Threat Intelligence

4/26/2018
02:00 PM
John Klossner
John Klossner
Cartoon Contest
0%
100%

Name That Toon: Threat Landscape

We provide the cartoon. You provide the caption.
We provide the cartoon. You provide the caption.

Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card. If you don't want to enter a caption, help us pick a winner by voting on the submissions. Click thumbs up for those you find funny; thumbs down, not so. As always, editorial comments are encouraged and welcomed.

Click here for contest rules. For advice on how to beat the competition, check out How To Win A Cartoon Caption Contest. The contest closes May 31.

 

John Klossner has been drawing technology cartoons for more than 15 years. His work regularly appears in Computerworld and Federal Computer Week. His illustrations and cartoons have also been published in The New Yorker, Barron's, and The Wall Street Journal. Web site: ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 2 / 7   >   >>
jeffswyatt
50%
50%
jeffswyatt,
User Rank: Apprentice
5/11/2018 | 10:50:41 AM
Literally Floored
Billy can't understand why everone else received a desktop computer and he has to use a laptop.
pgailey
100%
0%
pgailey,
User Rank: Apprentice
5/10/2018 | 12:41:49 PM
Name That Toon:
The results of the Cyber Risk GAP Assessment were just delivered to the Board.  Jim is contemplating his next move. 
Julius-1
50%
50%
Julius-1,
User Rank: Apprentice
5/9/2018 | 4:44:04 PM
Resistance is futile.
Larry comes out of the "zone" to find his start-up has been purchased and assimilated.
ianrod
50%
50%
ianrod,
User Rank: Apprentice
5/8/2018 | 1:46:27 PM
Developers...
And this is why you don't give Security Dev/Ops caffeine.
Julius-1
50%
50%
Julius-1,
User Rank: Apprentice
5/8/2018 | 10:11:05 AM
Fresh out of college.
Fresh out of college and isn't used to furniture and a workspace yet.
capitalIT
50%
50%
capitalIT,
User Rank: Apprentice
5/8/2018 | 9:15:48 AM
The only IT Guy in HR
"Obviously you guys majored in Political Science" 
lakers85
50%
50%
lakers85,
User Rank: Strategist
5/7/2018 | 2:14:15 PM
Sorry friend...
this is Billing, not IT Security. No need to hide.
Kristendean80
50%
50%
Kristendean80,
User Rank: Strategist
5/7/2018 | 9:55:55 AM
Under the Table
" I'll take the job only if you can pay me under the table"
Samtheseagull
0%
100%
Samtheseagull,
User Rank: Guru
5/7/2018 | 3:34:00 AM
Man in the middle
Alice: Are you interfering with my Chai latte order, Everett?

Everett: I am working undercover, apparently someone has hacked Bob's pizza order, it was a denial of sausage attack (DOS)
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
5/6/2018 | 12:24:31 PM
js024
"I found a flaw in our BC/DR plan. Can you call my chiropractor?"
<<   <   Page 2 / 7   >   >>
New Mexico Man Sentenced on DDoS, Gun Charges
Dark Reading Staff 5/18/2018
Google to Delete 'Secure' Label from HTTPS Sites
Kelly Sheridan, Staff Editor, Dark Reading,  5/21/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-2598
PUBLISHED: 2018-05-23
Jenkins before versions 2.44, 2.32.2 uses AES ECB block cipher mode without IV for encrypting secrets which makes Jenkins and the stored secrets vulnerable to unnecessary risks (SECURITY-304).
CVE-2018-1124
PUBLISHED: 2018-05-23
procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can create entries in procfs by starting processes, which could result in crashes or arbitrary code execution ...
CVE-2018-1126
PUBLISHED: 2018-05-23
procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow issues. This flaw is related to CVE-2018-1124.
CVE-2018-11396
PUBLISHED: 2018-05-23
ephy-session.c in libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows remote attackers to cause a denial of service (application crash) via JavaScript code that triggers access to a NULL URL, as demonstrated by a crafted window.open call.
CVE-2018-8176
PUBLISHED: 2018-05-23
A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly validate XML content, aka &quot;Microsoft PowerPoint Remote Code Execution Vulnerability.&quot; This affects Microsoft Office.