Database Security

Authentication

Privacy

Compliance

Careers & People

Identity & Access Management

Threat Intelligence

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

Advertise With Us

About Us

Digital Subscription

Author

Profile of William Jackson

Technology Writer

News & Commentary Posts: 1

William Jackson is a technology writer based in Washington, D.C. He has been a journalist for more than 35 years, most recently covering the $80 billion federal government IT sector for Government Computer News. His coverage has ranged from architecture to international trade, but for the last 20 years he has focused on telecommunications, networking, and cyber-security in the public sector. He has received numerous journalism and industry awards and has spoken on radio and television about trends in government acquisition and the use of information technology as well as the challenges presented by cyber-security threats.

Articles by William Jackson

View Content By Month

Feds Launch Cyber Security Guidelines For U.S. Infrastructure Providers

2/12/2014
The White House on Wednesday released the first version of its cyber security framework for protecting critical infrastructure. Critics say these voluntary guidelines enshrine the status quo
Post a Comment

Content by Month
February 2014 - 1
[close this box]

Live Events

Webinars

More UBM Tech
Live Events

Plan and Deploy a Most Cost-Effective 4G Infrastructure

Come to Interop New York, Sept 29 - Oct 3, 2014

Tower & Small Cell Summit

White Papers

5 Tips to Secure Small Business Backdoors in the Enterprise Supply Chain

Creating the Best-of-Breed DDI Solution in a Microsoft Environment

Designing a Secure DNS Architecture

Preventing Data Center Downtime

Visibility for Converged Infrastructure Solutions

More White Papers

Flash Poll

All Polls

Current Issue

Dark Reading Must Reads July 15, 2014

Download This Issue!

Subscribe Now!

Back Issues | Must Reads

Cartoon

Latest Comment: This actually applies to a lot of things in security, so it's a wise joke well-taken.

Cartoon Archive

Reports

Infographics

DevOps’ Impact on Application Security

Managing the interdependency between software and infrastructure is a thorny challenge. Often, it’s a “developers are from Mars, systems engineers are from Venus” situation.

Download Now!

More Reports

Slideshows

7 Black Hat Sessions Sure To Cause A Stir

9 comments | Read | Post a Comment

Ransomware: 5 Threats To Watch

6 Things That Stink About SSL

More Slideshows

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2014-0103

Published: 2014-07-29
WebAccess in Zarafa before 7.1.10 and WebApp before 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files.

CVE-2014-0475

Published: 2014-07-29
Multiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. (dot dot) in a (1) LC_*, (2) LANG, or other locale environment variable.

CVE-2014-0889

Published: 2014-07-29
Multiple cross-site scripting (XSS) vulnerabilities in IBM Atlas Suite (aka Atlas Policy Suite), as used in Atlas eDiscovery Process Management through 6.0.3, Disposal and Governance Management for IT through 6.0.3, and Global Retention Policy and Schedule Management through 6.0.3, allow remote atta...

CVE-2014-2226

Published: 2014-07-29
Ubiquiti UniFi Controller before 3.2.1 logs the administrative password hash in syslog messages, which allows man-in-the-middle attackers to obtains sensitive information via unspecified vectors.

CVE-2014-3020

Published: 2014-07-29
install.sh in the Embedded WebSphere Application Server (eWAS) 7.0 before FP33 in IBM Tivoli Integrated Portal (TIP) 2.1 and 2.2 sets world-writable permissions for the installRoot directory tree, which allows local users to gain privileges via a Trojan horse program.

Best of the Web

Free, Worldwide, Encrypted Phone Calls for iPhone

Hacker Breached NOAA Satellite Data From Contractor's PC

Researchers successfully attack Android through device's speaker

The NSA's Cyber-King Goes Corporate

European Central Bank hacked, personal data stolen

Dark Reading Radio

Archived Dark Reading Radio

Botnet Takedowns: Who's Winning, Who's Losing

Sara Peters hosts a conversation on Botnets and those who fight them.

UPCOMING!
Wednesday, July 30, 1pm EDT
Data Loss Prevention (DLP) FAIL

UPCOMING!
Wednesday, August 6, 1pm EDT
Dark Reading Radio LIVE from Black Hat 2014

UPCOMING!
Wednesday, August 6, 8pm EDT
Dark Reading Radio LIVE from Black Hat 2014

UPCOMING!
Thursday, August 7, 1pm EDT
Dark Reading Radio LIVE from Black Hat 2014

UPCOMING!
Thursday, August 7, 7pm EDT
Dark Reading Radio LIVE from Black Hat 2014

FULL SCHEDULE | ARCHIVED SHOWS

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]