Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Advertise

About Us

Author

Profile of Joel Fulton

Chief Information Security Officer for Splunk

News & Commentary Posts: 2

Joel Fulton, Ph.D., is Chief Information Security Officer for Splunk, leading the Splunk Global Security teams, where he also supports product development as well as customer and partner relationships. Prior to joining Splunk, Joel held security leadership positions at Google, Symantec, Starbucks, and Boeing. Joel is a frequent speaker at external conferences and customer events on insider threats, AI/machine learning and cybercecurity, pragmatic risk management, and global security management. He holds a bachelor's degree in business administration from Excelsior College, a master's of science in information security from Capella University, and a doctoral degree in information assurance and security from Capella University.

Articles by Joel Fulton

View Content By Month

Make Security Boring Again

7/18/2018
In the public sector and feeling overwhelmed? Focus on the basics, as mind numbing as that may sound.
Post a Comment

Why CISOs Need a Security Reality Check

6/13/2018
We deserve a seat at the executive table, and we'll be much better at our jobs once we take it.
Post a Comment

Hot Topics

Editors' Choice

COVID-19: Latest Security News & Commentary

Dark Reading Staff 8/10/2020

Researcher Finds New Office Macro Attacks for MacOS

Curtis Franklin Jr., Senior Editor at Dark Reading, 8/7/2020

Hacking It as a CISO: Advice for Security Leadership

Kelly Sheridan, Staff Editor, Dark Reading, 8/10/2020

Live Events

Webinars

Expert led sessions and real networking - Join us at Data Center World 2020: A Virtual Experience

Collaborate With IT Industry Leaders at Interop Digital, Oct. 5-8

More Informa Tech Live Events

White Papers

DevOps for the Database

Wired vs. Wireless LAN Solution

NDaaS 101

2020 State of Malware Report

McGraw-Hill Automates Load Testing with Micro Focus

More White Papers

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: The superior method of sandboxing called "sandcastling" involves having the user detonate the malware.

Cartoon Archive

Current Issue

Special Report: Computing's New Normal, a Dark Reading Perspective

This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The Changing Face of Threat Intelligence

This special report takes a look at how enterprises are using threat intelligence, as well as emerging best practices for integrating threat intel into security operations and incident response. Download it today!

Download Now!

The Threat from the Internet—and What Your Organization Can Do About It

0 comments

State of Endpoint Security: How Enterprises Are Managing Endpoint Security Threats

0 comments

State of Cybersecurity Incident Response

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-8904
PUBLISHED: 2020-08-12

An arbitrary memory overwrite vulnerability in the trusted memory of Asylo exists in versions prior to 0.6.0. As the ecall_restore function fails to validate the range of the output_len pointer, an attacker can manipulate the tmp_output_len value and write to an arbitrary location in the trusted (en...

CVE-2020-8905
PUBLISHED: 2020-08-12

A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should not have access to. The 'enc_untrusted_recvfrom' function generates a return value which is deserialized by 'MessageReader', and copied into three different 'extents'. The length of ...

CVE-2020-12106
PUBLISHED: 2020-08-12

The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows unauthenticated users to send HTTP POST request to several critical Administrative functions such as, changing credentials of the Administrator account or connect the product to a rogue access point.

CVE-2020-12107
PUBLISHED: 2020-08-12

The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, which allow full control over this module's Operating System.

CVE-2020-7374
PUBLISHED: 2020-08-12

Documalis Free PDF Editor version 5.7.2.26 and Documalis Free PDF Scanner version 5.7.2.122 do not appropriately validate the contents of JPEG images contained within a PDF. Attackers can exploit this vulnerability to trigger a buffer overflow on the stack and gain remote code execution as the user ...

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]