Advertise

Author

Profile of Carolyn Crandall

Chief Deception Officer at Attivo Networks

Member Since: 9/25/2015
Author
News & Commentary Posts: 2
Comments: 1

Carolyn Crandall is a technology executive with over 25 years of experience in building emerging technology markets in security, networking, and storage industries. She has a demonstrated track record of successfully taking companies from pre-IPO through to multibillion-dollar sales and has held leadership positions at Cisco, Juniper Networks, Nimble Storage, Riverbed, and Seagate. Carolyn is recognized as a global thought leader on technology trends and for building strategies that connect technology with customers to solve difficult information technology challenges. Her current focus is on breach risk mitigation by teaching organizations how to shift from a prevention-based security infrastructure to one of an adaptive security defense based on the adoption of deception-based cyber warfare.

As the Chief Deception Officer at Attivo Networks, she is an active speaker on security innovation at CISO forums and industry events. She has been a guest on Fox News and recently presented at the CSO50 Conference, ISSA International, NH-ISAC, and Santa Clara University, and has hosted multiple technology education webinars. She is also an active blogger and byline contributor.

Articles by Carolyn Crandall

View Content By Month

Advanced Deception: How It Works & Why Attackers Hate It

12/18/2017
While cyberattacks continue to grow, deception-based technology is providing accurate and scalable detection and response to in-network threats.
Post a Comment

Deception: Why It's Not Just Another Honeypot

12/1/2017
The technology has made huge strides in evolving from limited, static capabilities to adaptive, machine learning deception.
Post a Comment

Content by Month
December 2017 - 2
[close this box]

Hot Topics

Editors' Choice

Meet 'Bro': The Best-Kept Secret of Network Security

Greg Bell, CEO, Corelight, 6/14/2018

Containerized Apps: An 8-Point Security Checklist

Jai Vijayan, Freelance writer, 6/14/2018

Four Faces of Fraud: Identity, 'Fake' Identity, Ransomware & Digital

David Shefter, Chief Technology Officer at Ziften Technologies, 6/14/2018

Live Events

Webinars

More UBM Tech
Live Events

INsecurity Conference - An Event Like No Other

Black Hat Trainings - October 22 & 23

Are You Looking to Learn About New Cybersecurity Threats & Challenges? Then INsecurity Is For You!

White Papers

2018 Security Report

The Next Gen of IT Support

[Cybersecurity] 11 key points to consider when choosing a solution

[Checklist] Next-Gen AV Product Vendor Selection

Once Upon a Network: Modern-Day Security Tales

More White Papers

Video

All Videos

Cartoon

Latest Comment: In pace requiescat

Cartoon Archive

Current Issue

The Changing Role of the CISO

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The State of IT and Cybersecurity

IT and security are often viewed as different disciplines - and different departments. Find out what our survey data revealed, read the report today!

Download Now!

[Strategic Security Report] Navigating the Threat Intelligence Maze

0 comments

[Strategic Security Report] Cloud Security's Changing Landscape

0 comments

The State of Ransomware

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-0291
PUBLISHED: 2018-06-20

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco NX-OS Software could allow an authenticated, remote attacker to cause the SNMP application on an affected device to restart unexpectedly. The vulnerability is due to improper validation of SNMP protocol ...

CVE-2018-0292
PUBLISHED: 2018-06-20

A vulnerability in the Internet Group Management Protocol (IGMP) Snooping feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code and gain full control of an affected system. The attacker could also cause an affected system to reload, resulting in ...

CVE-2018-0293
PUBLISHED: 2018-06-20

A vulnerability in role-based access control (RBAC) for Cisco NX-OS Software could allow an authenticated, remote attacker to execute CLI commands that should be restricted for a nonadministrative user. The attacker would have to possess valid user credentials for the device. The vulnerability is du...

CVE-2018-0294
PUBLISHED: 2018-06-20

A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to configure an unauthorized administrator account for an affected device. The vulnerability exists because the affected software does not properly delete sensitive...

CVE-2018-0295
PUBLISHED: 2018-06-20

A vulnerability in the Border Gateway Protocol (BGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the device unexpectedly reloading. The vulnerability is due to incomplete input validation of the BGP update...

Terms of Service
Privacy Statement
Legal Entities

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]