Comments
Cartoon: C-Suite & Cybersecurity
Newest First  |  Oldest First  |  Threaded View
Page 1 / 2   >   >>
Manon.
50%
50%
Manon.,
User Rank: Apprentice
2/2/2018 | 2:13:24 AM
Not without a reason, Mr. X. I assure you.
Mr. X: I hereby present you a fail-safe security model, which failed to strike in the minds of our rapidly growing competitor!

Manager: Not without a reason, Mr. X. I assure you, it was not without a reason.
ebyjeeby
50%
50%
ebyjeeby,
User Rank: Strategist
1/25/2018 | 1:04:21 PM
caption
All the security that's in the budget!
ak25455
50%
50%
ak25455,
User Rank: Apprentice
1/23/2018 | 5:19:53 PM
Re: C-suite and Cybersecurity
..and to demonstrate separation of duties within our security department....
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
1/22/2018 | 10:22:06 PM
Centralization
I suspect that different approach will involve a six-armed guy doing all three motions -- lest any insight be observed accidentally!
Kristendean80
100%
0%
Kristendean80,
User Rank: Strategist
1/18/2018 | 11:52:23 AM
Re: C-Suite & Cybersecurity
Information Security is a top priority at this company. We've done a lot of stupid things we would like to keep secret.
cynrgy
67%
33%
cynrgy,
User Rank: Strategist
1/17/2018 | 3:47:34 PM
Re: C-Suite & Cybersecurity
We have adopted a three-pronged approach to pc security.  Thus far no one has seen, heard, or spoken of any problems relating to it so it must be affective.
sharrondhuga
50%
50%
sharrondhuga,
User Rank: Apprentice
1/17/2018 | 11:43:35 AM
amazing
amazing
cybersavior
50%
50%
cybersavior,
User Rank: Strategist
1/17/2018 | 8:45:46 AM
Rather....
Equifax's Simian Army
GWAIN
50%
50%
GWAIN,
User Rank: Strategist
1/16/2018 | 1:25:49 PM
Threat vs Risk
We have presented legacy and emerging threats.  Let me introduce you to how the business is dealing with the risk.
InfoSecurityMaster
50%
50%
InfoSecurityMaster,
User Rank: Strategist
1/16/2018 | 12:03:53 PM
Barrel of Monkeys
...so, any questions on how to brief The Board on information security?
Page 1 / 2   >   >>


Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/14/2018
Intel Reveals New Spectre-Like Vulnerability
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/15/2018
Data Privacy Careers Are Helping to Close the IT Gender Gap
Dana Simberkoff, Chief Compliance and Risk Management Officer, AvePoint, Inc,  8/20/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-15601
PUBLISHED: 2018-08-21
apps/filemanager/handlers/upload/drop.php in Elefant CMS 2.0.3 performs a urldecode step too late in the "Cannot upload executable files" protection mechanism.
CVE-2018-15603
PUBLISHED: 2018-08-21
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen.
CVE-2018-15598
PUBLISHED: 2018-08-21
Containous Traefik 1.6.x before 1.6.6, when --api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable.
CVE-2018-15599
PUBLISHED: 2018-08-21
The recv_msg_userauth_request function in svr-auth.c in Dropbear through 2018.76 is prone to a user enumeration vulnerability because username validity affects how fields in SSH_MSG_USERAUTH messages are handled, a similar issue to CVE-2018-15473 in an unrelated codebase.
CVE-2018-0501
PUBLISHED: 2018-08-21
The mirror:// method implementation in Advanced Package Tool (APT) 1.6.x before 1.6.4 and 1.7.x before 1.7.0~alpha3 mishandles gpg signature verification for the InRelease file of a fallback mirror, aka mirrorfail.