Dark Reading Radio: Data Loss Prevention (DLP) Fail
You know that data loss prevention (DLP) system you count on to keep private and sensitive information from leaking outside the organization? It may well contain security bugs of its own, according to new research that will be presented next week at Black Hat USA in Las Vegas.
Security researchers Zach Lanier and Kelly Lum staged a bakeoff of sorts to study the actual security of these security tools and found a plethora of common security vulnerabilities such as cross-site scripting and cross-site request forgery, to name a few. Lanier, who is a senior security researcher at Duo Security, will join me tomorrow on the next episode Dark Reading Radio to provide a sneak-peek at some of the surprising weaknesses in DLP product administrative and programmatic interfaces, as well as in their inspection engines.
So register now and join us tomorrow at 1:00 p.m. EDT, for “Data Loss Prevention (DLP) FAIL.” Have questions for our guest? Share them in the comments section below, or bring them along to the show tomorrow. We will be taking questions from the live audience, and Lanier will join us in a live text chat following the broadcast.
Kelly Jackson Higgins is Senior Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise Magazine, … View Full Bio
Article source: http://www.darkreading.com/perimeter/dark-reading-radio-data-loss-prevention-(dlp)-fail/a/d-id/1297650?_mc=RSS_DR_EDT