Data Security: Challenges, Solutions, and the Path Forward

Learn why a more proactive, integrated, and dynamic approach to data security is crucial to effectively safeguard your business in today’s digital landscape...

A Message from Rapid7 CEO, Corey Thomas

Earlier today, the following email was shared with Rapid7 employees. Team, As we accelerate our delivery of the leading security operations solution and service platform experience to customers, we have determined it is necessary to restructure our operations, including the difficult decision to...

Finalists announced in second annual Microsoft Security 20/20 awards

2020 was a transformational year. Seemingly overnight, COVID-19 reshaped our perspective on work, home life, and security. Setting up home offices and powering through online presentations in our pajama bottoms with cameos by pets and children, our industry rose to the challenge. All that...

Automating and operationalizing data protection with Dataguise and Microsoft Information Protection

This blog post is part of the Microsoft Intelligent Security Association guest blog series. Learn more about MISA. In technical literature, the terms data discovery, classification, and tagging are sometimes used interchangeably, but there are real differences in what they actually mean—and each...

Microsoft recognized as a Leader in the 2020 Gartner Magic Quadrant for Enterprise Information Archiving

Organizations face an increasing volume of data generated daily and ever-evolving regulations around how that data is managed. To help navigate this complex information landscape, we are focused on delivering integrated, intelligent, and user-centric solutions. Over the past few years, we...

Unlock Your SOC with Exabeam and Carbon Black

Endpoints are not safe. There I’ve said it. The network boundaries are gone and endpoints are left exposed directly to threats. Just like watching my kids move out of the house and worrying about how they will fare in the world on their own, we have to realize endpoints are no longer protected by...

IBM Integrated Solutions Console arbitrary file read vulnerability

No description provided by source...

IBM WebSphere Application Server XSS

Integrated Solutions Console crossite scripting...

IBM WebSphere Application Server (WAS) Integrated Solutions Console Login Page username Parameter Reflected XSS Security Vulnerability

INFO: Class: Input Validation Error CVE: Remote: Yes Local: No Published: Aug 27 2014 12:00AM Updated: Aug 27 2014 12:00AM Credit: G. S. McNamara, CGI Federal Emerging Technologies Security Practice ETSP Vulnerable: IBM WebSphere Application Server WAS Integrated Solutions Console 7.0.0.19...

[Websecurify] Web Security Testing Runtime

A Complete Suite Of Web Security Tools The Suite provides a complete and functional marketplace of highly integrated web application security tools. You will find that different areas are covered by various domain-specific solutions. The Suite consists of automated scanners, fuzzers, utilities an...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the Integrated Solutions Console aka administrative console in IBM WebSphere Application Server WAS 7.0.0.13 and earlier allow remote attackers to hijack the authentication of administrators for requests that disable certain security...

CVE-2009-0899

IBM WebSphere Application Server WAS 6.1 through 6.1.0.24 and 7.0 through 7.0.0.4, IBM WebSphere Portal Server 5.1 through 6.0, and IBM Integrated Solutions Console ISC 6.0.1 do not properly set the IsSecurityEnabled security flag during migration of WebSphere Member Manager WMM to Virtual Member...

[DSECRG-09-013] IBM WebSphere Application Server 7.0 Multiple XSS Vulnerabilities

Digital Security Research Group DSecRG Advisory DSECRG-09-013 !!! official advisory: !!! http://dsecrg.com/pages/vul/DSECRG-09-013.html Application: IBM WebSphere Application Server Versions Affected: 7.0 and 6.1 Vendor URL: http://www.ibm.com/websphere/ Bug: Multiple XSS Vulnerabilities Exploits...