Marc Maiffret

Type: Person
Name: Marc Maiffret
First reported Sep 19 2014 - Updated Sep 19 2014 - 1 reports

IE security blocks dated ActiveX controls

Some Internet Explorer versions have started to block ActiveX controls that are no longer in date – with the main purpose being to prevent exploitation of flaws and to protect data.A number of ActiveX controls don't update automatically, which enables ... [Published Acumin - Sep 19 2014]
First reported Sep 14 2014 - Updated Sep 15 2014 - 1 reports

Feds Threatened Yahoo With $250K-a-Day Fine Over User Data

NEWS ANALYSIS: Newly released documents show that Yahoo fought the U.S. government's requests to provide user information as part of the NSA's PRISM program.According to court documents released on Sept. 11, Yahoo resisted the U.S. government's initial ... [Published eWeek - Sep 14 2014]
First reported Sep 11 2014 - Updated Sep 11 2014 - 1 reports

4 hurdles to securing the Internet Of Things

Security is hard enough to master in the traditional enterprise network. Now add all types of devices on the Internet of Things, great (think cars) and small (think webcams and baby monitors), which were never built with cyber security in mind.Internet-connected ... [Published Information Week India - Sep 11 2014]
First reported Sep 10 2014 - Updated Sep 11 2014 - 1 reports

Internet Explorer security feature blocks outdated ActiveX controls

On Tuesday, versions of Internet Explorer began blocking out-of-date ActiveX controls – primarily as a way of preventing security flaws from being exploited and users from being compromised.The feature, which was discussed by Microsoft in August, works ... [Published SC Magazine US - Sep 10 2014]
First reported Sep 08 2014 - Updated Sep 08 2014 - 1 reports

LinkedIn Improves User Security

NEWS ANALYSIS: The social networking platform takes proactive steps to provide more visibility into security, but is there more that can or should be done?Last week, the technology world was buzzing about the celebrity picture hack that involved Apple's ... [Published eWeek - Sep 08 2014]
First reported Sep 05 2014 - Updated Sep 05 2014 - 1 reports

4 Hurdles To Securing The Internet Of Things

Security is hard enough to master in the traditional enterprise network. Now add all types of devices on the , great (think cars) and small (think webcams and baby monitors), which were never built with cyber security in mind.Internet-connected devices ... [Published Insurance and Technology - Sep 05 2014]
First reported Sep 05 2014 - Updated Sep 05 2014 - 1 reports

4 Hurdles to Securing Internet of Things

Security is hard enough to master in the traditional enterprise network. Now add all types of devices on the Internet of Things, great (think cars) and small (think webcams and baby monitors), which were never built with cyber security in mind.(Source: ... [Published EE Times - Sep 05 2014]
First reported Sep 04 2014 - Updated Sep 04 2014 - 1 reports

Celeb hacking clouds Apple product launch

Apple said on Tuesday But the highly public affair remains potentially one of Apple's worst public crises in years. Speculation continues to spread on blogs about flaws in the iCloud service, which lets computer and mobile users store photos, documents ... [Published Dominion Post - Sep 04 2014]
First reported Sep 03 2014 - Updated Sep 03 2014 - 2 reports

Leak clouds Apple’s shiny image

SAN FRANCISCO – Apple Inc. has often displayed uncanny timing with its well-orchestrated end-of-year iPhone releases. But the leak of racy celebrity photos in the past few days put the company in the unusual position of having to mend its image just days ... [Published Japan Times - Sep 03 2014]
First reported Aug 13 2014 - Updated Aug 14 2014 - 1 reports

Giant Internet Explorer Patch in August Patch Tuesday

Microsoft fixed 37 vulnerabilities in Internet Explorer and in supported versions of Windows as part of its August Patch Tuesday release.There were nine security bulletins for August, of which two were rated as critical, according to Microsoft's advisory. ... [Published PC Magazine - Aug 13 2014]
First reported Apr 29 2014 - Updated Apr 30 2014 - 2 reports

Where’s the next Heartbleed Bug lurking?

The Heartbleed bug was discovered earlier this month in a piece of software called OpenSSL that is widely used to establish a secure connection between Web browsers and servers by managing the cryptographic keys involved. OpenSSL is an “open source” project, ... [Published ECN - Apr 30 2014]
First reported Apr 29 2014 - Updated Apr 29 2014 - 3 reports

Understanding Vulnerability Management

"If you're not doing the right things on managing vulnerabilities, it doesn't really matter what other kinds of sophisticated things you do - that's the baseline for security," says BeyondTrust's Marc Maiffret. ... [Published CareersInfoSecurity.com - Apr 29 2014]

Quotes

..."I think a lot of them did not feel comfortable going public in some way with what was going on, even if they disagreed," Maiffret said. "with all of the leaks forcing these issues front and center, these companies are now in a place to be able to share more comfortably."
...on a Windows machine eventually gets discovered, but Marc Maiffret, CTO at BeyondTrust, says there is little or no visibility into IoT devices. "nobody has visibility into these devices or what is the authenticity of the firmware" if there's an update to them
"I wasn't even aware that LinkedIn supported it [2FA] until I just checked," Maiffret said. "i'd encourage all websites to not only support 2fa, but to also implement reminders for users to configure and enable it."

