Network Computing Dark Reading

Advertise

Risk

News & Commentary

Enterprise Malware Detections Up 79% as Attackers Refocus

Kelly Sheridan, Staff Editor, Dark Reading

News

A new report on the state of malware shows a spike in B2B malware, with former banking Trojans Emotet and TrickBot topping the list.

By Kelly Sheridan Staff Editor, Dark Reading, 1/23/2019

0 comments | Read | Post a Comment

Real-World Threats That Trump Spectre & Meltdown

New side-channel attacks are getting lots of attention, but other more serious threats should top your list of threats.

By Curtis Franklin Jr. Senior Editor at Dark Reading, 1/22/2019

0 comments | Read | Post a Comment

2018's Most Common Vulnerabilities Include Issues New and Old

News

The most common vulnerabilities seen last year run the gamut from cross-site scripting to issues with CMS platforms.

By Curtis Franklin Jr. Senior Editor at Dark Reading, 1/18/2019

0 comments | Read | Post a Comment

PCI Council Releases New Software Framework for DevOps Era

Ericka Chickowski, Contributing Writer, Dark Reading

News

The PCI Software Security Framework will eventually replace PCI DA-DSS when it expires in 2022.

By Ericka Chickowski Contributing Writer, Dark Reading, 1/18/2019

0 comments | Read | Post a Comment

The Rx for HIPAA Compliance in the Cloud

Commentary

For medical entities, simply following HIPAA cloud service provider guidelines is no longer enough to ensure that your practice is protected from cyber threats, government investigations, and fines.

By Jason Polancich CEO, Musubu, 1/18/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, Jus an enormously long RJ-45 cable from your network to a server somewhere...

Facebook Shuts Hundreds of Russia-Linked Pages, Accounts for Disinformation

Sara Peters, Senior Editor at Dark Reading

Quick Hits

Facebook says the accounts and pages were part of two unrelated disinformation operations aimed at targets outside the US.

By Sara Peters Senior Editor at Dark Reading, 1/17/2019

3 comments | Read | Post a Comment

Latest Comment: REISEN1955, $135,000 in advertising. Wow, that will impact the bottom line..........

How the US Chooses Which Zero-Day Vulnerabilities to Stockpile

Ricardo Arroyo, Senior Technical Product Manager, Watchguard Technologies

Commentary

When it comes to acceptable circumstances for government disclosure of zero-days, the new Vulnerabilities Equity Process might be the accountability practice security advocates have been waiting for.

By Ricardo Arroyo Senior Technical Product Manager, Watchguard Technologies, 1/16/2019

1 Comment | Read | Post a Comment

Latest Comment: ConwayK9781, > "And then there's a third group, to which I belong. This crowd understands...

Report: Bots Add Volume to Account Takeover Attacks

Quick Hits

Bots that can launch hundreds of attacks per second are making account takeover fraud more difficult to defend against.

By Dark Reading Staff , 1/15/2019

1 Comment | Read | Post a Comment

Latest Comment: RyanSepe, Loyalty Programs increase a sites malicious attempts by 200%. That's an interesting...

Online Fraud: Now a Major Application Layer Security Problem

Ting-Fang Yen, Research Scientist, DataVisor, Inc.

Commentary

The explosion of consumer-facing online services and applications is making it easier and cheaper for cybercriminals to host malicious content and launch attacks.

By Ting-Fang Yen Research Scientist, DataVisor, Inc., 1/15/2019

0 comments | Read | Post a Comment

Why Cyberattacks Are the No. 1 Risk

Marc Wilczek, Digital Strategist & CIO Advisor

Commentary

The paradigm shift toward always-on IT requires business leaders to rethink their defense strategy.

By Marc Wilczek Digital Strategist & CIO Advisor, 1/15/2019

2 comments | Read | Post a Comment

Latest Comment: CameronRobertson, It should be anticipated that we make ourselves become vulnerable to online...

Radiflow: New Approach for Classifying OT Attack Flaws

Quick Hits

The firm says risk assessment should begin with understanding attacker taxonomy and continue with vulnerability analysis.

By Dark Reading Staff , 1/14/2019

0 comments | Read | Post a Comment

Advanced Phishing Scenarios You Will Most Likely Encounter This Year

Eyal Benishti, CEO & Founder of IRONSCALES

Commentary

In 2019, there will be no end in sight to email-driven cybercrime such as business email compromise, spearphishing, and ransomware.

