Network Computing Dark Reading

Advertise

Risk

News & Commentary

Sensitive Data Lingers on Used Storage Drives Sold Online

Ericka Chickowski, Contributing Writer, Dark Reading

News

Four in 10 used hard drives sold on eBay found to contain sensitive information.

By Ericka Chickowski Contributing Writer, Dark Reading, 4/25/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, Any third party sale of used is always a threat and hard drives are not alone...

Indeed.com: Slight Dip in Clicks on US Cybersecurity Job Listings

Kelly Jackson Higgins, Executive Editor at Dark Reading

News

Meanwhile, most of the highest-paying positions pay more than $100K, according to new analysis from the job posting site.

By Kelly Jackson Higgins Executive Editor at Dark Reading, 4/25/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, Lack of respect for IT as a career choice. Management still outsources,...

Two Charged with Economic Espionage, GE Trade Secret Theft

Quick Hits

A US national and Chinese national have been charged with conspiring to steal General Electric's trade secrets surrounding turbine technologies.

By Dark Reading Staff , 4/24/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, Has to be an Abbott and Costello routine somewhere in this.

Google File Cabinet Plays Host to Malware Payloads

Kelly Sheridan, Staff Editor, Dark Reading

News

Researchers detect a new drive-by download attack in which Google Sites' file cabinet template is a delivery vehicle for malware.

By Kelly Sheridan Staff Editor, Dark Reading, 4/23/2019

0 comments | Read | Post a Comment

Demonstration Showcase Brings DevOps to Interop19

Curtis Franklin Jr., Senior Editor at Dark Reading

News

Attendees will learn how orchestration and automation can be a part of network operations and security, even at smaller companies.

By Curtis Franklin Jr. Senior Editor at Dark Reading, 4/23/2019

0 comments | Read | Post a Comment

City of Stuart Still Recovering from Ryuk Ransomware Attack

Quick Hits

Officials are investigating an April 13 ransomware attack that targeted Stuart's city servers and forced it offline.

By Dark Reading Staff , 4/23/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, disaster recovery plan ....... user education ...... busines continuity plans...

Will the US Adopt a National Privacy Law?

Commentary

Probably not before the 2020 election. But keep an eye on this Congress as legislators debate how to define personal data and what limits to place on how companies use it.

By Seth P. Berman Partner, Nutter, 4/23/2019

0 comments | Read | Post a Comment

1 in 4 Workers Are Aware Of Security Guidelines – but Ignore Them

News

Even more are knowingly connecting to unsecure networks and sharing confidential information through collaboration platforms, according to Symphony Communication Services.

By Steve Zurier Freelance Writer, 4/23/2019

1 Comment | Read | Post a Comment

Latest Comment: JayG460, I find it interesting to mention a product that would have necesssarily been...

FBI: $2.7 Billion in Losses to Cyber-Enabled Crimes in 2018

Quick Hits

Internet Crime Complaint Center (IC3) last year received an average of 900+ reports daily of Internet-enabled theft, fraud, and exploitation.

By Dark Reading Staff , 4/22/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, Wow! $2.7 billion in losses and $192 million returned. Impressive,...

Russia Hacked Clinton's Computers Five Hours After Trump's Call

Robert Lemos, Technology Journalist/Data Researcher

News

Mueller report finds that in July 2016, after then-candidate Donald Trump publicly called for Russia to "find the 30,000 emails," Russian agents targeted Hillary Clinton's personal office with cyberattacks.

By Robert Lemos Technology Journalist/Data Researcher, 4/19/2019

17 comments | Read | Post a Comment

Latest Comment: REISEN1955, Here we go - discussion has gone off the rails for technical issue and become...

Why We Need a 'Cleaner Internet'

Darren Anstee, Chief Technology Officer at Arbor Networks

Commentary

By blocking threats and attacks nearer to their sources, cybersecurity pros could help turn the connected world into a safer place for all.

By Darren Anstee Chief Technology Officer at Arbor Networks, 4/19/2019

3 comments | Read | Post a Comment

Latest Comment: Rigina, look it is an interresting article https://www.bbc.co.uk/mediacentre/proginfo/2019/12/the-internets-dirtiest-secrets-the-cleaners find...

