Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Latest Content
Page 1 / 2   >   >>
Lucidum Raises $4M Seed Investment to Automate Asset Discovery & Eliminate Blind Spots Across Cloud, Security & IT Ops
Products and Releases  |  10/30/2020  | 
GGV Capital and Syndicate of Silicon Valley CISOs Invest in two former Splunk Execs Solving the Fundamental Challenge of IT Asset Discovery
Mastercard Launches AI-Powered Solution to Protect the Digital Ecosystem
Products and Releases  |  10/30/2020  | 
Cyber Secure advances first set of integrated cyber capabilities for banks & their businesses.
Claroty Adds Fully Integrated Remote Incident Management To Industry-Leading Ot Security Platform
Products and Releases  |  10/30/2020  | 
Enhanced Secure Remote Access and Continuous Threat Detection enable seamless detection, investigation, and response to OT security incidents across the broadest attack surface area from any location
Contrast Security Launches Platform Delivering Comprehensive Security Observability to Secure Web Apps Across SDLC
Products and Releases  |  10/29/2020  | 
Contrast continuously observes and secures software from IDE to runtime, cutting vulnerability and threat remediation time by up to 17x.
Micron and Tata Communications Accelerate IoT Deployment With Cloud-Based Virtual SIM
Products and Releases  |  10/29/2020  | 
Solution offers flexible global cellular-enabled connectivity, underpinned by trusted edge-to-cloud onboarding.
Theta Lake Raises $12.7 Million In Series A Funding, Led by Lightspeed Venture Partners
Products and Releases  |  10/29/2020  | 
Funding will help Theta Lake expand its platform and global market delivery for protecting employers and employees in a new collaboration-based remote work era.
Sophos Launches Rapid Response Service to Identify and Neutralize Active Cybersecurity Attacks
Products and Releases  |  10/29/2020  | 
Sophos Rapid Response addresses a wide range of security incidents, including ransomware, network breaches, and hands-on keyboard adversaries.
Axio Offers Free Cybersecurity Program Assessment Tools
Products and Releases  |  10/27/2020  | 
Tools can be used to assess the current state of a companys cybersecurity program.
Offensive Security Continues to Expand Security Training and Certification Offerings with New Advanced Pentest Training Course
Products and Releases  |  10/27/2020  | 
Evasion Techniques and Breaching Defenses Represents Unique Opportunity for Security Professionals to Take Careers to New Heights
Nozomi Networks Pioneers SaaS Security and Visibility Solution for Dynamic IoT and OT Networks
Products and Releases  |  10/27/2020  | 
Nozomi Networks Vantage empowers a new generation of cyber and physical system security with the SaaS simplicity, scale and TCO control that the converging worlds of IT and OT require.
Red Canary Enters Cloud Workload Protection Space
Products and Releases  |  10/27/2020  | 
Red Canary Cloud Workload Protection secures cloud environments with a lightweight sensor, proven threat detection platform, and security expertise
4iQ Raises $30 Million in Series C Funding, Names Kailash Ambwani as CEO
Products and Releases  |  10/26/2020  | 
Cybersecurity startup helps enterprises to understand their digital risk and exposure.
Attivo Networks Enhances Portfolio for Amplified Identity Access Management Control
Products and Releases  |  10/26/2020  | 
Threatpath release addresses proliferation of endpoints and credential protection challenges.
Avira Researchers Discover a New Variant of Mirai
Products and Releases  |  10/26/2020  | 
The botnet, named Katana, is still in development but already has modules such as layer 7 DdoS, unique encryption keys, fast self-replication, and secure C&C, making it a more serious threat
Positive Technologies Helps Fix 11 Vulnerabilities in Popular SonicWall Firewall Appliances
Products and Releases  |  10/23/2020  | 
Potential threats included disconnection of remote employees or branches and possible attacker penetration into corporate networks.
Nokia Threat Intelligence Report Warns of Rising Cyberattacks on Internet-Connected Devices
Products and Releases  |  10/22/2020  | 
Report also highlights role of numerous COVID-19-themed cybercriminal campaigns aimed at exploiting user data.
