Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Database Security
Authentication
Mobile
Privacy
Compliance
Careers and People
Identity & Access Management
Security Monitoring
Advanced Threats
Insider Threats
Vulnerability Management
10 Free Security Tools at Black Hat Asia 2021
In Appreciation: Dan Kaminsky
Window Snyder Launches Startup to Fill IoT Security Gaps
Looking for Greater Security Culture? Ask an 8-Bit Plumber
News & Commentary
FluBot Malware's Rapid Spread May Soon Hit US Phones
Kelly Sheridan, Staff Editor, Dark ReadingNews
The FluBot Android malware has spread throughout several European countries through an SMS package delivery scam.
By Kelly Sheridan Staff Editor, Dark Reading, 4/28/2021
Comment0 comments  |  Read  |  Post a Comment
74% of Financial Institutions See Spike in COVID-Related Threats
Dark Reading Staff, Quick Hits
Financial losses have also increased among organizations in the last year, with the average cost reaching $720,000.
By Dark Reading Staff , 4/28/2021
Comment0 comments  |  Read  |  Post a Comment
FBI Works With 'Have I Been Pwned' to Notify Emotet Victims
Dark Reading Staff, Quick Hits
Officials shared 4.3 million email addresses with the HIBP website to help inform companies and individuals if Emotet compromised their accounts.
By Dark Reading Staff , 4/28/2021
Comment0 comments  |  Read  |  Post a Comment
How to Secure Employees' Home Wi-Fi Networks
Bert Kashyap, CEO and Co-Founder at SecureW2Commentary
Businesses must ensure their remote workers' Wi-Fi networks don't risk exposing business data or secrets due to fixable vulnerabilities.
By Bert Kashyap CEO and Co-Founder at SecureW2, 4/28/2021
Comment4 comments  |  Read  |  Post a Comment
Cartoon Caption Winner: Rough Patch?
John Klossner, Cartoonist
And the winner of The Edge's April cartoon caption contest is ...
By John Klossner Cartoonist, 4/28/2021
Comment0 comments  |  Read  |  Post a Comment
Is Your Cloud Raining Sensitive Data?
Or Azarzar, CTO & Co-Founder of LightspinCommentary
Learn common Kubernetes vulnerabilities and ways to avoid them.
By Or Azarzar CTO & Co-Founder of Lightspin, 4/28/2021
Comment0 comments  |  Read  |  Post a Comment
Attacks Targeting ADFS Token Signing Certificates Could Become Next Big Threat
Jai Vijayan, Contributing WriterNews
New research shows how threat actors can steal and decrypt signing certificates so SAML tokens can be forged.
By Jai Vijayan Contributing Writer, 4/28/2021
Comment0 comments  |  Read  |  Post a Comment
Do Cyberattacks Affect Stock Prices? It Depends on the Breach
Kelly Sheridan, Staff Editor, Dark ReadingNews
A security researcher explores how data breaches, ransomware attacks, and other types of cybercrime influence stock prices.
By Kelly Sheridan Staff Editor, Dark Reading, 4/27/2021
Comment0 comments  |  Read  |  Post a Comment
Emotet Malware Uninstalled From Infected Devices
Dark Reading Staff, Quick Hits
A law enforcement update deployed to compromised machines in January has been pushed, effectively removing the malware.
By Dark Reading Staff , 4/27/2021
Comment0 comments  |  Read  |  Post a Comment
10K Hackers Defend the Planet Against Extraterrestrials
Sara Peters, Senior Editor at Dark Reading
Hack the Planet's Cyber Apocalypse capture-the-flag contest attracts 10,000 competitors from across the globe.
By Sara Peters Senior Editor at Dark Reading, 4/27/2021
Comment0 comments  |  Read  |  Post a Comment
Ransomware Recovery Costs Near $2M
Dark Reading Staff, Quick Hits
The cost of recovering from a ransomware attack has more than doubled in one year, Sophos researchers report.
By Dark Reading Staff , 4/27/2021
Comment0 comments  |  Read  |  Post a Comment
4 Ways CISOs Can Strengthen Their Security Resilience
Tom Kellermann, Head of Cybersecurity Strategy, VMwareCommentary
Security pros must remember bad actors will target their infrastructure, using counter-incident response technology in the process.
By Tom Kellermann Head of Cybersecurity Strategy, VMware, 4/27/2021
Comment0 comments  |  Read  |  Post a Comment
Expect an Increase in Attacks on AI Systems
Robert Lemos, Contributing WriterNews
Companies are quickly adopting machine learning but not focusing on how to verify systems and produce trustworthy results, new report shows.
By Robert Lemos Contributing Writer, 4/27/2021
Comment0 comments  |  Read  |  Post a Comment
XDR: A Game-Changer in Enterprise Threat Detection
Eric Parizo, Senior Analyst, OmdiaCommentaryVideo
Omdia's Eric Parizo highlights four capabilities that show how XDR technology is reinventing enterprise threat detection.
