Latest Content
Page 1 / 2   >   >>
9 Sources For Tracking New Vulnerabilities
Slideshows  |  10/20/2016  | 
Keeping up with the latest vulnerabilities -- especially in the context of the latest threats -- can be a real challenge.
7 Regional Hotbeds For Cybersecurity Innovation
Slideshows  |  10/18/2016  | 
These regions are driving cybersecurity innovation across the US with an abundance of tech talent, educational institutions, accelerators, incubators, and startup activity.
5 Tips For Keeping Small Businesses Secure
Slideshows  |  10/17/2016  | 
In honor of National Cyber Security Awareness Month, a look at that five-step process developed by the BBB and NCSA.
Happy 30th Birthday CFAA!
Slideshows  |  10/14/2016  | 
Six things we still dont know about the Computer Fraud and Abuse Act after all this time.
7 Ways Electronic Voting Systems Can Be Attacked
Slideshows  |  10/13/2016  | 
Pre-election integrity tests and post-election audits and checks should help spot discrepancies and errors, but risks remain.
Inside A Bug-Hunter's Head: 6 Motivators
Slideshows  |  10/7/2016  | 
Who are bug bounty hunters, and why do they hack? We dig inside the motivators driving today's hackers to seek vulnerabilities.
5 Ways To Lock Down Your Login
Slideshows  |  10/4/2016  | 
New public awareness campaign inspired by the White House calls for users to think more carefully about stronger authentication.
16 Innovative Cybersecurity Technologies Of 2016
Slideshows  |  10/3/2016  | 
This year's SINET 16 Innovators were chosen from 82 applicants representing nine countries.
10 Hottest Sessions At Black Hat Europe 2016
Slideshows  |  9/30/2016  | 
A sneak-peek at some of the more intriguing Briefings at the upcoming conference in London.
25 Security Vendors To Watch
Slideshows  |  9/27/2016  | 
A wave of security companies are armed with technologies to help businesses mitigate the next generation of cyberattacks. Who are these vendors and what can they offer?
State Of The Exploit Kit
Slideshows  |  9/26/2016  | 
Exploit kit traffic is down considerably following the demise of Nuclear and Angler, but many researchers see it only as a temporary disruption.
7 Ways Cloud Alters The Security Equation
Slideshows  |  9/23/2016  | 
Would-be and existing customers must understand that security isn't set-and-forget just because it resides in the cloud.
10 Ways To Lock Down Third-Party Risk
Slideshows  |  9/22/2016  | 
Experts share ideas for closing potential security holes that leave organizations open to attack.
Top Colleges For Cybersecurity
Slideshows  |  9/19/2016  | 
Check out these respected post-secondary U.S. cybersecurity education programs at both undergraduate and graduate levels.
5 Law Enforcement & Emergency Response Bodies IT Departments Should Know
Slideshows  |  9/14/2016  | 
It's smart for businesses to strengthen their relationships with law enforcement before a cyberattack takes place. Whom should they contact, and how will it help after a breach?
Cybersecurity In The Obama Era
Slideshows  |  9/13/2016  | 
Our roundup of the Obama administrations major initiatives, executive orders and actions over the past seven and a half years. How would you grade the president's cybersecurity achievements?
8 Ways IoT Manufacturers Can Improve Security
Slideshows  |  9/9/2016  | 
New guidelines issued by the Online Trust Alliance offer ways to lock down IoT devices.
8 Security Categories Healthcare Providers Need to Improve On
Slideshows  |  9/6/2016  | 
A new survey by HIMSS finds that many providers dont even cover the basics of IT security.
Cloud Security Alliance: 10 Ways To Achieve Access Control For Big Data
Slideshows  |  9/3/2016  | 
A look at granular access control of the big data security and privacy.
2016 DDoS Attack Trends By The Numbers
Slideshows  |  8/31/2016  | 
Some highlights from recent reports on DDoS attack activity.
Meet Some Of The Emerging Israeli Cybersecurity Firms
Slideshows  |  8/30/2016  | 
Many are borne out of the entrepreneurial spirit of the Israel Defense Force's Cyber Intelligence Unit 8200. Could any other nation keep up?
Hollywood's 7 Dumbest Hacking Depictions
Slideshows  |  8/29/2016  | 
Movies and TV shows too often use hacking as a deus ex machina device to resolve an impossible plot, but real hacking takes time, effort and lots of testing.
How To Bullet Proof Your PAM Accounts: 7 Tips
Slideshows  |  8/26/2016  | 
Recent studies demonstrate the need for companies to focus more on their privileged users.
Meet The 2016 PWNIE Award Winners
Slideshows  |  8/22/2016  | 
Contest celebrating the best and worst in information security celebrates its 10th year.
8 Surprising Statistics About Insider Threats
Slideshows  |  8/17/2016  | 
Insider theft and negligence is real--and so are the practices that amplify the risks.
15 US Cities Where Cybersecurity Professionals Earn Big Bucks
Slideshows  |  8/16/2016  | 
Demand continues to rise for cybersecurity professionals throughout the US, and the salaries seem to follow suit. New data shows best cities for salary and cost of living.
6 Things To Know For Securing Amazon Web Services
Slideshows  |  8/13/2016  | 
AWS is coming out with more new cloud security features.