Splunk Unveils New Innovations Across Its Security Operations Suite
Products and Releases  |  10/20/2020  | 
Splunk Mission Control Plug-In Framework is a new framework that allows customers to combine their Splunk security tools and non-Splunk security tools.
Rapid7 Announces Availability of Enhanced Endpoint Telemetry for InsightIDR
Products and Releases  |  10/20/2020  | 
New capabilities extend endpoint visibility to further unify critical security data and drive accelerated investigations and response.
Farsight Security Announces General Availability for DNSDB 2.0 Flexible Search
Products and Releases  |  10/20/2020  | 
Tool uncovers phishing, brand infringement, and misinformation campaigns.
Splunk Acquires Plumbr, Agrees to Acquire Rigor
Products and Releases  |  10/20/2020  | 
With both acquisitions and product integrations, Splunk will significantly expand its APM and DEM capabilities.
Apptega Launches B2B E-Commerce Marketplace Dedicated to Cybersecurity
Products and Releases  |  10/18/2020  | 
CyberXchange maps the worlds leading cybersecurity products and services to over 10,000 categories and compliance standards.
Corsa Security Automates Firewall as a Service
Products and Releases  |  10/18/2020  | 
MSSPs and service providers can easily and quickly offer a virtualized firewall service to their customers.
ReliaQuests GreyMatter Unified SaaS Security Platform Delivers Open XDR Approach
Products and Releases  |  10/18/2020  | 
Vendor-agnostic platform helps Fortune 1000 customers maximize value of their existing cybersecurity investments.
ROKK Solutions Launches New Cybersecurity Communications Offering
Products and Releases  |  10/13/2020  | 
GROKK is a unique program that offers a customized communications strategy to effectively manage security incidents.
StackRox and Robin.io Partner to Deliver Hardened Security, Compliance and Data Management for Stateful Applications on Kubernetes
Products and Releases  |  10/9/2020  | 
StackRox Kubernetes Security Platform now available as a Robin.io enterprise application bundle
Digital Shadows launches access key alerts -- to mitigate the growing problem of credentials exposed during software development
Products and Releases  |  10/9/2020  | 
Threat actors actively scouring code repositories such as GitHub for easy way to infiltrate organizations.
Arctic Wolf Security Operations Report: Corporate Credentials Exposed on Dark Web Up Over 400 Percent
Products and Releases  |  10/9/2020  | 
More than One-Third of High-Risk Cybersecurity Incidents Now Occur After Hours
Onapsis Raises $55M Growth Round, Led by CDPQ and NightDragon, Fueling Expansion to Protect Mission-Critical SaaS Applications
Products and Releases  |  10/9/2020  | 
Funding Round to Accelerate Companys Growth Strategy to Expand Security and Compliance Support for Salesforce, Workday, Oracle, SAP and Other Leading Cloud Applications
Cyvatar Launches All-in-One Cybersecurity-as-a-Service to Disrupt the Industry with $3 Million Seed Round
Products and Releases  |  10/9/2020  | 
New Market Entrant Targets Waste and Inefficiency across the Industry with Backing from Bill Wood Ventures.
Ping Identity Acquires Self-Sovereign Identity Leader ShoCard in Significant Leap Toward Personal Identity Management
Products and Releases  |  10/9/2020  | 
Company paves the way for a future where identity management is in the hands of individuals
Ping Identity Launches New Cloud Services Enabling Advanced Risk Management and Authentication for the Enterprise
Products and Releases  |  10/9/2020  | 
PingOne Services provide multi-factor authentication and real-time threat detection for stronger overall customer and workforce security
CipherCloud Introduces Advanced Data Discovery, Extending its End-to-End Data Security Platform
Products and Releases  |  10/9/2020  | 
Added Visualization and Automated Remediation Capabilities Deepen Market-Leading Approach to Data Security Lifecycle
Majority of Industrial Enterprises Face Increase in Cyber Threats Since COVID-19 Pandemic Began
Products and Releases  |  10/8/2020  | 
New global report from Claroty shows the importance of IT and OT interconnectivity in order to advance digital initiatives and thrive in a post-pandemic future
Rapid7 Announces Cloud Identity and Access Management Governance Module for DivvyCloud
Products and Releases  |  10/8/2020  | 
Security professionals can now simplify cloud identity and access management at scale to help prevent security incidents and data breaches.