By Eric Parizo Senior Analyst, Omdia, 4/27/2021
Comment0 comments  |  Read  |  Post a Comment
Challenging Our Education System to Nurture the Cyber Pipeline
Stephanie Aceves, Senior Director, Threat Response SME Lead, at TaniumCommentary
Let's teach students how to teach themselves. Once we do that, we will have taught a generation of students how to think like hackers.
By Stephanie Aceves Senior Director, Threat Response SME Lead, at Tanium, 4/27/2021
Comment0 comments  |  Read  |  Post a Comment
US Urges Organizations to Implement MFA, Other Controls to Defend Against Russian Attacks
Jai Vijayan, Contributing WriterNews
Actors working for Moscow's Foreign Intelligence Service are actively targeting organizations in government and other sectors, FBI and DHS say.
By Jai Vijayan Contributing Writer, 4/26/2021
Comment0 comments  |  Read  |  Post a Comment
Apple Patches Serious MacOS Security Flaw
Dark Reading Staff, Quick Hits
The bug can put Mac users at "grave risk" as it allows attackers to bypass Apple's security mechanisms, a researcher reports.
By Dark Reading Staff , 4/26/2021
Comment0 comments  |  Read  |  Post a Comment
In Appreciation: Dan Kaminsky
Kelly Jackson Higgins, Executive Editor at Dark ReadingNews
Beloved security industry leader and researcher passes away unexpectedly at the age of 42.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 4/26/2021
Comment0 comments  |  Read  |  Post a Comment
Proofpoint to Be Acquired by Thoma Bravo for $12.3B
Dark Reading Staff, Quick Hits
The cybersecurity company will go private following the all-cash transaction.
By Dark Reading Staff , 4/26/2021
Comment0 comments  |  Read  |  Post a Comment
Cybersecurity and the Way to a Balanced Life
Charles Kinsey, Cybersecurity Engineer
With work more demanding than ever, how can cybersecurity pros safeguard their organizations and their own mental well-being at the same time?
By Charles Kinsey Cybersecurity Engineer, 4/26/2021
Comment0 comments  |  Read  |  Post a Comment
More Stories
Current Conversations
Posted by spirited0expire0mothball
Current Conversations E.T. ping 127.0.0.1
In reply to: E.T. ping 127.0.0.1
Post Your Own Reply
More Conversations
Products & Releases
Mandiant Selects PlexTrac for its Proactive Assessment Reporting Platform
New Cybrary Feature Helps Leaders Translate Cybersecurity Skill Development into Meaningful Outcomes
Kaspersky: Targeted Ransomware Grows Nearly 800%
Deep Instinct Receives $100 Million in Series D Funding
TeamViewer Survey: Businesses Prepare for Post-Pandemic 'Hybrid' Workforce with New Policies, Tech Infrastructure
Trend Micro Revamps Partner Program
Mimecast Report: 61% of Organizations Were Infected with Ransomware in 2020
Netacea Releases "Buying Bad Bots Wholesale: The Genesis Market" Report
More Products & Releases
PR Newswire
Dark Reading Is Getting an Upgrade!

Find out more about our plans to improve the look, functionality, and performance of the Dark Reading site in the coming months.

Cartoon Caption Winner: Rough Patch?
And the winner of The Edge's April cartoon caption contest is ...
10K Hackers Defend the Planet Against Extraterrestrials
Hack the Planet's Cyber Apocalypse capture-the-flag contest attracts 10,000 competitors from across the globe.
Cybersecurity and the Way to a Balanced Life
With work more demanding than ever, how can cybersecurity pros safeguard their organizations and their own mental well-being at the same time?
Register for Dark Reading Newsletters
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: E.T. ping 127.0.0.1
White Papers
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-7037
PUBLISHED: 2021-04-28
An XML External Entities (XXE) vulnerability in Media Server component of Avaya Equinox Conferencing could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system or even potentially lead to a denial of service. The affected versions of Avaya E...
CVE-2020-7038
PUBLISHED: 2021-04-28
A vulnerability was discovered in Management component of Avaya Equinox Conferencing that could potentially allow an unauthenticated, remote attacker to gain access to screen sharing and whiteboard sessions. The affected versions of Management component of Avaya Equinox Conferencing include all 3.x ...
CVE-2021-2321
PUBLISHED: 2021-04-28
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...
CVE-2021-29483
PUBLISHED: 2021-04-28
ManageWiki is an extension to the MediaWiki project. The 'wikiconfig' API leaked the value of private configuration variables set through the ManageWiki variable to all users. This has been patched by https://github.com/miraheze/ManageWiki/compare/99f3b2c8af18...befb83c66f5b.patch. If you are unable...
CVE-2020-22781
PUBLISHED: 2021-04-28
In Etherpad < 1.8.3, a specially crafted URI would raise an unhandled exception in the cache mechanism and cause a denial of service (crash the instance).
Flash Poll
Video
Slideshows
Twitter Feed