By Eyal Benishti CEO & Founder of IRONSCALES, 1/14/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, No, not the name of a nuclear submarine ---- but social security numbers should...

Government Shutdown Brings Certificate Lapse Woes

Quick Hits

Among the problems: TLS certificates are expiring and websites are becoming inaccessible.

By Curtis Franklin Jr. Senior Editor at Dark Reading, 1/11/2019

2 comments | Read | Post a Comment

Latest Comment: REISEN1955, Not getting paid. Now this is significant, if they are not on the job...

Who Takes Responsibility for Cyberattacks in the Cloud?

News

A new CSA report addresses the issue of breach responsibility as more organizations move ERP application data the cloud.

By Kelly Sheridan Staff Editor, Dark Reading, 1/11/2019

2 comments | Read | Post a Comment

Latest Comment: skalra, All the more reason why shared responsibility should be taken seriously. There...

New Software Side-Channel Attack Raises Risk for Captured Crypto

News

The new attack hits operating systems, not chips, and may give criminals the keys to a company's cryptography.

By Curtis Franklin Jr. Senior Editor at Dark Reading, 1/10/2019

0 comments | Read | Post a Comment

Ryuk Ransomware Attribution May Be Premature

News

The eagerness to tie recent Ryuk ransomware attacks to a specific group could be rushed, researchers say.

By Kelly Sheridan Staff Editor, Dark Reading, 1/10/2019

0 comments | Read | Post a Comment

Election Security Isn't as Bad as People Think

Suzanne Spaulding, Former DHS Under Secretary and Nozomi Networks Adviser

Commentary

Make no mistake, however: We'll always have to be on guard. And we can take some lessons from the world of industrial cybersecurity.

By Suzanne Spaulding Former DHS Under Secretary and Nozomi Networks Adviser, 1/10/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, The IT staffers have indicated that direct voting machines (computer and card...

Google: G Suite Now Alerts Admins to Data Exfiltration

Quick Hits

New additions to the G Suite alert center are intended to notify admins of phishing and data exports.

By Dark Reading Staff , 1/10/2019

0 comments | Read | Post a Comment

6 Best Practices for Managing an Online Educational Infrastructure

Jamie Smith & Larry Schwarberg, Chief Information Officer; Chief Information Security Officer for University of Phoenix

Commentary

Universities must keep pace with rapidly changing technology to help thwart malicious hacking attempts and protect student information.

By Jamie Smith & Larry Schwarberg Chief Information Officer; Chief Information Security Officer for University of Phoenix, 1/10/2019

2 comments | Read | Post a Comment

Latest Comment: CameronRobertson, I like knowing that all this information in storage is becoming more accessible....

Security Concerns Limit Remote Work Opportunities

Quick Hits

When companies limit the remote work options that they know will benefit the organization, security concerns are often to blame.

By Dark Reading Staff , 1/9/2019

3 comments | Read | Post a Comment

Latest Comment: REISEN1955, The problem is that you have to have uses who use corporate security tools...

More Stories

Current Conversations

Posted by REISEN1955

$135,000 in advertising. Wow, that will impact the bottom line.............not

In reply to: Re: On Putin
Post Your Own Reply

Posted by w88betwin

Great! #W88betwin#W88#link_w88#link_vao_w88betwin

In reply to: Re: Does not inspire confidence.
Post Your Own Reply

Posted by REISEN1955

Jus an enormously long RJ-45 cable from your network to a server somewhere else in the world that has unknown security features running and unknown personnel at the keyboard For that reason alone it should be...

In reply to: At heart, the cloud is
Post Your Own Reply

Posted by Dd321321

According to Gleicher, Facebook has thus shut 75 accounts and closed 289 pages, representing 790,000 followers and $135,000 in advertising.

In reply to: Re: On Putin
Post Your Own Reply

Posted by CameronRobertson

It should be anticipated that we make ourselves become vulnerable to online attacks when we expose ourselves online around the clock. We need to rethink how we manage our operations and come up with an alternative solution...

In reply to: Use less, worry less
Post Your Own Reply

Posted by CameronRobertson

I like knowing that all this information in storage is becoming more accessible. I think that there are a lot of people in this world who actually have so much potential, if only they were able to gain access to such materials...