Third-Party Cyber-Risk by the Numbers

Recent stats show that the state of third-party cyber risk and vendor risk management remains largely immature at most organizations.

By Ericka Chickowski Contributing Writer, Dark Reading, 4/19/2019

0 comments | Read | Post a Comment

Cisco Issues 31 Mid-April Security Alerts

News

Among them, two are critical and six are of high importance.

By Curtis Franklin Jr. Senior Editor at Dark Reading, 4/18/2019

0 comments | Read | Post a Comment

Cloud Security Spend Set to Reach $12.6B by 2023

News

Growth corresponds with a greater reliance on public cloud services.

By Kelly Sheridan Staff Editor, Dark Reading, 4/18/2019

0 comments | Read | Post a Comment

The Cybersecurity Automation Paradox

News

Recent studies show that before automation can reduce the burden on understaffed cybersecurity teams, they need to bring in enough automation skills to run the tools.

By Ericka Chickowski Contributing Writer, Dark Reading, 4/18/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, Automation works great on detection and remediation. We have to move...

Facebook Accidentally Imported 1.5M Users' Email Data Sans Consent

Quick Hits

The social media giant says it did not access the imported data and is notifying affected users.

By Dark Reading Staff , 4/18/2019

2 comments | Read | Post a Comment

Latest Comment: REISEN1955, Zucky does not really care - he has billions and can retire in comfort whenever...

VPN Vulnerabilities Point Out Need for Comprehensive Remote Security

News

VPNs are the primary tool for securing remote access, but recently disclosed vulnerabilities point out the weakness of relying on them as the only tool.

By Curtis Franklin Jr. Senior Editor at Dark Reading, 4/17/2019

0 comments | Read | Post a Comment

Tips for the Aftermath of a Cyberattack

News

Incident response demands technical expertise, but you can't fully recover without non-IT experts.

By Kelly Sheridan Staff Editor, Dark Reading, 4/17/2019

3 comments | Read | Post a Comment

Latest Comment: Ilan_Abadi, I have enjoyed to read this acritical and it just make my opinion that Cyber-events...

New Malware Campaign Targets Financials, Retailers

Quick Hits

The attack uses a legitimate remote access system as well as several families of malware.

By Dark Reading Staff , 4/17/2019

0 comments | Read | Post a Comment

Legacy Apps: The Security Risk Lurking in Dusty Corners

Tim Buntel, VP, Application Security Products, Threat Stack

Commentary

Four best practices to keep old code from compromising your enterprise environment.

By Tim Buntel VP, Application Security Products, Threat Stack, 4/17/2019

1 Comment | Read | Post a Comment

Latest Comment: REISEN1955, Every firm has a legacy system, one old Compaq Prolinea that has weird or ancient...

More Stories

Current Conversations

Posted by REISEN1955

Any third party sale of used is always a threat and hard drives are not alone here. Ages ago I purchased a Lexmark laserjet for a client that had three such printers but one died - new same printer needs only an assigned...

In reply to: No surprise
Post Your Own Reply

Posted by REISEN1955

Lack of respect for IT as a career choice. Management still outsources, IBM and other firms still hire and fire and others just fire for no good reason at all. Hence college age grads or young who choose to enter...

In reply to: Base problem is still.....
Post Your Own Reply

Posted by REISEN1955

Here we go - discussion has gone off the rails for technical issue and become more general. Regret this, Linkedin is going political and so is this thread. But there is a huge difference between 5 hours and 5...

In reply to: Re: Correlation or Causality
Post Your Own Reply

Posted by PaulV972

If one believes that Trump's challenge triggered the Russian's actions, it should be terrifying that they could gain full access within 5 hours. Once agin, we've gone beyond absurd. I for one welcome the day...

In reply to: Correlation or Causality
Post Your Own Reply

Posted by REISEN1955

Has to be an Abbott and Costello routine somewhere in this.

In reply to: Zheng and Zhang
Post Your Own Reply

Posted by [email protected]

Point - individuals within the Clinton Campaign should have been more aware of phishing attempts, especially the campaign manager. Point - individuals within the Clinton Campaign should have been reminded or even briefed...

In reply to: Re: Russia Hacked Clinton's Computers Five Hours After Trump's Call
Post Your Own Reply

Posted by [email protected]

The actual time period is five days not five hours, which is stated in the Mueller Report.

