Dark Reading News Desk Live At Black Hat 2015
Breaking Honeypots For Fun And Profit
There's Another Android Media Vulnerability, But Google Isn't Worried
Car Hacking Shifts Into High Gear
Cyber Boot Camp: Lessons Learned
News & Commentary
Black Hat USA: Empowering Women In Security
Kelly Jackson Higgins, Executive Editor at Dark ReadingCommentary
A panel of influential women in the security industry will share their insights and identify resources for fostering professional development (and recruiting) of women in the field.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 8/4/2015
Comment1 Comment  |  Read  |  Post a Comment
Your Smartphone Battery Could Be Tracking You
Eric Zeman, Commentary
Security researchers have found a way to track a user's smartphone Web usage through battery life.
By Eric Zeman , 8/4/2015
Comment1 Comment  |  Read  |  Post a Comment
Dark Reading News Desk Live At Black Hat 2015
Dark Reading Staff, News
Please join host Sara Peters and her guests for the first-ever Dark Reading News Desk show at Black Hat USA 2015, premiering Wednesday.
By Dark Reading Staff , 8/4/2015
Comment1 Comment  |  Read  |  Post a Comment
Terracotta VPN Piggybacks On Network Of Compromised Windows Servers
Fahmida Y. Rashid, Contributing Editor, Dark ReadingNews
APT groups use this VPN service to launch attacks against organizations around the world.
By Fahmida Y. Rashid Contributing Editor, Dark Reading, 8/4/2015
Comment2 comments  |  Read  |  Post a Comment
Lockheed Open Sources Its Secret Weapon In Cyber Threat Detection
Ericka Chickowski, Contributing Writer, Dark ReadingNews
Internal tool at defense company is made available to security community at large.
By Ericka Chickowski Contributing Writer, Dark Reading, 8/4/2015
Comment1 Comment  |  Read  |  Post a Comment
Dark Reading Launches Jobs Board
Tim Wilson, Editor in Chief, Dark ReadingCommentary
New feature will help hiring companies and security job seekers find each other online.
By Tim Wilson Editor in Chief, Dark Reading, 8/4/2015
Comment0 comments  |  Read  |  Post a Comment
Dark Reading Preps Week Of Show Coverage At Black Hat USA
Tim Wilson, Editor in Chief, Dark ReadingCommentary
If you want to know what's happening in Las Vegas this week at Black Hat, Dark Reading's got the scoop.
By Tim Wilson Editor in Chief, Dark Reading, 8/3/2015
Comment0 comments  |  Read  |  Post a Comment
Web Attacks Employing Upgraded Crimeware Kit Hit 1.5 Million Users
Kelly Jackson Higgins, Executive Editor at Dark ReadingNews
RIG 3.0 used to infect millions of Internet Explorer (IE) users worldwide -- mostly via malvertising.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 8/3/2015
Comment1 Comment  |  Read  |  Post a Comment
Dark Reading News Desk Comes To You Live From Black Hat
Sara Peters, Senior Editor at Dark ReadingCommentary
Live video coverage from Las Vegas Wednesday and Thursday
By Sara Peters Senior Editor at Dark Reading, 8/3/2015
Comment3 comments  |  Read  |  Post a Comment
Breaking Honeypots For Fun And Profit
Gadi Evron,  CEO & founder, CymmetriaCommentary
As a concept, honeypots can be a powerful tool for detecting malware. But in the emerging field of cyber deception, they’re not up to the task of fooling attackers and getting our hands on their resources.
By By Gadi Evron, CEO & founder, Cymmetria , 8/3/2015
Comment2 comments  |  Read  |  Post a Comment
Cyber Boot Camp: Lessons Learned
Marilyn Cohodas, Community Editor, Dark Reading
What happens when 50 young people spend a week in the trenches with cybersecurity researchers from ESET? One picture is worth a thousand words. Here are seven.
By Marilyn Cohodas Community Editor, Dark Reading, 7/31/2015
Comment4 comments  |  Read  |  Post a Comment
GM Vehicles Can Be Located, Unlocked, Started Remotely Via OnStar App
Jai Vijayan, Freelance writerNews
White Hat hacker Samy Kamkar’s OwnStart device latest to show up vulnerabilities in modern vehicles
By Jai Vijayan Freelance writer, 7/31/2015
Comment1 Comment  |  Read  |  Post a Comment
Startup 'Stealth Worker' Matches Businesses With Security Talent
Kelly Jackson Higgins, Executive Editor at Dark ReadingNews
New online service helps businesses looking for part-time security professionals fill specific job needs.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 7/30/2015
Comment2 comments  |  Read  |  Post a Comment
There's Another Android Media Vulnerability, But Google Isn't Worried
Sara Peters, Senior Editor at Dark ReadingNews
Vulnerability could become a favorite of ransomware operators, but Google has left it unpatched for more than two months.
By Sara Peters Senior Editor at Dark Reading, 7/30/2015
Comment2 comments  |  Read  |  Post a Comment
Study Reveals the Most Common Attack Methods of Data Thieves
Raja Patel, Vice President and General Manager of Network Security at Intel Security