In reply to: Spread it wide
Post Your Own Reply

Posted by ChristopherJames

Educational institutions should apply the same level of security onto their systems like those of establishments within other industries regardless of their different backgrounds. Though the data that they mainly carry does...

In reply to: Evolve with technology
Post Your Own Reply

Posted by REISEN1955

He is a disrupter of the norm - anything he can do to gum up the works of nations around his is a task to be done. He has no plan sometimes, just throw sand ino the machine and see what happens.

In reply to: On Putin
Post Your Own Reply

Posted by sharmapriya

I really like your work...

In reply to: Very Nice
Post Your Own Reply

Posted by REISEN1955

The problem is that you have to have uses who use corporate security tools as provided - Cisco VPN for example. They hate it and generally prefer straight internet in a hotel, exposing their asset to any number of...

In reply to: Re: Security Concerns
Post Your Own Reply

Posted by ConwayK9781

> "And then there's a third group, to which I belong. This crowd understands both the benefits and consequences that can occur when governments find and conceal vulnerabilities."> implies only third group understand...

In reply to: Huh...
Post Your Own Reply

Posted by instantassignmenthelp

yep

In reply to: Re: Lack of Proof is NOT Lack of Attacks -- its proof of a growing problem
Post Your Own Reply

More Conversations

Products & Releases

More Than Half of Companies See Rise in Mobile Security Threats: Bitglass 2018 BYOD Report

Global Cooperation And Regulation Key In Addressing Multilayered Threats Posed By New Technology

Eurofins Digital Testing Launches Cyber Security Division

New Research from eSentire Finds Only 30 Percent of Firms are Confident They Can Avoid a Major Security Event in the Next Two Years

CMMI Institute Updates Cybermaturity Platform with Practices to Build Cybersecurity Resilience

Smarsh Survey Reveals Financial Firms Looking for Communications Risks in the Wrong Places

Carbonite Introduces Comprehensive Data Protection for Virtual and Physical Servers

60% of IT Security Professionals Looking to Leave Current Job: Mondo

More Products & Releases

PR Newswire

Hot Topics

Editors' Choice

The Security Perimeter Is Dead; Long Live the New Endpoint Perimeter

Ofer Amitai, CEO, Portnox, 1/17/2019

How Cybercriminals Clean Their Dirty Money

Alexon Bell, Global Head of AML & Compliance, Quantexa, 1/22/2019

Facebook Shuts Hundreds of Russia-Linked Pages, Accounts for Disinformation

Sara Peters, Senior Editor at Dark Reading, 1/17/2019

Live Events

Webinars

More UBM Tech
Live Events

Drive Your Business and Career Forward at Interop19

Interop 2019 - The Unbiased IT Conference

Communications & Collaboration 2022 at EC19 Orlando March 18-21

White Papers

Nobody's Fool: Combating Social-Engineering Risks

Investigate East-West Attacks on Critical Assets with Network Traffic Analysis

[Gartner Report] 5 Questions That CISOs Must Answer Before Adopting AI

TitaniumCloud File Intelligence vs. VirusTotal

How to Build an Effective Threat Hunting Program

More White Papers

Video

All Risk Videos

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: Don't tell me I am the only one who thought: "Beats pee-mail!" Anyone who has a dog has said this when their dog starts sniffing.

Cartoon Archive

Current Issue

The Year in Security 2018

This Dark Reading Tech Digest explores the biggest news stories of 2018 that shaped the cybersecurity landscape.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How Enterprises Are Attacking the Cybersecurity Problem

Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.

Download Now!

How Enterprises Are Using IT Threat Intelligence

0 comments

Online Malware and Threats: A Profile of Today's Security Posture

0 comments

The Risk Management Struggle

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2019-1637
PUBLISHED: 2019-01-23

A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The vulnerability exist because the affected software improperly validates Advanced Recording Fo...

CVE-2019-1638
PUBLISHED: 2019-01-23

CVE-2019-1639
PUBLISHED: 2019-01-23

CVE-2019-1640
PUBLISHED: 2019-01-23

CVE-2019-1641
PUBLISHED: 2019-01-23

Terms of Service
Privacy Statement
Legal Entities