Cloud

News & Commentary
Mobile Malware Incidents Hit 100% of Businesses
Dawn Kawamoto, Associate Editor, Dark ReadingNews
Attempted malware infections against BYOD and corporate mobile devices are expected to continue to grow, new data shows.
By Dawn Kawamoto Associate Editor, Dark Reading, 11/17/2017
Comment3 comments  |  Read  |  Post a Comment
Optiv Acquires Decision Lab to Expand Big Data Services
Dark Reading Staff, Quick Hits
Deal enhances Optiv's big data, automation, and orchestration efforts.
By Dark Reading Staff , 11/16/2017
Comment0 comments  |  Read  |  Post a Comment
Death of the Tier 1 SOC Analyst
Kelly Jackson Higgins, Executive Editor at Dark ReadingNews
Say goodbye to the entry-level security operations center (SOC) analyst as we know it.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/16/2017
Comment1 Comment  |  Read  |  Post a Comment
Stealthy Android Malware Found in Google Play
Dawn Kawamoto, Associate Editor, Dark ReadingNews
Eight apps found infected with a new Trojan family that ups the ante in obfuscation with four payload stages.
By Dawn Kawamoto Associate Editor, Dark Reading, 11/15/2017
Comment1 Comment  |  Read  |  Post a Comment
Microsoft Word Vuln Went Unnoticed for 17 Years: Report
Kelly Sheridan, Associate Editor, Dark ReadingNews
Researchers claim Microsoft Word vulnerability, patched today, has existed for 17 years.
By Kelly Sheridan Associate Editor, Dark Reading, 11/14/2017
Comment4 comments  |  Read  |  Post a Comment
Enterprise Physical Security Drives IoT Adoption
Dawn Kawamoto, Associate Editor, Dark ReadingNews
The vast majority of respondents to a new survey are deploying IoT technologies for building safety in the form of security cameras.
By Dawn Kawamoto Associate Editor, Dark Reading, 11/14/2017
Comment0 comments  |  Read  |  Post a Comment
Companies Blindly Believe They've Locked Down Users' Mobile Use
Dawn Kawamoto, Associate Editor, Dark ReadingNews
IT security teams may be in for a surprise about their mobile exposure as the GDPR compliance deadline approaches, according to a new survey.
By Dawn Kawamoto Associate Editor, Dark Reading, 11/14/2017
Comment5 comments  |  Read  |  Post a Comment
Cloudflare Buys Mobile Firm Neumob
Dark Reading Staff, Quick Hits
The deal will give Cloudflare technology to optimize mobile security, performance.
By Dark Reading Staff , 11/14/2017
Comment0 comments  |  Read  |  Post a Comment
ADT Expands Cybersecurity Business with Purchase of Datashield
Dawn Kawamoto, Associate Editor, Dark ReadingNews
Home and business security giant launches ADT Cybersecurity to offer managed detection and response (MDR) service.
By Dawn Kawamoto Associate Editor, Dark Reading, 11/14/2017
Comment0 comments  |  Read  |  Post a Comment
Russian Developer Snuck Cryptocurrency Mining into Android Apps
Dawn Kawamoto, Associate Editor, Dark ReadingNews
Apps found in Google Play turned mobile devices into cryptocurrency miners unbeknownst to their users, according to researchers from security firm Ixia.
By Dawn Kawamoto Associate Editor, Dark Reading, 11/14/2017
Comment0 comments  |  Read  |  Post a Comment
Emerging IT Security Technologies: 13 Categories, 26 Vendors
Jai Vijayan, Freelance writer
A rundown of some of the hottest security product areas, and vendors helping to shape them.
By Jai Vijayan Freelance writer, 11/13/2017
Comment0 comments  |  Read  |  Post a Comment
Why Common Sense Is Not so Common in Security: 20 Answers
Joshua Goldfarb, Co-founder & Chief Product Officer, IDDRACommentary
Or, questions vendors need to ask themselves before they write a single word of marketing material.
By Joshua Goldfarb Co-founder & Chief Product Officer, IDDRA, 11/10/2017
Comment0 comments  |  Read  |  Post a Comment
Cybersecurity Staffing Shortage Tied to Cyberattacks, Data Breaches
Dawn Kawamoto, Associate Editor, Dark ReadingNews
Short-staffed cybersecurity teams contribute to data breaches and cyberattacks levied against their organizations, a survey finds.
By Dawn Kawamoto Associate Editor, Dark Reading, 11/9/2017
Comment3 comments  |  Read  |  Post a Comment
AV Vendors Have Immunity for Malware-Blocking Decisions, Court Says
Jai Vijayan, Freelance writerNews
Enigma Software Group had sued Malwarebytes for characterizing its anti-malware software as unsafe, but its case was dismissed.
By Jai Vijayan Freelance writer, 11/9/2017
Comment0 comments  |  Read  |  Post a Comment
Stealthy New PLC Hack Jumps the Air Gap
Kelly Jackson Higgins, Executive Editor at Dark ReadingNews
Researchers at Black Hat Europe next month will demonstrate a data-exfiltration attack on Siemens PLCs that uses combination of code manipulation and Radio Frequency (RF) emissions.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/9/2017
Comment0 comments  |  Read  |  Post a Comment
'Eavesdropper' Exposes Millions of Mobile Conversations
Dawn Kawamoto, Associate Editor, Dark ReadingNews
App developers fail to remove their hardcoded credentials, affecting hundreds of millions of data records.
By Dawn Kawamoto Associate Editor, Dark Reading, 11/9/2017
Comment1 Comment  |  Read  |  Post a Comment
Hypervisors: Now a Tool to Protect against Security Blind Spots
Shaun Donaldson, Director of Strategic Alliances, Bitdefender EnterpriseCommentary
By facilitating live introspection of virtual machine memory, the Xen Project is striving to eliminate stealthy attack techniques like EternalBlue.
By Shaun Donaldson Director of Strategic Alliances, Bitdefender Enterprise, 11/9/2017
Comment0 comments  |  Read  |  Post a Comment
Barracuda Buys Sonian for Cloud Analytics
Dark Reading Staff, Quick Hits
Barracuda snaps up Sonian to improve on cloud archiving and email security and management.
By Dark Reading Staff , 11/9/2017
Comment0 comments  |  Read  |  Post a Comment
Siemens Teams Up with Tenable
Kelly Jackson Higgins, Executive Editor at Dark ReadingNews
ICS/SCADA vendor further extends its managed security services for critical infrastructure networks.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 11/8/2017
Comment0 comments  |  Read  |  Post a Comment
Yahoo's Ex-CEO Mayer Calls Out Russian Hackers
Dark Reading Staff, Quick Hits
Former Yahoo Chief Executive Marissa Mayer apologizes for massive data breach that exposed billions of user accounts.
By Dark Reading Staff , 11/8/2017
Comment2 comments  |  Read  |  Post a Comment
More Stories
Current Conversations
Posted by allhealthpost
Current Conversations great post to read
In reply to: reply
Post Your Own Reply
More Conversations
PR Newswire
Mobile Malware Incidents Hit 100% of Businesses
Dawn Kawamoto, Associate Editor, Dark Reading,  11/17/2017
We're Still Not Ready for GDPR? What is Wrong With Us?
Sara Peters, Senior Editor at Dark Reading,  11/17/2017
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Managing Cyber-Risk
An online breach could have a huge impact on your organization. Here are some strategies for measuring and managing that risk.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.