Learning more about your attackers helps to improve your security profile and reduce the possibility of a breach.
By Raja Patel Vice President and General Manager of Network Security at Intel Security, 7/30/2015
Comment1 Comment  |  Read  |  Post a Comment
Closing The Gap Between Security & Networking Ops: 5 Best Practices
Nimmy Reichenberg, VP of Strategy, AlgoSecCommentary
If your factions are warring, there’s a lot you can do about it. Here’s how -- and why you can’t afford to wait.
By Nimmy Reichenberg VP of Strategy, AlgoSec, 7/30/2015
Comment1 Comment  |  Read  |  Post a Comment
From Russia With Love: A Slew of New Hacker Capabilities and Services
Jai Vijayan, Freelance writerNews
A review of the Russian underground by Trend Micro reveals it to be the world’s most sophisticated.
By Jai Vijayan Freelance writer, 7/30/2015
Comment0 comments  |  Read  |  Post a Comment
Anthem Breach Linked To Black Vine Group & Beijing InfoSec Firm
Sara Peters, Senior Editor at Dark ReadingNews
Health insurer's breach of 80 million records attributed to 'well-resourced cyberespionage group' Black Vine. Could they also be behind breaches at OPM and United Airlines?
By Sara Peters Senior Editor at Dark Reading, 7/29/2015
Comment0 comments  |  Read  |  Post a Comment
Can't Touch This: 'Hammertoss' Russian Cyberspies Hide In Plain Sight
Kelly Jackson Higgins, Executive Editor at Dark ReadingNews
APT29 cyber espionage attackers operate under the cover of legitimate services including Twitter, Github, and cloud storage services.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 7/29/2015
Comment3 comments  |  Read  |  Post a Comment
Code Theft: Protecting IP At The Source
Anna Chiang, Technical Marketing Manager, Perforce SoftwareCommentary
Your corporate assets are at risk and every day that you avoid taking action shortens the time until your IP will be leaked. Here are six steps toward better data security.
By Anna Chiang Technical Marketing Manager, Perforce Software, 7/29/2015
Comment2 comments  |  Read  |  Post a Comment
More Stories
Current Conversations
Posted by krishnasameer1
Current Conversations good one 
In reply to: Re: Pending Review
Post Your Own Reply
More Conversations
PR Newswire
Cyber Boot Camp: Lessons Learned
Marilyn Cohodas, Community Editor, Dark Reading,  7/31/2015
Dark Reading News Desk Comes To You Live From Black Hat
Sara Peters, Senior Editor at Dark Reading,  8/3/2015
Can't Touch This: 'Hammertoss' Russian Cyberspies Hide In Plain Sight
Kelly Jackson Higgins, Executive Editor at Dark Reading,  7/29/2015
Register for Dark Reading Newsletters
Partner Perspectives
What's This?
Partner Perspectives
What's This?
Partner Perspectives
What's This?
What 30 Classic Games Can Teach Us about Security
Information security experts share their thoughts on how participating in games and sports helped hone their professional skills. Read >>
Cartoon
Latest Comment: good one 
Dark Reading Radio
Archived Dark Reading Radio
What’s the future of the venerable firewall? We’ve invited two security industry leaders to make their case: Join us and bring your questions and opinions!
White Papers
Current Issue
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2001-1594
Published: 2015-08-04
GE Healthcare eNTEGRA P&R has a password of (1) entegra for the entegra user, (2) passme for the super user of the Polestar/Polestar-i Starlink 4 upgrade, (3) 0 for the entegra user of the Codonics printer FTP service, (4) eNTEGRA for the eNTEGRA P&R user account, (5) insite for the WinVNC Login, an...

CVE-2002-2445
Published: 2015-08-04
GE Healthcare Millennium MG, NC, and MyoSIGHT has a default password of (1) root.genie for the root user, (2) "service." for the service user, (3) admin.genie for the admin user, (4) reboot for the reboot user, and (5) shutdown for the shutdwon user, which has unspecified impact and attack vectors.

CVE-2002-2446
Published: 2015-08-04
GE Healthcare Millennium MG, NC, and MyoSIGHT has a password of insite.genieacq for the insite account that cannot be changed without disabling product functionality for remote InSite support, which has unspecified impact and attack vectors.

CVE-2003-1603
Published: 2015-08-04
GE Healthcare Discovery VH has a default password of (1) interfile for the ftpclient user of the Interfile server or (2) "2" for the LOCAL user of the FTP server for the Codonics printer, which has unspecified impact and attack vectors.

CVE-2004-2777
Published: 2015-08-04
GE Healthcare Centricity Image Vault 3.x has a password of (1) gemnet for the administrator account, (2) webadmin for the webadmin administrator account of the ASACA DVD library, (3) an empty value for the gemsservice account of the Ultrasound Database, and possibly (4) gemnet2002 for the gemnet2002...

10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Flash Poll
Video
Slideshows
Twitter Feed