BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

January VEF winner announced. Takes home an Amazon Kindle Fire.

Posted January 26, 2012    Sarah Lieber

As you all know, every month we host our Vulnerability Expert Forum (VEF) webinar. This is a time where our experts share valuable insight regarding new vulnerabilities that are discovered and the actions that need to be taken as a result. It’s a quick way to get up to speed on current potential risks to your organization and a way to explore the impact that high-risk vulnerabilities and exploits have on network environments and infrastructures. eEye is committed to helping security administrators reduce the workload they face by making this information easily accessible and by clearly presenting all required information to our audience.

If you haven’t attended a VEF before, I encourage you to sign up and join our next one on February 15, 2012. Not only will you receive a complete analysis of recently announced critical vulnerabilities from Microsoft and other software vendors but you could potentially win a Kindle product from us!

Just ask our January winner, Alex Klink, who was awarded with a new Amazon Kindle Fire for participating in our discussion earlier this month. Congrats to Alex. Funny enough he had been following the #hashDoS hashtag on Twitter which is what brought him to our blog to participate. Here’s more about him:

Alexander ‘alech’ Klink is a Solutions Consult Security at n.runs AG based in Germany, where he works as a penetration tester. While studying mathematics, Alex learned lots of fancy maths, which he forgot again rather quickly. He kept the frustration tolerance that comes with being a mathematician, though and uses it daily.

Alex enjoys discovering bugs in the specification, (not only business) logic errors, finding privacy issues in Adobe products and portrait photography. His CPU fan is being heavily abused by his research these days. Together with Julian ‘zeri’ Wälde, he looked at the hash table implementations of web application platforms and (re)discovered the so-called #hashDoS bug.

Again, congrats to Alex and thank you to all for being continued supporters of eEye and security for all. Don’t forget to join us at our next VEF and you too could possibly take home a new Kindle product! Sign up here.

Tags:
, , ,

Leave a Reply

Additional articles

PowerBroker for Unix & Linux helps prevent Shellshock

Posted September 25, 2014    Paul Harper

Like many other people who tinker with UNIX and Linux on a regular basis, BASH has always been my shell of choice.  Dating back to the early days moving from Windows to a non-Windows platform, mapping the keys correctly to allow easy navigation and control helped ensure an explosion of use for the shell. Unfortunately,…

Bash “Shellshock” Vulnerability – Retina Updates

Posted September 24, 2014    BeyondTrust Research Team

A major vulnerability was recently discovered within bash which allows arbitrary command execution via specially crafted environment variables. This is possible due to the fact that bash supports the assignment of shell functions to shell variables. When bash parses environment shell functions, it continues parsing even after the closing brace of the function definition. If…

pbps-blog3

7 Reasons Customers Switch to Password Safe for Privileged Password Management

Posted September 24, 2014    Chris Burd

It’s clear that privileged password management tools are essential for keeping mission-critical data, servers and assets safe and secure. However, as I discussed in my previous post, there are several pitfalls to look out for when deploying a privileged password management solution. At this point, you may be wondering how BeyondTrust stacks up. With that,…

Tags:
, , , , ,