Here's The Business Side Of Thwarting A Cyberattack
Slideshows  |  8/11/2016  | 
Ponemon Group study data illustrates the balancing act of running a business while trying to stay secure.
8 Alternatives to Selfie Authentication
Slideshows  |  8/4/2016  | 
How to definitively prove your identity? A variety of anatomical parts and functions may soon be able to vouch for you.
5 Email Security Tips to Combat Macro-Enabled Ransomware
Slideshows  |  8/2/2016  | 
Cybercriminals are increasingly looking to macro variants, leaving organizations to defend against advanced tactics like macro-based malware attacks any way they can.
8 Bad Ass Tools Coming Out Of Black Hat
Slideshows  |  7/30/2016  | 
Penetration testing, reverse engineering and other security tools that will be explained and released at Black Hat 2016.
5 Things We Know So Far About The DNC Hack
Slideshows  |  7/29/2016  | 
The plot thickens this week as Donald Trump openly calls on Russia to release Hillary Clintons emails. All roads appear to lead to Russia in the DNC -- and now possibly the DCCC -- hacks.
7 Ways To Charm Users Out of Their Passwords
Slideshows  |  7/27/2016  | 
While the incentives have changed over time, it still takes remarkably little to get users to give up their passwords.
10 Hottest Talks at Black Hat USA 2016
Slideshows  |  7/25/2016  | 
The impressive roll call of speakers offers a prime opportunity to learn from the very best of the information security world.
7 Ways To Lock Down Your Privileged Accounts
Slideshows  |  7/22/2016  | 
Admin passwords contained within privileged accounts can open up the keys to the kingdom to determined attackers. Here's how to stop them.
Locking Down Windows 10: 6 New Features
Slideshows  |  7/18/2016  | 
The latest version of Windows includes expanded identity and access controls, advanced Bitlocker encryption, and new malware protections.
Staying Cyber Safe At The Olympics
Slideshows  |  7/16/2016  | 
Travel tips and more in hostile environments abroad.
Meet The Teams In DARPA's All-Machine Hacking Tournament
Slideshows  |  7/15/2016  | 
"Autonomous security" is DARPA's latest game. Its Cyber Grand Challenge will culminate at DEF CON with a contest to see which of these seven finalists' machines will automatically detect and remediate the most security vulnerabilities.
What SMBs Need To Know About Security But Are Afraid To Ask
Slideshows  |  7/14/2016  | 
A comprehensive set of new payment protection resources from the PCI Security Standards Council aims to help small- and medium-sized businesses make security a priority.
Profiles Of The Top 7 Bug Hunters From Around the Globe
Slideshows  |  7/12/2016  | 
'Super hunters' share a common goal: to find the most high impact valid bugs before a bad guy does.
8 Ways Ethically Compromised Employees Compromise Security
Slideshows  |  7/10/2016  | 
From audit cheats to bringing data to a new job, unscrupulous employees put organizations at risk.
An Inside Look At The New Apple Mac Malware 'Eleanor'
Slideshows  |  7/8/2016  | 
Researchers from Bitdefender find security hole that opens up a backdoor to the Mac OS X system.
What Security Really Looks Like In Small- To Midsized Businesses
Slideshows  |  7/6/2016  | 
Data from internal and external risk assessments provides some insight into how working with SMBs can be risky if security problems aren't uncovered and addressed.
6 Ways To Keep Androids Safe
Slideshows  |  7/3/2016  | 
Security managers have their hands full protecting Android devices, but there are common sense steps they can take to beat back attackers.
Recalibrating Cybersecurity Spending Projections
Slideshows  |  6/29/2016  | 
How big and how fast will the cybersecurity market grow in five years? Inquiring minds want to know.
5 Ways To Think Like A Hacker
Slideshows  |  6/24/2016  | 
Security expert says CISOs need to use simulations more effectively so they can understand how hackers work and beat them at their own game.
How To Lock Down So Ransomware Doesn't Lock You Out
Slideshows  |  6/22/2016  | 
Ransomware has mutated into many different forms and its not always easy to catch them all, but here are some things you can do.
7 Need-To-Know Attack Stats
Slideshows  |  6/21/2016  | 
Facts & figures about average dwell times, incident response speeds, and which direction the 'detection deficit' is heading.
An Inside Look At The Mitsubishi Outlander Hack
Slideshows  |  6/17/2016  | 
White hat hacker finds WiFi flaws in mobile app for popular auto; Mitsubishi working on fix.
12 Tips for Securing Cyber Insurance Coverage
Slideshows  |  6/13/2016  | 
As cyber insurance grows more available and popular it is also becoming increasingly complex and confusing. Our slideshow offers guidelines on how to get insurance, get decent coverage, and avoid limitations in coverage.
Page 1 / 2   >   >>

Register for Dark Reading Newsletters
White Papers
Current Issue
Five Emerging Security Threats - And What You Can Learn From Them
At Black Hat USA, researchers unveiled some nasty vulnerabilities. Is your organization ready?
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio
According to industry estimates, about a million new IT security jobs will be created in the next two years but there aren't enough skilled professionals to fill them. On top of that, there isn't necessarily a clear path to a career in security. Dark Reading Executive Editor Kelly Jackson Higgins hosts guests Carson Sweet, co-founder and CTO of CloudPassage, which published a shocking study of the security gap in top US undergrad computer science programs, and Rodney Petersen, head of NIST's new National Initiative for Cybersecurity Education.