In reply to: Re: Poor Editorial Choice
Post Your Own Reply

Posted by RonR726

If you are seeking a forensic analysis, look no furhter than Bill Binney's assessment who concluded: Former NSA experts say it wasn't a hack at all, but a leak— Hard science now demonstrates it was a leak—a...

In reply to: Re: Russia Hacked Clinton's Computers Five Hours After Trump's Call
Post Your Own Reply

Posted by REISEN1955

Interesting but I would consult more directed source books on cybersecurity - doubt Mueller gets into testing requirements for CIISP cert.

In reply to: Re: Russia Hacked Clinton's Computers Five Hours After Trump's Call
Post Your Own Reply

Posted by EdwardThirlwall

I think it is indeed necessary for spoofing of satellite positioning to be done especially when world leaders are concerned. Anyone could be spying on them to undertake even the most fatal of a mission like an assasination...

In reply to: Spoof to protect
Post Your Own Reply

Posted by REISEN1955

disaster recovery plan ....... user education ...... busines continuity plans ....... test protocols.

In reply to: sigh again..............................
Post Your Own Reply

Posted by REISEN1955

Wow! $2.7 billion in losses and $192 million returned. Impressive, NOT. What we have here is a failure to coummunicate as Strother Martin so wisely said. Failure to communicate knowledge, best...

In reply to: Fantastic result
Post Your Own Reply

More Conversations

Products & Releases

Cybercriminals Using Popular TV Shows to Spread Malware

OPAQ Awarded Patent for Cyber Risk Assessment Technology

TrueVault Launches TrueVault Atlas To Automate Aspects of GDPR Compliance

Industrial Internet Consortium Announces Practitioner's Guide for Assessing Maturity of IoT System Security

Prevalent Announces New CEO, Expands Leadership Team with 3 New C-Suite Positions

Tripwire IP360 Now Discovers More Than 200,000 Conditions

More Than Half of Companies See Rise in Mobile Security Threats: Bitglass 2018 BYOD Report

Global Cooperation And Regulation Key In Addressing Multilayered Threats Posed By New Technology

More Products & Releases

PR Newswire

Hot Topics

Editors' Choice

Russia Hacked Clinton's Computers Five Hours After Trump's Call

Robert Lemos, Technology Journalist/Data Researcher, 4/19/2019

Why We Need a 'Cleaner Internet'

Darren Anstee, Chief Technology Officer at Arbor Networks, 4/19/2019

Free Princeton Application Provides IoT Traffic Insight

Dark Reading Staff 4/19/2019

Live Events

Webinars

More UBM Tech
Live Events

Drive Your Business and Career Forward at Interop19

Interop 2019 - The Unbiased IT Conference

White Papers

A New World of IT Management in 2019

EcoStruxure(TM) IT: Visibility Across Hybrid Ecosystem

Security and Intelligence with Ribbon Protect

Columbus Zoo and Aquarium Tames a Wild Audio Challenge with Audinate Dante Domain Manager

2019 Cyberthreat Defense Report

More White Papers

Video

All Risk Videos

Cartoon

Latest Comment: Bill just doesn't realize it's more than a 2 dimensional world.

Cartoon Archive

Current Issue

5 Emerging Cyber Threats to Watch for in 2019

Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How Enterprises Are Developing Secure Applications

IT security and application development are disparate processes that are increasingly coming together. Here's a look at how that's happening.

Download Now!

The State of Cyber Security Incident Response

0 comments

How Enterprises Are Attacking the Cybersecurity Problem

0 comments

How Enterprises Are Using IT Threat Intelligence

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2019-4092
PUBLISHED: 2019-04-25

IBM Content Navigator 2.0.3 and 3.0CD could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a maliciou...

CVE-2019-4146
PUBLISHED: 2019-04-25

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user to obtain sensitive document information under unusual circumstances. IBM X-Force ID: 158401.

CVE-2019-4148
PUBLISHED: 2019-04-25

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IB...

CVE-2019-4222
PUBLISHED: 2019-04-25

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user to view process definition of a business process without permission. IBM X-Force ID: 159231.

CVE-2019-4238
PUBLISHED: 2019-04-25

IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...

Terms of Service
Privacy Statement
Legal Entities