they are all using the new app called 'Cats near me'"
Latest Comment: "It appears they are all using the new app called 'Cats near me'"
Current Issue
The Year in Security 2018This Dark Reading Tech Digest explores the biggest news stories of 2018 that shaped the cybersecurity landscape.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2015-9276
PUBLISHED: 2019-01-16
PUBLISHED: 2019-01-16
PUBLISHED: 2019-01-16
PUBLISHED: 2019-01-16
PUBLISHED: 2019-01-16
From DHS/US-CERT's National Vulnerability Database CVE-2015-9276
PUBLISHED: 2019-01-16
SmarterTools SmarterMail before 13.3.5535 was vulnerable to stored XSS by bypassing the anti-XSS mechanisms. It was possible to run JavaScript code when a victim user opens or replies to the attacker's email, which contained a malicious payload. Therefore, users' passwords could be reset by using an...
CVE-2015-9277PUBLISHED: 2019-01-16
MailEnable before 8.60 allows Directory Traversal for reading the messages of other users, uploading files, and deleting files because "/../" and "/.. /" are mishandled.
CVE-2015-9278PUBLISHED: 2019-01-16
MailEnable before 8.60 allows Privilege Escalation because admin accounts could be created as a consequence of %0A mishandling in AUTH.TAB after a password-change request.
CVE-2015-9279PUBLISHED: 2019-01-16
MailEnable before 8.60 allows Stored XSS via malformed use of "<img/src" with no ">" character in the body of an e-mail message.
CVE-2015-9280PUBLISHED: 2019-01-16
MailEnable before 8.60 allows XXE via an XML document in the request.aspx Options parameter.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2019 UBM, All rights reserved
Tweet This