Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Advertise

About Us

Author

Profile of Simone Petrella

Chief Executive Officer, CyberVista

Member Since: 8/13/2020
Author
News & Commentary Posts: 1
Comments: 0

Simone is chief executive officer at CyberVista where she leads product development and delivery of cybersecurity training and education curriculums as well as workforce initiatives for executives, cyber practitioners, and continuing education. Previously, Simone was a senior associate at Booz Allen Hamilton in the firm's commercial sector cybersecurity practice focusing on the creation of cyber fusion centers and the integration of cybersecurity operations. She led the firm's all source cyber threat intelligence business in the national security and defense sectors, including intelligence support to both defensive and offensive operations. Simone received her J.D. with honors from Catholic University's Columbus School of Law and graduated from Georgetown University with a B.A. in Government and a M.A. in International Law and Policy.

Articles by Simone Petrella

View Content By Month

Cybersecurity Bounces Back, but Talent Still Absent

9/16/2020
While the demand for cybersecurity talent rebounds, organizations will need to focus on cyber-enabled roles to fill immediate skills gaps.
Post a Comment

Content by Month
September 2020 - 1
[close this box]

Hot Topics

Editors' Choice

Where Are the 'Great Exits' in the Data Security Market?

Dave Cole, Cofounder and CEO, Open Raven, 10/13/2020

Overcoming the Challenge of Shorter Certificate Lifespans

Mike Cooper, Founder & CEO of Revocent, 10/15/2020

London Borough of Hackney Investigates 'Serious' Cyberattack

Dark Reading Staff 10/14/2020

Webinars

Maximizing Database Performance to Improve Customer Experience

[Dark Reading Virtual Event] Your Crash Course on Cyber Attackers

The Best Ways to Stop Malware and Ransomware That No One Else Will Tell You

Webinar Archives

White Papers

Cloud Threat Report: Spring 2020

The Best Free Vulnerability Management Tools

7 Experts on Transforming Your Threat Detection & Response Strategy

2020 Cybersecurity Report Card

[Dark Reading Report] Building an Effective Cybersecurity Incident Response Team

More White Papers

Cartoon

Latest Comment: I'm done with Technology tonight. The bed won't go up so I'm using pillows, the Kindle is locked up so I'm reading an actual book and ...

Cartoon Archive

Current Issue

Special Report: Computing's New Normal

This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How IT Security Organizations are Attacking the Cybersecurity Problem

The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.

Download Now!

Special Report: Understanding Your Cyber Attackers

0 comments

2020 State of Cybersecurity Operations and Incident Response

0 comments

The Changing Face of Threat Intelligence

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-7747
PUBLISHED: 2020-10-20

This affects all versions of package lightning-server. It is possible to inject malicious JavaScript code as part of a session controller.

CVE-2020-7748
PUBLISHED: 2020-10-20

This affects the package @tsed/core before 5.65.7. This vulnerability relates to the deepExtend function which is used as part of the utils directory. Depending on if user input is provided, an attacker can overwrite and pollute the object prototype of a program.

CVE-2020-7749
PUBLISHED: 2020-10-20

This affects all versions of package osm-static-maps. User input given to the package is passed directly to a template without escaping ({{{ ... }}}). As such, it is possible for an attacker to inject arbitrary HTML/JS code and depending on the context. It will be outputted as an HTML on the page wh...

CVE-2020-5640
PUBLISHED: 2020-10-20

Local file inclusion vulnerability in OneThird CMS v1.96c and earlier allows a remote unauthenticated attacker to execute arbitrary code or obtain sensitive information via unspecified vectors.

CVE-2020-15256
PUBLISHED: 2020-10-19

A prototype pollution vulnerability has been found in `object-path` <= 0.11.4 affecting the `set()` method. The vulnerability is limited to the `includeInheritedProps` mode (if version >= 0.11.0 is used), which has to be explicitly enabled by creating a new instance of `object-path` and settin...

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]