More Content

All (25) | News (20) | Reports (0) | Blogs (5) | Audio/Video (0) | Fact Sheets (0) | Press Releases (0)
sort by: Date | Relevance
IE security blocks dated ActiveX controls [Published Acumin - Sep 19 2014]
Feds Threatened Yahoo With $250K-a-Day Fine Ove... [Published eWeek - Sep 14 2014]
4 hurdles to securing the Internet Of Things [Published Information Week India - Sep 11 2014]
Internet Explorer security feature blocks outda... [Published SC Magazine US - Sep 10 2014]
LinkedIn Improves User Security [Published eWeek - Sep 08 2014]
4 Hurdles To Securing The Internet Of Things [Published Insurance and Technology - Sep 05 2014]
4 Hurdles to Securing Internet of Things [Published EE Times - Sep 05 2014]
Celeb hacking clouds Apple product launch [Published Dominion Post - Sep 04 2014]
Leak clouds Apple’s shiny image [Published Japan Times - Sep 03 2014]
Celebrity hacking clouds Apple's upcoming produ... [Published CNBC - Sep 03 2014]
Giant Internet Explorer Patch in August Patch T... [Published PC Magazine - Aug 13 2014]
10 major security threats revealed at Black Hat... [Published Computer Reseller News Australia - Aug 13 2014]
Cybersecurity Expert Richard A. Clarke and LA C... [Published PRWeb - Jun 02 2014]
Where’s the next Heartbleed Bug lurking? [Published ECN - Apr 30 2014]
Where’s the Next Heartbleed Bug Lurking? [Published Technology Review - Apr 29 2014]
Understanding Vulnerability Management [Published CareersInfoSecurity.com - Apr 29 2014]
Understanding Vulnerability Management [Published HealthcareInfoSecurity.com - Apr 29 2014]
Understanding Vulnerability Management [Published GovInfoSecurity.com - Apr 29 2014]
NSA denies report that it used Heartbleed bug t... [Published San Jose Mercury News - Apr 12 2014]
Last Call for XP, Office 2003 Updates: April Pa... [Published threatpost - The First Stop for Security News - Apr 08 2014]
BeyondTrust Chief Technology Officer Marc Maiff... [Published PRWeb - Apr 04 2014]
Re: On Phillippe Courtot's RSAC Keynote [Published Daily Dave - Mar 26 2014]
NSP Microcast – RSAC2014 – BeyondTrust [Published Network Security Blog - Mar 23 2014]
Microsoft Closes Critical IE Security Vulnerabi... [Published SecurityWeek RSS Feed - Mar 11 2014]
Microsoft Patches Critical Internet Explorer, W... [Published SecurityWeek RSS Feed - Feb 11 2014]
1
In Focus
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
Content Volume
Document Volume
Network
Network

Blogs

sort by: Date | Relevance
Last Call for XP, Office 2003 Updates: April Pa... [Published threatpost - The First Stop for Security News - Apr 08 2014]
As expected , Microsoft issued its final epitaph for Windows XP today, pushing out four security bulletins for 11 vulnerabilities, including the last updates for the oft-maligned, thirteen-year-old operating system.  Despite it being XP’s last gasp ...
Re: On Phillippe Courtot's RSAC Keynote [Published Daily Dave - Mar 26 2014]
Posted by Marc Maiffret on Mar 26 Attackers and exploitation tools are false negative heavy. Not allexploits have the same reliability as to not produce false negatives.This could be as simple as an IT person using a default Metasploitexploit which simply ...
NSP Microcast – RSAC2014 – BeyondTrust [Published Network Security Blog - Mar 23 2014]
I had a chance to sit down with  BeyondTrust  CTO, Marc Maiffret.  I’ve had conversations with Marc before, but I haven’t seen him since he has been at BeyondTrust, so I took this time to find out what they do and how it would be used by the average ...
Microsoft Closes Critical IE Security Vulnerabi... [Published SecurityWeek RSS Feed - Mar 11 2014]
The bad news - attackers have continued to leverage a highly-publicized Internet Explorer vulnerability. The good news is however that vulnerability now has a patch. Inside the five security bulletins Microsoft released today for Patch Tuesday is ...
Microsoft Patches Critical Internet Explorer, W... [Published SecurityWeek RSS Feed - Feb 11 2014]
Microsoft added two new security updates into the mix of Patch Tuesday bulletins being released today. The additions - critical updates for Internet Explorer and the VBScript scripting engine - bring the total number of vulnerabilities addressed in ...
1
Contact Us
Sales
Support


Freebase CC-BY Some image thumbnails are sourced from Freebase, licensed under CC-BY

Copyright (C) 2014 Silobreaker Ltd. All rights reserved.
The selection and placement of stories and images on any Silobreaker page are determined automatically by a computer program.
The time or date displayed reflects when an article was added to or updated in Silobreaker.