Lets Get Smarter About Security By Working Together
Rick McElroy, Security Strategist, Carbon BlackCommentary
We all need help, and only by working together can we move the needle on security.
By Rick McElroy Security Strategist, Carbon Black, 9/13/2016
Comment0 comments  |  Read  |  Post a Comment
Cybersecurity Self-Esteem: 4 Things Confident Teams Are Doing
Ben Johnson, Co-founder and CTO, Obsidian SecurityCommentary
By increasing our cybersecurity self-esteem, we can truly make a difference in raising our collective cybersecurity resiliency.
By Ben Johnson Co-founder and CTO, Obsidian Security, 8/31/2016
Comment0 comments  |  Read  |  Post a Comment
How the Adoption of EDR Transforms a SOCs Effectiveness
John Markott, Director of Product Management, Carbon BlackCommentary
Endpoint detection response is helping take the headache out of responding to threats by providing visibility where most organizations are blind.
By John Markott Director of Product Management, Carbon Black, 8/2/2016
Comment0 comments  |  Read  |  Post a Comment
Saving The Security Operations Center With Endpoint Detection And Response
John Markott, Director of Product Management, Carbon BlackCommentary
EDR is the beginning of our return to control in the fight against cybercrime.
By John Markott Director of Product Management, Carbon Black, 7/11/2016
Comment1 Comment  |  Read  |  Post a Comment
Shifting The Economic Balance Of Cyberattacks
Ben Johnson, Co-founder and CTO, Obsidian SecurityCommentary
Our goal should be to simply make the cost of conducting a cyberattack so expensive that cybercriminals view attacking our organization as a bad return on investment.
By Ben Johnson Co-founder and CTO, Obsidian Security, 6/27/2016
Comment1 Comment  |  Read  |  Post a Comment
A Real World Analogy For Patterns of Attack
Ben Johnson, Co-founder and CTO, Obsidian SecurityCommentary
Patterns reveal exponentially more relevant information about attempted malfeasance than singular indicators of an attack ever could.
By Ben Johnson Co-founder and CTO, Obsidian Security, 6/20/2016
Comment0 comments  |  Read  |  Post a Comment
Patterns Of Attack Offer Exponentially More Insight Than Indicators
Ben Johnson, Co-founder and CTO, Obsidian SecurityCommentary
In the cyberworld, patterns of attack provide investigators with context and the precise sequence of events as a cybercrime unfolds.
By Ben Johnson Co-founder and CTO, Obsidian Security, 6/13/2016
Comment1 Comment  |  Read  |  Post a Comment
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
The Year in Security 2018
This Dark Reading Tech Digest explores the biggest news stories of 2018 that shaped the cybersecurity landscape.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-20735
PUBLISHED: 2019-01-17
** DISPUTED ** An issue was discovered in BMC PATROL Agent through 11.3.01. It was found that the PatrolCli application can allow for lateral movement and escalation of privilege inside a Windows Active Directory environment. It was found that by default the PatrolCli / PATROL Agent application only...
CVE-2019-0624
PUBLISHED: 2019-01-17
A spoofing vulnerability exists when a Skype for Business 2015 server does not properly sanitize a specially crafted request, aka "Skype for Business 2015 Spoofing Vulnerability." This affects Skype.
CVE-2019-0646
PUBLISHED: 2019-01-17
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka "Team Foundation Server Cross-site Scripting Vulnerability." This affects Team.
CVE-2019-0647
PUBLISHED: 2019-01-17
An information disclosure vulnerability exists when Team Foundation Server does not properly handle variables marked as secret, aka "Team Foundation Server Information Disclosure Vulnerability." This affects Team.
CVE-2018-20727
PUBLISHED: 2019-01-17
Multiple command injection vulnerabilities in NeDi before 1.7Cp3 allow authenticated users to execute code on the server side via the flt parameter to Nodes-Traffic.php, the dv parameter to Devices-Graph.php, or the tit parameter to drawmap.php.