Stripping the Attacker Naked
4/6/2018How cyber threat intelligence can help you gain a better understanding of the enemy and why that gives security teams the upper hand.
Post a Comment
Author
Profile of Martin Dion
VP EMEA Services, Kudelski Security Member Since: 11/16/2017Author
News & Commentary Posts: 2
Comments: 2
Originally from Montreal, Martin has been navigating the tormented water of cybersecurity for over 20 years. He was the founder and CTO at Above Security Canada where he worked locally and in the Caribbean's. Twelve years ago, he moved to Switzerland to launch SecureIT, serving EU and MEA fortune 500 clients. When both organizations were acquired by Hitachi Security, he moved to MIG Bank as chief security officer. He is now the vice president of EMEA delivery at Kudelski Security, which he joined 5 years ago.
Martin originally studied information system management (CA), followed by operational risk management (US) and criminology (UK) complemented by executive education at Harvard Business School and at the Center for Creative Leadership. He holds CISSP, CISM, ISO 27001 and OCEG certifications. He focusses on enterprise security strategy definition, cyber intelligence and on top of certification classes, teaches innovation and business modelling in various Swiss universities.
Articles by Martin Dion
How cyber threat intelligence can help you gain a better understanding of the enemy and why that gives security teams the upper hand.
Post a Comment
3 Pillars of Cyberthreat Intelligence
11/22/2017Strong enterprise cybersecurity programs must be a built on a framework that incorporates strategic, operational, and tactical leadership and goals.
Post a Comment
White Papers
Video
0 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Some people never learn, he clicked on another Democrat phishing link again!
Latest Comment: Some people never learn, he clicked on another Democrat phishing link again!
Current Issue
Flash Poll
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security — even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-18381
PUBLISHED: 2018-10-16
PUBLISHED: 2018-10-16
PUBLISHED: 2018-10-16
PUBLISHED: 2018-10-16
PUBLISHED: 2018-10-16
From DHS/US-CERT's National Vulnerability Database CVE-2018-18381
PUBLISHED: 2018-10-16
Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php via the Content-Type header during the uploading of image attachments.
CVE-2018-18382PUBLISHED: 2018-10-16
Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php file to the user/update-user-avatar URI, which can be accessed through an "Update Profile" "Change Picture" (aka user/edit-profile) action.
CVE-2018-18374PUBLISHED: 2018-10-16
XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.
CVE-2018-18375PUBLISHED: 2018-10-16
goform/getProfileList in Orange AirBox Y858_FL_01.16_04 allows attackers to extract APN data (name, number, username, and password) via the rand parameter.
CVE-2018-18376PUBLISHED: 2018-10-16
goform/getWlanClientInfo in Orange AirBox Y858_FL_01.16_04 allows remote attackers to discover information about currently connected devices (hostnames, IP addresses, MAC addresses, and connection time) via the rand parameter.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This