What Will Cybersecurity's 'New Normal' Look Like?

Network Computing Dark Reading

Advertise

About Us

Newest First | Oldest First | Threaded View

[close this box]

50%

Mark Darby,
User Rank: Author
6/22/2020 | 5:24:47 AM

Beyond Trust into Certainty?

Trust is absolutely crucial during this extraordinary period of business calibration, but trust in itself may not be enough at the moment, there needs to be more certainty. Every organisation has its own unique circumstances and while instincts tend to veer towards protection during periods of disruption, smart leaders will place equal emphasis on protection and growth.

Reply | Post Message | Messages List | Start a Board

50%

RyanSepe,
User Rank: Ninja
6/21/2020 | 1:58:03 PM

Privacy Rights for Employees

This should be a very cut and dry subject but I think we over complicate it. If you have a work asset it should be used solely for work purposes. Whether it be physical or VDI isolation, doesn't matter. Its typically part of most organizations AUP that what you do on company property is subject to review.

If you follow this mechanic then your privacy will remain intact and you have nothing to worry about. If not, then you do so at your own risk.

Reply | Post Message | Messages List | Start a Board

Hot Topics

Editors' Choice

COVID-19: Latest Security News & Commentary

Dark Reading Staff 7/31/2020

'BootHole' Vulnerability Exposes Secure Boot Devices to Attack

Kelly Sheridan, Staff Editor, Dark Reading, 7/29/2020

Out-of-Date and Unsupported Cloud Workloads Continue as a Common Weakness

Robert Lemos, Contributing Writer, 7/28/2020

Live Events

Webinars

Expert led sessions and real networking - Join us at Data Center World 2020: A Virtual Experience

Collaborate With IT Industry Leaders at Interop Digital, Oct. 5-8

More Informa Tech Live Events

White Papers

Container Security Best Practices: A How-To Guide

CyberSecurity Trends 2020

A Guide to the Iranian Threat Landscape

Online Traffic & Cyber Attacks During COVID-19

Step Into the New Era of Digital Decisioning Platforms

More White Papers

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: Sandboxing? Ppphhht! I've moved beyond sandboxes to sandcastles.

Cartoon Archive

Current Issue

Special Report: Computing's New Normal, a Dark Reading Perspective

This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The Threat from the Internet—and What Your Organization Can Do About It

This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!

Download Now!

State of Endpoint Security: How Enterprises Are Managing Endpoint Security Threats

0 comments

State of Cybersecurity Incident Response

0 comments

Developing and Maintaining Secure Applications

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-14310
PUBLISHED: 2020-07-31

There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn't verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a ma...

CVE-2020-14311
PUBLISHED: 2020-07-31

There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.

CVE-2020-5413
PUBLISHED: 2020-07-31

Spring Integration framework provides Kryo Codec implementations as an alternative for Java (de)serialization. When Kryo is configured with default options, all unregistered classes are resolved on demand. This leads to the "deserialization gadgets" exploit when provided data contains mali...

CVE-2020-5414
PUBLISHED: 2020-07-31

VMware Tanzu Application Service for VMs (2.7.x versions prior to 2.7.19, 2.8.x versions prior to 2.8.13, and 2.9.x versions prior to 2.9.7) contains an App Autoscaler that logs the UAA admin password. This credential is redacted on VMware Tanzu Operations Manager; however, the unredacted logs are a...

CVE-2019-11286
PUBLISHED: 2020-07-31

VMware GemFire versions prior to 9.10.0, 9.9.1, 9.8.5, and 9.7.5, and VMware Tanzu GemFire for VMs versions prior to 1.11.0, 1.10.1, 1.9.2, and 1.8.2, contain a JMX service available to the network which does not properly restrict input. A remote authenticated malicious user may request against the ...

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]