Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

News & Commentary
Symantec Builds Out Cloud Portfolio to Enforce 'Zero Trust'
Dark Reading Staff, Quick Hits
New additions to its Integrated Cyber Defense Platform aim to give businesses greater control over access to cloud resources and applications.
By Dark Reading Staff , 7/16/2019
Comment1 Comment  |  Read  |  Post a Comment
18% of Enterprises Holding Back on Windows 10 Upgrade
Dark Reading Staff, Quick Hits
Microsoft will officially end support for Windows 7 on January 14, 2020. Many large businesses aren't ready.
By Dark Reading Staff , 7/15/2019
Comment0 comments  |  Read  |  Post a Comment
Is Machine Learning the Future of Cloud-Native Security?
Pawan Shankar, Senior Security Product Marketing Manager at SysdigCommentary
The nature of containers and microservices makes them harder to protect. Machine learning might be the answer going forward.
By Pawan Shankar Senior Security Product Marketing Manager at Sysdig, 7/15/2019
Comment0 comments  |  Read  |  Post a Comment
German Schools Ban Office 365, Cite Privacy Concerns
Dark Reading Staff, Quick Hits
The ruling follows years of debate over whether German schools and institutions should use Microsoft tools and services.
By Dark Reading Staff , 7/12/2019
Comment1 Comment  |  Read  |  Post a Comment
A Lawyers Guide to Cyber Insurance: 4 Basic Tips
Beth Burgin Waller, Chair, Cybersecurity & Data Privacy Practice , Woods Rogers PLCCommentary
The time to read the fine print in your cybersecurity insurance policy is before you sign on the dotted line.
By Beth Burgin Waller Chair, Cybersecurity & Data Privacy Practice , Woods Rogers PLC, 7/12/2019
Comment3 comments  |  Read  |  Post a Comment
Data Center Changes Push Cyber Risk to Network's Edge
Curtis Franklin Jr., Senior Editor at Dark ReadingNews
Changes in fundamental enterprise architectures coupled with shifts in human resources mean that companies are considering new risks to their infrastructure.
By Curtis Franklin Jr. Senior Editor at Dark Reading, 7/11/2019
Comment1 Comment  |  Read  |  Post a Comment
The Security of Cloud Applications
Hillel Solow, CTO and Co-founder, ProtegoCommentary
Despite the great success of the cloud over the last decade, misconceptions continue to persist. Here's why the naysayers are wrong.
By Hillel Solow CTO and Co-founder, Protego, 7/11/2019
Comment4 comments  |  Read  |  Post a Comment
Industry Insight: Checking Up on Healthcare Security
Kelly Sheridan, Staff Editor, Dark ReadingNews
Modern threats putting healthcare organization at risk, how they're improving their security posture, and where many fall short.
By Kelly Sheridan Staff Editor, Dark Reading, 7/10/2019
Comment1 Comment  |  Read  |  Post a Comment
Why You Need a Global View of IT Assets
Pablo Quiroga, Director of Product Management at QualysCommentary
It may seem obvious, but many companies lose sight of the fact that they can't protect what they don't know they even have.
By Pablo Quiroga Director of Product Management at Qualys, 7/10/2019
Comment1 Comment  |  Read  |  Post a Comment
Organizations Are Adapting Authentication for Cloud Applications
Curtis Franklin Jr., Senior Editor at Dark ReadingNews
Companies see the changing demands of cloud identity management but are mixed in their responses to those demands.
By Curtis Franklin Jr. Senior Editor at Dark Reading, 7/9/2019
Comment0 comments  |  Read  |  Post a Comment
Cloud Security and Risk Mitigation
Derrick Johnson, National Practice Director for Secure Infrastructure Services at AT&T Cybersecurity ConsultingCommentary
Just because your data isn't on-premises doesn't mean you're not responsible for security.
By Derrick Johnson National Practice Director for Secure Infrastructure Services at AT&T Cybersecurity Consulting, 7/9/2019
Comment1 Comment  |  Read  |  Post a Comment
DevOps' Inevitable Disruption of Security Strategy
Ericka Chickowski, Contributing WriterNews
Black Hat USA programming will dive into the ways DevOps-driven shifts in practices and tools are introducing both new vulnerabilities and new ways of securing enterprises.
By Ericka Chickowski Contributing Writer, 7/9/2019
Comment0 comments  |  Read  |  Post a Comment
Attunity Data Leak Exposes Sensitive Files at Ford, TD Bank
Kelly Sheridan, Staff Editor, Dark ReadingNews
Three unsecured Amazon S3 storage buckets compromised more than 1TB of data belonging to Attunity and its high-profile clients.
