Slideshows
Latest Content
Page 1 / 2   >   >>
Recalibrating Cybersecurity Spending Projections
Slideshows  |  6/29/2016  | 
How big and how fast will the cybersecurity market grow in five years? Inquiring minds want to know.
5 Ways To Think Like A Hacker
Slideshows  |  6/24/2016  | 
Security expert says CISOs need to use simulations more effectively so they can understand how hackers work and beat them at their own game.
How To Lock Down So Ransomware Doesn't Lock You Out
Slideshows  |  6/22/2016  | 
Ransomware has mutated into many different forms — and it’s not always easy to catch them all, but here are some things you can do.
7 Need-To-Know Attack Stats
Slideshows  |  6/21/2016  | 
Facts & figures about average dwell times, incident response speeds, and which direction the 'detection deficit' is heading.
An Inside Look At The Mitsubishi Outlander Hack
Slideshows  |  6/17/2016  | 
White hat hacker finds WiFi flaws in mobile app for popular auto; Mitsubishi working on fix.
12 Tips for Securing Cyber Insurance Coverage
Slideshows  |  6/13/2016  | 
As cyber insurance grows more available and popular it is also becoming increasingly complex and confusing. Our slideshow offers guidelines on how to get insurance, get decent coverage, and avoid limitations in coverage.
7 Data Classification Tips
Slideshows  |  6/11/2016  | 
Make data classification a part of your total security program.
Biggest Attacks Of 2016 (So Far)
Slideshows  |  6/10/2016  | 
An attack against a Ukraine power grid and major upticks in ransomware dominate the headlines in this Dark Reading mid-year report.
How To Prepare For A Data Breach
Slideshows  |  6/7/2016  | 
These five from-the-trenches strategies will help you win the fight against today's sophisticated, conniving attackers.
How Risky Is Bleeding Edge Tech?
Slideshows  |  6/5/2016  | 
Experts with the Carnegie Mellon University Software Engineering Institute rate 10 up-and-coming technologies for risk.
Connected Cars: 6 Tips For Riding Safely With Onboard Devices
Slideshows  |  6/3/2016  | 
Carnegie Mellon researchers note that the cheaper the after market device, the easier it can be hacked.
4 Steps to Achieve MFA Everywhere
Slideshows  |  6/1/2016  | 
What would it take to move authentication processes beyond sole reliance on passwords? Here's how to begin the journey.
Adobe Flash: 6 Tips For Blocking Exploit Kits
Slideshows  |  5/31/2016  | 
While Adobe does a good job patching exploits, there are additional steps security staffs can take to hedge their bets.
FBI Report: Deconstructing The Wide Scope Of Internet Crime
Slideshows  |  5/27/2016  | 
Hottest crimes reported to IC3 last year include ransomware and email scams via business email compromise and all account compromise attacks.
How To Manage And Control End User Access
Slideshows  |  5/24/2016  | 
A look at the perils of manual user-access provisioning and ways to streamline and better manage the process via automation.
5 Tips for Protecting Firmware From Attacks
Slideshows  |  5/20/2016  | 
Don’t let hackers take advantage of holes in firmware. Here’s how to stop them.
IoT Security By The Numbers
Slideshows  |  5/19/2016  | 
Some recent stats on adoption rates and perceptions about risks surrounding the Internet of Things.
Encryption 101: Covering the Bases
Slideshows  |  5/13/2016  | 
Here’s an overview of the key encryption types you’ll need to lock down your company’s systems.
Happy Blame Someone Else Day
Slideshows  |  5/13/2016  | 
In cybersecurity, each day a company experiences a data breach, it appears to be #BlameSomeoneElseDay
6 Shocking Intellectual Property Breaches
Slideshows  |  5/12/2016  | 
Not all breaches involve lost customer data. Sometimes the most damaging losses come when intellectual property is pilfered.
What Makes Next-Gen Endpoint Protection Unique?
Slideshows  |  5/10/2016  | 
Here are five critical factors you need to know about today's new breed of endpoint protection technology.
The 10 Worst Vulnerabilities of The Last 10 Years
Slideshows  |  5/6/2016  | 
From the thousands of vulns that software vendors disclosed over the past 10 years, a few stand out for being a lot scarier than the rest.
10 Biggest Mega Breaches Of The Past 10 Years
Slideshows  |  5/3/2016  | 
These data breaches from Dark Reading's 10-year history boggle the mind in terms of scale and fallout.
8 Microsoft Office 365 Security Tips To Reduce Data Loss
Slideshows  |  5/2/2016  | 
Even with a slew of new security tools and compliance guidance, there are still things you can do to protect this critical business system.
6 Steps for Responding to a Disruptive Attack
Slideshows  |  4/29/2016  | 
Today’s threat landscape dictates that companies must have a workable incident response plan.
10 Newsmakers Who Shaped Security In the Past Decade
Slideshows  |  4/28/2016  | 
In celebration of Dark Reading’s 10th anniversary, we profile ten people whose actions influenced and shaped the trajectory of the industry – for better or for worse -- in the past ten years.
Top 10 Web Hacking Techniques For 2015
Slideshows  |  4/27/2016  | 
The most influential research on vulnerabilities and exploits, as voted on by the security community.
10 Tips for Securing Your SAP Implementation
Slideshows  |  4/23/2016  | 
