Slideshows
Latest Content
Page 1 / 2   >   >>
Intro to Cyber Insurance: 7 Questions to Ask
Slideshows  |  3/24/2017  | 
Buying a cyber insurance policy can be complex and difficult. Make sure you're asking these questions as you navigate the process.
7 Steps to Transforming Yourself into a DevSecOps Rockstar
Slideshows  |  3/23/2017  | 
Security practitioners at one education software firm offer lessons learned from merging DevOps with security.
New Wave of Security Acquisitions Signals Start of Consolidation Trend
Slideshows  |  3/20/2017  | 
A dozen recent high-profile deals reflect cybersecurity vendors' hopes of expanding their offerings with next-generation technology, ideas, and talent.
The 6 Riskiest Social Media Habits to Avoid at Work
Slideshows  |  3/15/2017  | 
Cybercriminals are turning to Facebook, Twitter and other platforms to launch attacks via employee behavior that could be putting your business at risk.
9 Phishing Lures that Could Hijack your 2017 Tax Refund
Slideshows  |  3/9/2017  | 
Scammers are taking an aggressive approach to tax season this year, packing attachments and links with banking Trojans, and fairly new strains of ransomware.
7 Hot Security Terms (and Buzzwords) to Know
Slideshows  |  3/6/2017  | 
How the security industry has a conversation with itself is constantly changing and the latest terms as well as buzzwords point us to where the technology is heading.
20 Cybersecurity Startups To Watch In 2017
Slideshows  |  2/24/2017  | 
VC money flowed plentifully into the security market last year, fueling a new crop of innovative companies.
8 Valuable Security Certifications For 2017
Slideshows  |  2/21/2017  | 
A security credential could be the step towards your next job title. But which one to get?
When Hackers Hack Hackers
Slideshows  |  2/9/2017  | 
Notable cases of internecine cyber squabbles.
10 Essential Elements For Your Incident-Response Plan
Slideshows  |  2/2/2017  | 
The middle of a DDoS attack or ransomware infection is hardly the time to start talking about divisions of labor, or who should do what when.
6 Free Ransomware Decryption Tools
Slideshows  |  1/30/2017  | 
The No More Ransom group has been working to get free decryptor tools into the hands of security professionals and the general public.
7 Tips For Getting Your Security Budget Approved
Slideshows  |  1/27/2017  | 
How to have a productive conversation with business leaders and get your security budget approved.
SOC Maturity By The Numbers
Slideshows  |  1/25/2017  | 
Most large organizations today have security operations centers in play, but only 15% rate theirs as mature.
7 Common Reasons Companies Get Hacked
Slideshows  |  1/18/2017  | 
Many breaches stem from the same root causes. What are the most common security problems leaving companies vulnerable?
10 Cocktail Party Security Tips From The Experts
Slideshows  |  1/13/2017  | 
Security pros offer basic advice to help average users ward off the bad guys.
What To Watch For With Ransomware: 2017 Edition
Slideshows  |  1/7/2017  | 
Ransomware will continue to evolve in 2017, bringing new and diverse threats to businesses. What changes are in store?
7 Ways To Fine-Tune Your Threat Intelligence Model
Slideshows  |  1/5/2017  | 
The nature of security threats is too dynamic for set-and-forget. Here are some ways to shake off that complacency.
21 Biggest Cybercriminal Busts Of 2016
Slideshows  |  12/28/2016  | 
This year has been a tornado of major cyberattacks and hacker arrests. Here, we look back on the 21 most interesting 'cyberbusts' of 2016.
8 Boldest Security Predictions For 2017
Slideshows  |  12/27/2016  | 
Scary, funny and maybe even a little outlandish, these industry predictions come from prognosticators who didn't mince words.
Inside The Vulnerability Disclosure Ecosystem
Slideshows  |  12/22/2016  | 
Report released by NTIA stakeholders offers new information on how organizations respond to security vulnerabilities - and what researchers think.
5 Ways The Cyber-Threat Landscape Shifted In 2016
Slideshows  |  12/19/2016  | 
IoT botnets and turnkey phishing services were just some of the ways the bad guys stayed ahead in 2016
8 Most Hackable Holiday Gifts, 2016 Edition
Slideshows  |  12/14/2016  | 
You better watch out! Otherwise, you may be giving the gift of malware or unauthorized access to networks and devices.
5 Things Security Pros Need To Know About Machine Learning
Slideshows  |  12/12/2016  | 
Experts share best practices for data integrity, pattern recognition and computing power to help enterprises get the most out of machine learning-based technology for cybersecurity.
How Retailers Can Fight Holiday Season Hackers
Slideshows  |  12/8/2016  | 
Experts offer tips for locking down retailers point-of-sale systems for the busy holiday shopping season.
The 7 Most Sensational Breaches Of 2016
Slideshows  |  12/6/2016  | 
The biggest hacks, data exposures, and thefts that left companies and government entities reeling.
Where Cybercriminals Go To Buy Your Stolen Data
Slideshows  |  12/3/2016  | 
What malicious sites provide both free and paid access to stolen credit cards, company databases, malware and more?
2016's 7 Worst DDoS Attacks So Far
Slideshows  |  11/28/2016  | 
Rise of booter and stresser services, mostly run on IoT botnets, is fueling DDoS excitement (but the pros aren't impressed).
