News
2/29/2008
03:00 PM
Terry Sweeney
Terry Sweeney
Commentary
Connect Directly
RSS
E-Mail
50%
50%

Stimulating Choices

OK, so you can't take yourself public like Visa. But how much thought have you given to that big, fat check coming your way in May? You know, the "Spend our way out of this nonrecession" check?

OK, so you can't take yourself public like Visa. But how much thought have you given to that big, fat check coming your way in May? You know, the "Spend our way out of this nonrecession" check?After trolling the Net, here are some possibilities* you may have missed.

This "Valuable Internet Marketing Information" frankly makes me a little nervous -- not the Nigerian banking scam kind of nervous, but more like a half-off, day-old sushi sign. Probably not much in the way of storage smarts in there anyway.

Hmmmm ... a Sears gift card? Can I use that Skilcraft set on my SAN? I'll bet that Kenmore guy could make a helluva hard drive.

Here's a cheaper alternative to touring the Loire Valley, now that the euro versus the dollar looks like a Chris Farley/Pee Wee Herman grudge match. You won't need to renew your passport, either.

How about a two-week old iPhone? It's got a few GB of capacity for those favorite YouTube moments. Surely that feline's mellow jazz stylings can send the Dow soaring. Or a Dell PC with an 80-GB hard drive, DVD-ROM player, and 256 MB RAM. Now we're getting somewhere. That's enough to run VMware ESX, right?

Give these guys a jingle after that next desktop crash, and see how much they can recover. With their rates, you may even have some leftover funds to go out and stimulate anew. Like with an external drive to make good on those backup promises you've been making.

You're looking for equity, you say? Aren't we all. Take your Uncle Sam windfall and pony up for maybe a dozen shares of NetApp stock.

*Offer only good for 2007 federal tax filers; your check may be more than $300. These Google search results are no indicator of your actual results. Un-patriotic whiners need not apply. Void where prohibited.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3861
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted reference element within a nonXMLBody element.

CVE-2014-3862
Published: 2014-09-02
CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to discover potentially sensitive URLs via a crafted reference element that triggers creation of an IMG element with an arbitrary URL in its SRC attribute, leading to information disclosure in a Referer log.

CVE-2014-5076
Published: 2014-09-02
The La Banque Postale application before 3.2.6 for Android does not prevent the launching of an activity by a component of another application, which allows attackers to obtain sensitive cached banking information via crafted intents, as demonstrated by the drozer framework.

CVE-2014-5452
Published: 2014-09-02
CDA.xsl in HL7 C-CDA 1.1 and earlier does not anticipate the possibility of invalid C-CDA documents with crafted XML attributes, which allows remote attackers to conduct XSS attacks via a document containing a table that is improperly handled during unrestricted xsl:copy operations.

CVE-2014-6041
Published: 2014-09-02
The Android Browser application 4.2.1 on Android allows remote attackers to bypass the Same Origin Policy via a crafted attribute containing a \u0000 character, as demonstrated by an onclick="window.open('\u0000javascript: sequence.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
This episode of Dark Reading Radio looks at infosec security from the big enterprise POV with interviews featuring Ron Plesco, Cyber Investigations, Intelligence & Analytics at KPMG; and Chris Inglis & Chris Bell of Securonix.