By Kelly Sheridan Staff Editor, Dark Reading, 7/1/2019
Comment0 comments  |  Read  |  Post a Comment
Cloud Provider PCM Suffers Data Breach
Dark Reading Staff, Quick Hits
Attackers were reportedly able to compromise email and file-sharing systems for some of PCM's customers.
By Dark Reading Staff , 6/28/2019
Comment1 Comment  |  Read  |  Post a Comment
Chronicle Folds into Google
Curtis Franklin Jr., Senior Editor at Dark ReadingNews
Alphabet's enterprise cybersecurity division will become part of the Google security portfolio.
By Curtis Franklin Jr. Senior Editor at Dark Reading, 6/27/2019
Comment3 comments  |  Read  |  Post a Comment
Inside MLS, the New Protocol for Secure Enterprise Messaging
Kelly Sheridan, Staff Editor, Dark ReadingNews
As personal messaging platforms see the rise of end-to-end encryption, businesses struggle to provide strong levels of security.
By Kelly Sheridan Staff Editor, Dark Reading, 6/27/2019
Comment1 Comment  |  Read  |  Post a Comment
Office 365 Multifactor Authentication Done Right
Yassir Abousselham, Chief Security Officer, OktaCommentary
Why the ubiquitous nature of Office 365 poses unique challenges for MFA-based security and how organizations can protect themselves.
By Yassir Abousselham Chief Security Officer, Okta, 6/27/2019
Comment0 comments  |  Read  |  Post a Comment
Developers and Security Teams Under Pressure to Collaborate
Kelly Sheridan, Staff Editor, Dark ReadingNews
The challenges and benefits to getting two traditionally adversarial groups on the same page.
By Kelly Sheridan Staff Editor, Dark Reading, 6/26/2019
Comment12 comments  |  Read  |  Post a Comment
AWS CISO Talks Risk Reduction, Development, Recruitment
Kelly Sheridan, Staff Editor, Dark ReadingNews
Steve Schmidt says limiting access to data has dramatically changed the security posture across Amazon Web Services.
By Kelly Sheridan Staff Editor, Dark Reading, 6/25/2019
Comment2 comments  |  Read  |  Post a Comment
Microsoft Adds New Secure Storage Area to OneDrive
Dark Reading Staff, Quick Hits
PersonalVault locks down files with MFA and encryption.
By Dark Reading Staff , 6/25/2019
Comment0 comments  |  Read  |  Post a Comment
More Stories
Current Conversations
More Conversations
PR Newswire
10 Ways to Keep a Rogue RasPi From Wrecking Your Network
Curtis Franklin Jr., Senior Editor at Dark Reading,  7/10/2019
The Security of Cloud Applications
Hillel Solow, CTO and Co-founder, Protego,  7/11/2019
A Lawyer's Guide to Cyber Insurance: 4 Basic Tips
Beth Burgin Waller, Chair, Cybersecurity & Data Privacy Practice , Woods Rogers PLC,  7/12/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "Jim, stop pretending you're drowning in tickets."
Current Issue
Building and Managing an IT Security Operations Program
As cyber threats grow, many organizations are building security operations centers (SOCs) to improve their defenses. In this Tech Digest you will learn tips on how to get the most out of a SOC in your organization - and what to do if you can't afford to build one.
Flash Poll
The State of IT Operations and Cybersecurity Operations
The State of IT Operations and Cybersecurity Operations
Your enterprise's cyber risk may depend upon the relationship between the IT team and the security team. Heres some insight on what's working and what isn't in the data center.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-13360
PUBLISHED: 2019-07-16
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.836, remote attackers can bypass authentication in the login process by leveraging knowledge of a valid username.
CVE-2019-13383
PUBLISHED: 2019-07-16
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.846, the Login process allows attackers to check whether a username is valid by reading the HTTP response.
CVE-2019-13603
PUBLISHED: 2019-07-16
An issue was discovered in the HID Global DigitalPersona (formerly Crossmatch) U.are.U 4500 Fingerprint Reader Windows Biometric Framework driver 5.0.0.5. It has a statically coded initialization vector to encrypt a user's fingerprint image, resulting in weak encryption of that. This, in combination...
CVE-2019-13605
PUBLISHED: 2019-07-16
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.838 to 0.9.8.846, remote attackers can bypass authentication in the login process by leveraging the knowledge of a valid username. The attacker must defeat an encoding that is not equivalent to base64, and thus this is different from CVE-2019-1...
CVE-2019-13615
PUBLISHED: 2019-07-16
VideoLAN VLC media player 3.0.7.1 has a heap-based buffer over-read in mkv::demux_sys_t::FreeUnused() in modules/demux/mkv/demux.cpp when called from mkv::Open in modules/demux/mkv/mkv.cpp.