8 Books Security Pros Should Read
Slideshows  |  11/23/2016  | 
Hunting for a good resource on the security industry? Check out these classics from the experts to learn more about hacking, defense, cryptography and more.
5 Ways Retailers Can Stay Safe Over the Holidays
Slideshows  |  11/21/2016  | 
E-commerce experts offer tips for locking down systems as the busy holiday season approaches.
8 Public Sources Holding 'Private' Information
Slideshows  |  11/17/2016  | 
Personal information used for nefarious purposes can be found all over the web from genealogy sites to public records and social media.
The 7 Most Significant Government Data Breaches
Slideshows  |  11/15/2016  | 
Mega compromises at federal and state agencies over the past three years has compromised everything from personal data on millions to national security secrets.
Security Metrics Checklist
Slideshows  |  11/12/2016  | 
Which metrics are the best indicators of a strong cybersecurity team? Experts say security pros should be recording and reporting these data points to demonstrate their success.
The 7 Types Of Security Jobs, According To NIST
Slideshows  |  11/8/2016  | 
NISTs Cybersecurity Workforce Framework gives the security industry a way to classify specific specialty areas and work roles and identify a path for career growth.
8 Hot Skills Sought By IT Security Departments
Slideshows  |  11/3/2016  | 
No company wants to leak customer data, have intellectual property stolen, or experience business services taken offline. Those that recognize these risks are thus scrambling to hire the right people to fill their information security roles.
7 Reasons Consumers Dont Take Action on Cybersecurity
Slideshows  |  11/1/2016  | 
Security awareness is high but its hard to turn personal knowledge into effective practices.
5 Signs Your Smartphone Has Been Hacked
Slideshows  |  10/28/2016  | 
Mobile devices are increasingly popular vectors for cybercriminals targeting the enterprise. How to tell when a smartphone may be under attack.
7 Scary Ransomware Families
Slideshows  |  10/25/2016  | 
Here are seven ransomware variants that can creep up on you.
7 Imminent IoT Threats
Slideshows  |  10/21/2016  | 
Attacks against smart home products, medical devices, SCADA systems, and other newly network-enabled systems signal the beginning of a new wave of attacks against the IoT.
9 Sources For Tracking New Vulnerabilities
Slideshows  |  10/20/2016  | 
Keeping up with the latest vulnerabilities -- especially in the context of the latest threats -- can be a real challenge.
7 Regional Hotbeds For Cybersecurity Innovation
Slideshows  |  10/18/2016  | 
These regions are driving cybersecurity innovation across the US with an abundance of tech talent, educational institutions, accelerators, incubators, and startup activity.
5 Tips For Keeping Small Businesses Secure
Slideshows  |  10/17/2016  | 
In honor of National Cyber Security Awareness Month, a look at that five-step process developed by the BBB and NCSA.
Happy 30th Birthday CFAA!
Slideshows  |  10/14/2016  | 
Six things we still dont know about the Computer Fraud and Abuse Act after all this time.
7 Ways Electronic Voting Systems Can Be Attacked
Slideshows  |  10/13/2016  | 
Pre-election integrity tests and post-election audits and checks should help spot discrepancies and errors, but risks remain.
Inside A Bug-Hunter's Head: 6 Motivators
Slideshows  |  10/7/2016  | 
Who are bug bounty hunters, and why do they hack? We dig inside the motivators driving today's hackers to seek vulnerabilities.
5 Ways To Lock Down Your Login
Slideshows  |  10/4/2016  | 
New public awareness campaign inspired by the White House calls for users to think more carefully about stronger authentication.
16 Innovative Cybersecurity Technologies Of 2016
Slideshows  |  10/3/2016  | 
This year's SINET 16 Innovators were chosen from 82 applicants representing nine countries.
10 Hottest Sessions At Black Hat Europe 2016
Slideshows  |  9/30/2016  | 
A sneak-peek at some of the more intriguing Briefings at the upcoming conference in London.
25 Security Vendors To Watch
Slideshows  |  9/27/2016  | 
A wave of security companies are armed with technologies to help businesses mitigate the next generation of cyberattacks. Who are these vendors and what can they offer?
State Of The Exploit Kit
Slideshows  |  9/26/2016  | 
Exploit kit traffic is down considerably following the demise of Nuclear and Angler, but many researchers see it only as a temporary disruption.
7 Ways Cloud Alters The Security Equation
Slideshows  |  9/23/2016  | 
Would-be and existing customers must understand that security isn't set-and-forget just because it resides in the cloud.
Page 1 / 2   >   >>


Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
5 Security Technologies to Watch in 2017
Emerging tools and services promise to make a difference this year. Are they on your company's list?
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7445
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

CVE-2015-4948
Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

CVE-2015-5660
Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

CVE-2015-6003
Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

CVE-2015-6333
Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.