Sonatype Introduces Next Generation Dependency Management for Software Developers
Products and Releases  |  10/7/2020  | 
Advanced Development Pack enables developers to choose the right components.
77% of Organizations That Use Both Mac and Non-Mac Devices View Mac as Most Secure
Products and Releases  |  10/7/2020  | 
Among IT and infosec professionals, there was a consensus that oversight and endpoint visibility is easier on Mac, but also that Mac security maintenance is easier.
Maryland to Bridge Cybersecurity Workforce Gap with Bachelors Degree Program
Products and Releases  |  10/2/2020  | 
SANS Launches First Professional Bachelors Degree in Applied Cybersecurity
Red Canary Delivers Alert Fatigue Relief for Security Teams
Products and Releases  |  10/1/2020  | 
Red Canary Alert Center reduces risk, gives teams control over alerts across the entire security stack.
Jamf Announces Acquisition of Mondada, a Leading Innovator in Patch Management
Products and Releases  |  10/1/2020  | 
Patch capabilities save the enterprise significant time deploying Mac, while improving organizational security.
Cyber Readiness Institute and US Department of Homeland Security Partner to Help US Businesses Secure Remote Workforces
Products and Releases  |  9/30/2020  | 
CRI and Cybersecurity and Infrastructure Security Agency collaborate on telework essentials toolkit to give employees and business leaders the resources to protect themselves in COVID-19 times.
VMware Delivers Intrinsic Security to the World's Digital Infrastructure
Products and Releases  |  9/29/2020  | 
New innovations advance security for public and private clouds, security operations, and distributed workforces
Attacks Against Building Automation, Oil and Gas Industries Up in First Half of 2020
Products and Releases  |  9/24/2020  | 
Growth was likely driven by a more targeted attack approach from cybercriminals, according to Kaspersky.
Secureworks Completes Acquisition of Delve Laboratories, Inc.
Products and Releases  |  9/22/2020  | 
SaaS solution expands Secureworks' software portfolio with vulnerability management capabilities.
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/30/2020
'Act of War' Clause Could Nix Cyber Insurance Payouts
Robert Lemos, Contributing Writer,  10/29/2020
6 Ways Passwords Fail Basic Security Tests
Curtis Franklin Jr., Senior Editor at Dark Reading,  10/28/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How to Measure and Reduce Cybersecurity Risk in Your Organization
In this Tech Digest, we examine the difficult practice of measuring cyber-risk that has long been an elusive target for enterprises. Download it today!
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-15703
PUBLISHED: 2020-10-31
There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an unprivile...
CVE-2020-5991
PUBLISHED: 2020-10-30
NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in which an out-of-bounds read or write operation may lead to code execution, denial of service, or information disclosure.
CVE-2020-15273
PUBLISHED: 2020-10-30
baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. The issue affects the following components: Edit feed settings, Edit widget area, Sub site new registration, New category registration. Arbitrary JavaScript may be executed by entering specific characters in the account that can ac...
CVE-2020-15276
PUBLISHED: 2020-10-30
baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. Arbitrary JavaScript may be executed by entering a crafted nickname in blog comments. The issue affects the blog comment component. It is fixed in version 4.4.1.
CVE-2020-15277
PUBLISHED: 2020-10-30
baserCMS before version 4.4.1 is affected by Remote Code Execution (RCE). Code may be executed by logging in as a system administrator and uploading an executable script file such as a PHP file. The Edit template component is vulnerable. The issue is fixed in version 4.4.1.