Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

7/16/2014
01:30 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

ZeroFOX to Spotlight Social Risk Management at Black Hat 2014

Will Highlight the Dangers of Botnets and Social Vulnerabilities from Innovation City

BALTIMORE, MD – July 14, 2014 – ZeroFOX, The Social Risk Management Company™, announced today that it will be exhibiting at Black Hat 2014, showcasing its enterprise social risk management platform. Many of today’s cyber attacks leverage social media to infiltrate secure environments and exfiltrate information using the extended security perimeter and attack surface of social media. ZeroFOX’s executive team will present live from Black Hat’s Innovation City to engage with attendees on how social media is the new endpoint and will demonstrate how social cyber attacks continue to grow in scope and complexity.

According to the 2013 Verizon Data Breach Report, nearly 1/3 of all data breaches leveraged social as the primary attack vector. ZeroFOX is uniquely focused on this attack vector, enabling organizations to identify, manage and mitigate the information security risks associated with social media. From targeted social-based cyber attacks to fraud, phishing, social engineering and impersonations, the ZeroFOX Platform provides real-time risk management, threat intelligence and security analytics.

From an industry perspective, enterprise security teams have been relatively naïve in dealing with these kinds of exploits and ZeroFOX wants to use the opportunity at Black Hat to educate the marketplace and raise awareness of the mounting risks involved with having a social enterprise,” said James C. Foster, ZeroFOX CEO. “Businesses, government agencies, non-profits – any organization that is using social media to grow their influence and communicate with their stakeholders – are open to major risks if they aren’t monitoring their social networks for suspicious and malicious activities like social engineering that can open the door to their security perimeter and enable a potentially devastating attack.

Botnets should be of particular concern to businesses given their ability to spread via social networks quickly and easily. Because social media users are more likely to trust a social network post over an unsolicited email, they are at great risk of being collateral damage of a social engineering attack. These botnets are designed to exploit an employee’s social profile as a vulnerable touchpoint to gain access to enterprise networks. In instances like this, the employee’s social network is a major source of business risk. ZeroFOX provides a platform to discover impersonating social assets, detect bots, analyze their reach and impact and help to take them down.

ZeroFOX was founded in January of 2013 and has collected a number of industry awards including being recognized as one of CRN’s Top 10 Security Companies, and 2013 Maryland Cyber Company of the Year.

About ZeroFOX

ZeroFOX, The Social Risk Management Company™, enables organizations to identify, manage and mitigate the information security risks associated with social media. From targeted social-based cyber attacks to fraud, phishing, social engineering and executive impersonations, ZeroFOX provides real-time risk management, threat intelligence and security analytics. To find out more information about ZeroFOX or to join our team, please visit: https://www.zerofox.com.

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/30/2020
'Act of War' Clause Could Nix Cyber Insurance Payouts
Robert Lemos, Contributing Writer,  10/29/2020
6 Ways Passwords Fail Basic Security Tests
Curtis Franklin Jr., Senior Editor at Dark Reading,  10/28/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How to Measure and Reduce Cybersecurity Risk in Your Organization
In this Tech Digest, we examine the difficult practice of measuring cyber-risk that has long been an elusive target for enterprises. Download it today!
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-5425
PUBLISHED: 2020-10-31
Single Sign-On for Vmware Tanzu all versions prior to 1.11.3 ,1.12.x versions prior to 1.12.4 and 1.13.x prior to 1.13.1 are vulnerable to user impersonation attack.If two users are logged in to the SSO operator dashboard at the same time, with the same username, from two different identity provider...
CVE-2020-15703
PUBLISHED: 2020-10-31
There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an unprivile...
CVE-2020-5991
PUBLISHED: 2020-10-30
NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in which an out-of-bounds read or write operation may lead to code execution, denial of service, or information disclosure.
CVE-2020-15273
PUBLISHED: 2020-10-30
baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. The issue affects the following components: Edit feed settings, Edit widget area, Sub site new registration, New category registration. Arbitrary JavaScript may be executed by entering specific characters in the account that can ac...
CVE-2020-15276
PUBLISHED: 2020-10-30
baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. Arbitrary JavaScript may be executed by entering a crafted nickname in blog comments. The issue affects the blog comment component. It is fixed in version 4.4.1.