Without clear ownership of security for a critical business platform like SAP, it should come as no surprise that SAP cybersecurity continues to fall through the cracks among IT, admin, security and InfoSec teams.
5 Features to Look For In A Next-Generation Firewall
Slideshows  |  4/22/2016  | 
When it comes to NGFWs, it’s the integration that counts.
A Brief History Of Ransomware
Slideshows  |  4/21/2016  | 
A top ten chronicle of more than a decade of notable ransomware variants and trends.
8 Active APT Groups To Watch
Slideshows  |  4/16/2016  | 
Ever wonder who's behind some of the attacks we hear about in the news? Here are eight advanced persistent threat (APT) groups that operate some of the most successful and well-known malware campaigns worldwide.
How To Prepare For A DDoS Attack: 10 Steps
Slideshows  |  4/15/2016  | 
Like a hurricane or a flood, a DDoS is a crisis. Follow these 10 steps to prepare for an attack before it hits.
10 Things Cyber Insurance Won't Cover
Slideshows  |  4/14/2016  | 
Cyber insurance policies come with some important caveats to keep in mind.
The 8 Most Convincing Phishing Schemes Of 2016
Slideshows  |  4/9/2016  | 
The year is young and high-profile phishing attacks keep coming seemingly every week. Here are eight reasons why security pros have to get serious about combating phishing.
10 Cybersecurity Twitter Profiles To Watch
Slideshows  |  4/7/2016  | 
If you’re responsible for an information security program, check out these influencers to follow.
7 Biggest Trends Bubbling Up For Interop
Slideshows  |  4/6/2016  | 
CISOs and security leaders will find security is top of mind at Interop, when risk management intersects with some of the biggest themes likely to come out of the show.
Cybercrime: A Black Market Price List From The Dark Web
Slideshows  |  3/30/2016  | 
What does it cost for malware, stolen identities and other tools of the cybercriminal trade? Probably less than you think.
6 Hot Cybersecurity Startups: MACH37’s Spring Class Of 2016
Slideshows  |  3/28/2016  | 
Intense 90-day program mentors budding entrepreneurs in the finer points of developing a viable technology business for the real world of information security.
What The Feds Said At RSA
Slideshows  |  3/23/2016  | 
A look at some of the insights top US government officials from the White House, DoD, NSA, FBI, and other agencies shared at the RSA Conference in San Francisco last month.
FBI's Most Wanted Cybercriminals
Slideshows  |  3/14/2016  | 
The Federal Bureau of Investigation has got millions of dollars worth of rewards waiting for those who can help them nab these accused cyber thieves, spies and fraudsters.
FBI Vs. Apple: Privacy Syllabus
Slideshows  |  2/24/2016  | 
Some of the very best articles, blogs, and other opinions on the issue of government meddling in encryption technology.
Cybercrime And Hacking Atlas
Slideshows  |  2/20/2016  | 
A geographic guide with cybercrime threat and target trends in 10 notable countries.
20 Cybersecurity Startups To Watch In 2016
Slideshows  |  2/17/2016  | 
Some of the most intriguing security startups flush with funds, talent and ideas.
The Phishie Awards: (Dis)Honoring The Best Of The Worst Phishing Attacks
Slideshows  |  2/10/2016  | 
From the costly to the clever to the just plain creepy, here are the recent phishing campaigns that have earned our reluctant recognition.
10 Shocking New Facts About Ransomware
Slideshows  |  2/8/2016  | 
Ransomware has taken over the cybercriminal world in the last few years and there's no end in sight.
7 Signs of Infosec's Groundhog Day Syndrome
Slideshows  |  2/2/2016  | 
Irritations that plague security pros day in and day out.
The Internet of Private ‘Things:’ 7 Privacy Missteps
Slideshows  |  1/15/2016  | 
A cautionary tale about the rules of ‘Privacy by Design’ and seven IoT companies that broke them in recent years.
Boldest Cybersecurity Predictions For 2016
Slideshows  |  12/31/2015  | 
Forget the boring, safe predictions -- here instead are the most interesting, cringe-worthy, humorous, or otherwise shocking predictions for the coming year.
Tech Gifts That Security Pros Will Probably Return
Slideshows  |  12/28/2015  | 
Insecure gifts that CISOs and other security pros are likely returning as we speak.
2015 Ransomware Wrap-Up
Slideshows  |  12/22/2015  | 
Here's a rundown of the innovative ransomware that frightened users and earned attackers big bucks this year.
Page 1 / 2   >   >>


Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
DNS Threats: What Every Enterprise Should Know
Domain Name System exploits could put your data at risk. Here's some advice on how to avoid them.
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7445
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

CVE-2015-4948
Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

CVE-2015-5660
Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

CVE-2015-6003
Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

CVE-2015-6333
Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio
Tim Wilson speaks to two experts on vulnerability research – independent consultant Jeremiah Grossman and Black Duck Software’s Mike Pittenger – about the latest wave of vulnerabilities being exploited by online attackers