Endpoint

2/6/2019
04:50 PM
50%
50%

HelpSystems Buys Core Security Assets to Grow Infosec Portfolio

Acquisition will enable it to provide threat detection, pen testing, and other security tools to customers.

IT security firm HelpSystems has purchased assets of Core Security from SecureAuth in an effort to increase its cybersecurity offerings. Terms of the deal were not disclosed.

The technologies acquired include tools for identity governance and administration, penetration testing, threat detection, and vulnerability management. HelpSystems users will benefit from a broader set of security tools they can use to defend against internal and external threats, remain compliant with industry regulations, and accelerate operational efficiencies.

More than 900 businesses already use Core Security's applications; now HelpSystem's customers can consolidate their security tools to a single vendor.

In a statement, HelpSystems CEO Chris Heim noted how companies lack resources and tools they need to protect their assets around the clock. "We're now in a better position to fully support their initiatives across any platform with a multi-pronged approach to cybersecurity that gives busy IT/security professionals peace of mind," he said.

Read more details here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
2/7/2019 | 9:14:03 AM
HelpSystems
Sound logic from the CEO. I've never heard of HelpSystems. But from a cursory search it seems they are a small company. They will need to buy up technologies if they hope to provide around the clock services with their current employee footprint.
Russia Hacked Clinton's Computers Five Hours After Trump's Call
Robert Lemos, Technology Journalist/Data Researcher,  4/19/2019
Why We Need a 'Cleaner Internet'
Darren Anstee, Chief Technology Officer at Arbor Networks,  4/19/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-11537
PUBLISHED: 2019-04-25
In osTicket before 1.12, XSS exists via /upload/file.php, /upload/scp/users.php?do=import-users, and /upload/scp/ajax.php/users/import if an agent manager user uploads a crafted .csv file to the User Importer, because file contents can appear in an error message. The XSS can lead to local file inclu...
CVE-2019-9669
PUBLISHED: 2019-04-25
The Wordfence plugin 7.2.3 for WordPress allows XSS via a unique attack vector.
CVE-2018-12244
PUBLISHED: 2019-04-25
SEP (Mac client) prior to and including 12.1 RU6 MP9 and prior to 14.2 RU1 may be susceptible to a CSV/DDE injection (also known as formula injection) vulnerability, which is a type of issue whereby an application or website allows untrusted input into CSV files.
CVE-2018-18286
PUBLISHED: 2019-04-25
SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated attacker to conduct an SQL injection attack due to insufficient input validation for the changepwd interface. A successful exploit could allow an attacker to extract sensitive information from the database...
CVE-2019-9137
PUBLISHED: 2019-04-25
DaviewIndy 8.98.7 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed Image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.