Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News

2/1/2016
11:45 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

SpiderOak Semaphor to Give Team Collaboration What Its Missing: Privacy

As teams rush onto the next wave of workplace collaboration, Semaphor delivers the industry's first Zero Knowledge, private collaboration tool

Kansas City, Missouri—January 28, 2016— In celebration of Data Privacy Day, SpiderOak today announced Semaphor, a new workplace collaboration tool for teams and businesses that care about privacy. General availability for Semaphor is later in the first quarter, and SpiderOak is accepting a limited number of pre-release invitation requests at https://spideroak.com/semaphor.

Semaphor helps teams improve their productivity by keeping members focused, informed, and connected. Teams can join group conversations, private message team members, share files, and install trusted third-party integrations knowing their privacy is protected at every step. Following the same privacy-centric architecture as all SpiderOak solutions, Semaphor uses a Zero Knowledge architecture that ensures nothing leaves a computer or mobile device until after it is encrypted and is never decrypted until it is unlocked with keys only located on individuals’ devices.

“More and more teams are benefiting from online collaboration and Semaphor is the first enterprise grade solution designed to ensure those conversations remain completely private,” said Mike McCamon, president of SpiderOak. “Stolen ideas are impossible to recover and can turn into successful business opportunities for your competitors. Your ideas matter and they deserve to be protected and shared only with your trusted network. Semaphor is not slack about privacy.”

Currently in development, Semaphor will be available on all major operating systems as an open source application.  Alan Fairless, founder and CEO of SpiderOak, said, “To make the project more accessible to security review, Semaphor is implemented from a single code base using Google’s Go programming language with gomobile.”  Fairless added, “Openness and security auditing are key attributes of responsibly building any new encryption product."

Teams can elect to host accounts with SpiderOak, or later this year, host on-premise for even increased privacy and security. Pricing plans will include free trials, individual user, and team plans all starting as low as $6 per month.

Semaphor will introduce several new features to the workplace collaboration market including its proprietary “nervous design,” password-free account creation, and keyless identity verification. Contrary to traditional privacy-centric application trends, Semaphor will deliver privacy without compromising beautiful design and user experience. Using concepts like color patterns and resolution to communicate different levels of trust, Semaphor will be the most privacy-friendly collaboration tool that also has an easy-to-use and attractive user experience. More details on these features will be available at the time of release.

Semaphor will join the portfolio of privacy-focused solutions from SpiderOak including SpiderOakONE for private cloud backup, Kloak your own social network, and Encryptr simplifying password management. To learn more about Semaphor, and other privacy products, please visit https://spideroak.com.

Internationally celebrated each year on January 28, Data Privacy Day aims to increase awareness and promote online privacy and data protection best practices. 

 

About SpiderOak

For almost a decade, SpiderOak has given people control of their data online. Its Zero Knowledge privacy cloud solutions are designed to be 100% private, innovative, reliable, and affordable for individuals, groups and enterprises. More than one million people have downloaded the online backup solution SpiderOakONE.

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 9/25/2020
Hacking Yourself: Marie Moe and Pacemaker Security
Gary McGraw Ph.D., Co-founder Berryville Institute of Machine Learning,  9/21/2020
Startup Aims to Map and Track All the IT and Security Things
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/22/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-26120
PUBLISHED: 2020-09-27
XSS exists in the MobileFrontend extension for MediaWiki before 1.34.4 because section.line is mishandled during regex section line replacement from PageGateway. Using crafted HTML, an attacker can elicit an XSS attack via jQuery's parseHTML method, which can cause image callbacks to fire even witho...
CVE-2020-26121
PUBLISHED: 2020-09-27
An issue was discovered in the FileImporter extension for MediaWiki before 1.34.4. An attacker can import a file even when the target page is protected against "page creation" and the attacker should not be able to create it. This occurs because of a mishandled distinction between an uploa...
CVE-2020-25812
PUBLISHED: 2020-09-27
An issue was discovered in MediaWiki 1.34.x before 1.34.4. On Special:Contributions, the NS filter uses unescaped messages as keys in the option key for an HTMLForm specifier. This is vulnerable to a mild XSS if one of those messages is changed to include raw HTML.
CVE-2020-25813
PUBLISHED: 2020-09-27
In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, Special:UserRights exposes the existence of hidden users.
CVE-2020-25814
PUBLISHED: 2020-09-27
In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, XSS related to jQuery can occur. The attacker creates a message with [javascript:payload xss] and turns it into a jQuery object with mw.message().parse(). The expected result is that the jQuery object does not contain an <a> ...