Careers & People

8/22/2017
03:10 PM
50%
50%

Coming Soon to Dark Reading...

Event calendar: Dark Reading brings you threat intelligence tomorrow, boardroom communication next week, and coming in November, a brand new conference in the D.C. area.

THIS WEEK

Wednesday, Aug. 23 at 1 p.m. Eastern: Using Cyber Threat Intelligence Wisely, a Dark Reading webinar with Neal Dennis, senior ISAC analyst for R-CISC and Chris Pace, technology advocate, EMEA, for Recorded Future.

A wide range of threat intelligence feeds and services have cropped up to keep IT organizations up to date on the latest security threats. But without mechanisms in place to actually use the information, these alerts provide little benefit. Attend this webinar and learn how to: identify the threat intelligence sources most valuable — and least valuable — to your security efforts; develop processes to quickly analyze and digest threat data; and use threat intelligence when it counts most: BEFORE the attack hits.

 

NEXT WEEK

Wednesday, Aug. 30 at 1 p.m. Eastern: How to Talk to Your Management About IT Security, a Dark Reading webinar with Jim Hansen, COO of PhishMe and Josh Goldfarb, co-founder of IDDRA, former FireEye CTO of emerging technologies and author of Dark Reading's popular "20 Questions" columns.

 

DOWN THE ROAD

Nov. 29 - Nov. 30: INsecurity - A Dark Reading Conference, For the Defenders of Enterprise Security. While “red team” conferences focus primarily on new vulnerabilities and security researchers, INsecurity puts security execution, protection, and operations center stage. The primary speakers will be CISOs and leaders in security defense; the “blue team” will be the focus.

The event will mix traditional sessions with roundtables discuss hot topics with colleagues, on real-world challenges like "Preventing Lateral Movement in Your IT Environment," "10 Ways to Stretch Your Security Budget," and "Targeted Attacks: How to Recognize Them, From the Defender's Point of View." 

INsecurity will be held in the D.C. area, at the Gaylord National Harbor in Maryland, Nov. 29 and 30th. Have a look at the full schedule here and register today.  

 

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
afarngalo221
50%
50%
afarngalo221,
User Rank: Apprentice
8/31/2017 | 6:07:44 PM
Sounds like good info
Check out Navy Federal Credit Union, they are expanding their cyber threat intel team.

If you want to learn more, call Agatha @ 703-206-2865.

 

Thanks,

Agatha

 

 
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
8/23/2017 | 7:50:41 AM
How to Talk to Your Management about IT Security
This segment sounds like it would provide great value to operational teams within IT. I believe the stigma of security vs. functionality has finally begun to diminish so now other departments within the IT structure are excited to implement a more secure platform.
Companies Blindly Believe They've Locked Down Users' Mobile Use
Dawn Kawamoto, Associate Editor, Dark Reading,  11/14/2017
Microsoft Word Vuln Went Unnoticed for 17 Years: Report
Kelly Sheridan, Associate Editor, Dark Reading,  11/14/2017
121 Pieces of Malware Flagged on NSA Employee's Home Computer
Kelly Jackson Higgins, Executive Editor at Dark Reading,  11/16/2017
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Managing Cyber-Risk
An online breach could have a huge impact on your organization. Here are some strategies for measuring and managing that risk.
Flash Poll
Surviving the IT Security Skills Shortage
Surviving the IT Security Skills Shortage
Cybersecurity professionals are in high demand -- and short supply. Find out what Dark Reading discovered during their 2017 Security Staffing Survey and get some strategies for getting through the drought. Download the report today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.