Upcoming Webinars
Webinar Archives
How to Revolutionize Analytics with Next-Generation In-Memory Computing
Date: Sep 25, 2014
View webinar
Register for this webinar to learn how you can gain a sustainable competitive advantage and take your organization to a new level with IBM?s next generation in-memory computing.

Linking Enterprise and Small Business Security to Shore up Cyber Risks in the Supply Chain
Date: Sep 23, 2014
View webinar
Join SurfWatch Labs Chief Architect and former US Government Intelligence Analyst Jason Polancich, and Carrie Kerskie, a data privacy investigator and expert, for a webcast where they will examine the insecurity of small businesses in the supply chain and provide practical tips to close backdoors into the enterprise.

Data Privacy: 2014 Forrester Survey Results
Date: Sep 17, 2014
View webinar
Register for this webinar to learn about Forrester's survey findings on data security and privacy.

How to Best Manage Customer Service Data Complexity
Date: Sep 17, 2014
View webinar
Register for this webinar to learn how to develop customer portals that deliver on the promise of increased access to policy data around the clock.

Who's Afraid of the Big (Data) Bad Wolf? Are You?
Date: Nov 09, 2014
View webinar
Attend this webinar to learn about client experiences with Big Data projects, as well as learning about the 5 best practices for big data integration, so that you can tame the big (data) bad wolf.

Staying Agile with Big Data - A Roadmap to Long Term Success
Date: Oct 09, 2014
View webinar
Agility is the key for benefiting from the use of Big Data for operational excellence and improved profitability.No matter where you are in the Big Data adoption lifecycle, you will learn about proven methods to open the possibilities of your data.

Is Your Database a Hero or a Zero?
Date: Apr 09, 2014
View webinar
Attend the webcast to learn which database works for you vs. against you. See how the right database architecture can help you achieve your SLAs and give application developers the freedom and flexibility to focus on their code, not the underlying infrastructure.

From Zero-Day Attacks to exploit kits: How to Contain Advanced Threats
Date: Mar 09, 2014
View webinar
Register for this webinar to learn the key questions you must address to strengthen your defenses against advanced attacks.

3 Top Storage Trends for 2015 Revealed
Date: Mar 09, 2014
View webinar
Register for this webinar to learn how forward thinking IT organizations can embrace these trends and deliver even better storage, data protection and disaster recovery services to their users.

How Evolved ?419 Scammers? Are Targeting the Enterprise
Date: Aug 28, 2014
View webinar
Attend the webinar to find out what you need to know to protect against a series of attacks to businesses emanating from Nigeria.

5 Steps to Make IT a Blue-Chip Brand
Date: Aug 28, 2014
View webinar
In this InformationWeek Webinar, we?ll give you a five step plan to polish any IT department?s image.

Why Do You Need OpenStack?
Date: Aug 28, 2014
View webinar
Register for this webinar to get an outline of how OpenStack is supporting Storage-as-a-Service, new cloud-aware applications, software-defined networking as well as additional advanced cloud environments.

Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6335
Published: 2014-08-26
The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5.x and 6.x before 6.1.5.6 on Solaris and HP-UX, does not preserve file permissions across backup and ...

CVE-2014-0480
Published: 2014-08-26
The core.urlresolvers.reverse function in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x before 1.6.6, and 1.7 before release candidate 3 does not properly validate URLs, which allows remote attackers to conduct phishing attacks via a // (slash slash) in a URL, which triggers a scheme-relative URL ...

CVE-2014-0481
Published: 2014-08-26
The default configuration for the file upload handling system in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x before 1.6.6, and 1.7 before release candidate 3 uses a sequential file name generation process when a file with a conflicting name is uploaded, which allows remote attackers to cause a d...

CVE-2014-0482
Published: 2014-08-26
The contrib.auth.middleware.RemoteUserMiddleware middleware in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x before 1.6.6, and 1.7 before release candidate 3, when using the contrib.auth.backends.RemoteUserBackend backend, allows remote authenticated users to hijack web sessions via vectors relate...

CVE-2014-0483
Published: 2014-08-26
The administrative interface (contrib.admin) in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x before 1.6.6, and 1.7 before release candidate 3 does not check if a field represents a relationship between models, which allows remote authenticated users to obtain sensitive information via a to_field ...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Three interviews on critical embedded systems and security, recorded at Black Hat 2014 in Las Vegas.