Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

4/9/2019
09:10 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Global Insurer Addresses Cybersecurity Threats with Breach Protection Platform

Continuous innovation to stay at eye level with attackers using holistic security platform.

New York, NY -- April 9, 2019 -- Cynet, pioneers of award-winning automated threat discovery and mitigation solutions (https://protect-eu.mimecast.com/s/QKnjCvlppuqkzJ3sQV-wo?domain=cynet.com), today announced that the company will cooperate with Allianz to accelerate and target innovation that meets the needs of global corporations. Cyber risks have become one of, if not the top risk for companies in the insurance industry and beyond. 

Allianz is a global insurer, asset manager and major global corporation with only intangible products, based entirely on information. Consequently, excellent information security management is absolutely vital for Allianz to mitigate the proliferation of cyber risks. Successful information security management includes the phases of prevention, detection, response and recovery. In the Dow Jones Sustainability Index, Allianz was ranked top in class for information security. However, a widespread and diverse corporation offers many entry points, where even the best preventative mechanisms might at some time fail.

Information security experts at Allianz are well aware that protecting the company requires continuous innovation and in all phases is indispensable. Attacks are becoming more numerous and more sophisticated by the second. If they pass the outer barriers of defense, not only is it difficult to detect them, but even tougher to fight them. Once attackers are able to get inside the company’s network, they move with high speed throughout the infrastructure, changing their tactics quickly. As the organization operates to stay at eye level with potential attackers, this can only be done by combining and orchestrating the capabilities of strong partners due to the high complexity and rate of change.

“The old analogy of extinguishing a fire falls short - it’s more like a war, where each side continuously adapts its actions and brings new weapons to the battlefield, trying to trap the antagonist,” says Ralf Schneider, Group CIO of Allianz.

“The Cynet solution can identify, block and respond to any kind of attack across all endpoints, servers and clients. This means attacks can be detected and fought with minimal time lag directly on the endpoint before they reach deeper into the organization, similar to treating an injury on a leg or arm before the bacteria spreads into the blood and vessels,” said Eyal Gruner, CEO and co-founder of Cynet. “Once an attack is detected in one place, Cynet immediately searches objects in the proximity for similar attack patterns. Same as with the injury, in information security, proactive behavior is a matter of survival. Screening activities are documented in an audit-proof way, creating maximum transparency and safeguarding the privacy of device users.”

Tweet this: @Cynet360 Starts Strategic Cybersecurity Innovation Cooperation with Allianz in the Field of Threat Detection and Response - https://protect-eu.mimecast.com/s/s2IKCwVqqIkw35WsqtXBF?domain=bit.ly

Resources

To learn more about Cynet:

•Visit Cynet at https://protect-eu.mimecast.com/s/eGxECxnrrIDWop3UYpzKq?domain=go.cynet.com

•ollow Cynet on Twitter at https://protect-eu.mimecast.com/s/HCJ7CyovvUKB5GRsR1hYB?domain=twitter.com

• Follow Cynet on LinkedIn at https://protect-eu.mimecast.com/s/-sBgCzvwwFEjoXAFoZKQP?domain=linkedin.com

About Cynet

Cynet is a security platform that protects organizations from breaches by automated discovery and mitigation of all threat vectors across all attack stages. Cynet is the first solution that protects the entire environment, by correlating users, files, network traffic and host activities with a complete set of threat prevention and detection tools joined by pre-set and custom auto-remediation policies for post-compromise activity. By unifying all aspects of breach protection in a single interface, Cynet eliminates the need for multi-product security stacks, and the dependency on high-level security skills. To learn more, visit: https://protect-eu.mimecast.com/s/KWOiCANYYIBDAxzfMOv7v?domain=cynet.com.

 

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
The Security of Cloud Applications
Hillel Solow, CTO and Co-founder, Protego,  7/11/2019
Where Businesses Waste Endpoint Security Budgets
Kelly Sheridan, Staff Editor, Dark Reading,  7/15/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Building and Managing an IT Security Operations Program
As cyber threats grow, many organizations are building security operations centers (SOCs) to improve their defenses. In this Tech Digest you will learn tips on how to get the most out of a SOC in your organization - and what to do if you can't afford to build one.
Flash Poll
The State of IT Operations and Cybersecurity Operations
The State of IT Operations and Cybersecurity Operations
Your enterprise's cyber risk may depend upon the relationship between the IT team and the security team. Heres some insight on what's working and what isn't in the data center.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-13643
PUBLISHED: 2019-07-18
Stored XSS in EspoCRM before 5.6.4 allows remote attackers to execute malicious JavaScript and inject arbitrary source code into the target pages. The attack begins by storing a new stream message containing an XSS payload. The stored payload can then be triggered by clicking a malicious link on the...
CVE-2019-13644
PUBLISHED: 2019-07-18
Firefly III before 4.7.17.1 is vulnerable to stored XSS due to lack of filtration of user-supplied data in a budget name. The JavaScript code is contained in a transaction, and is executed on the tags/show/$tag_number$ tag summary page.
CVE-2019-13645
PUBLISHED: 2019-07-18
Firefly III before 4.7.17.3 is vulnerable to stored XSS due to lack of filtration of user-supplied data in image file names. The JavaScript code is executed during attachments/edit/$file_id$ attachment editing.
CVE-2019-13646
PUBLISHED: 2019-07-18
Firefly III before 4.7.17.3 is vulnerable to reflected XSS due to lack of filtration of user-supplied data in a search query.
CVE-2019-13647
PUBLISHED: 2019-07-18
Firefly III before 4.7.17.3 is vulnerable to stored XSS due to lack of filtration of user-supplied data in image file content. The JavaScript code is executed during attachments/view/$file_id$ attachment viewing.