Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content posted in December 2009
<<   <   Page 4 / 4
Product Watch: Snort Maker Rolls Out IPSes For Virtual Environments
News  |  12/2/2009  | 
Sourcefire adds VMware-based virtual appliances, new version of 3D System IPS platform
New Report Helps Enterprises Choose Their Own DAM Products
News  |  12/2/2009  | 
Study of database activity monitoring offers insights on how DAM products work -- and how to choose between them
Firefox On Fire
Commentary  |  12/2/2009  | 
Firefox is hot. The latest numbers show it now owns one-fourth of the browser market right now. But fame, of course, comes with a price: A recent, separate report shows that Firefox accounted for nearly 45 percent of all Web vulnerabilities in the first half of this year.
Security Pro Market Heating Up
Commentary  |  12/2/2009  | 
The good news for IT security professionals is that demand for their skills is likely to increase in the next few months, according to Robert Half Technology. The challenging news for small and midsized businesses looking for security pros is that rising demand for their skills is going to make finding and hiring them harder.
What IBM's Acquisition Of Guardium Really Means
Commentary  |  12/2/2009  | 
IBM's acquisition of database activity monitoring (DAM) vendor Guardium has created a lot of buzz in the security industry. This is the first major acquisition in the database security market, the first time a large company has bet on DAM technology, and if the rumored sales price is accurate, then it suggests IBM paid a premium. And given the value this product can provide to IBM customers, it looks like a good investment.
Global CIO: Will SAP Move To Tiered Maintenance Fees?
Commentary  |  12/1/2009  | 
SAP's intentions are always difficult to discern, but it might be on the verge of revising the support/maintenance fees its customers love to hate.
Metasploit Gets New Vulnerabilty Scanning Features
News  |  12/1/2009  | 
Rapid7 takes first step in integrating penetration testing tool with its NeXpose vulnerability scanner, rolls out new free version of NeXpose
Microsoft Says Patch Isn't Cause Of Black Screen
News  |  12/1/2009  | 
Black screen issues are not widespread and may be caused by malware, Microsoft insists.
Security Pros In Demand: Report
News  |  12/1/2009  | 
Security is among a broad mix of jobs expected to receive hiring attention from CIOs, according to the latest IT Hiring Index and Skills Report
Hacker Arrested For Stealing Virtual Assets In Online Game
News  |  12/1/2009  | 
Man allegedly broke into almost 300 RuneScape accounts, police say
US-CERT Warns Of VPN Attack That Bypasses Browser Security
Quick Hits  |  12/1/2009  | 
SSL VPN products from Cisco, Juniper Networks, SafeNet, and SonicWALL all vulnerable to attack that has "no solution"
Vulnerability Management: The Missing Link In Mobile Device Security
News  |  12/1/2009  | 
Enterprises, vendors struggle to find methods for detecting security flaws in increasingly popular portable gadgets
New Ransomware Attack Underway
Commentary  |  12/1/2009  | 
Security researchers at CA have found a new so-called "ransomware" attack underway. There are many things you can say about malware writers. Most of it would be NSFW. But you can't say they don't work hard at what they do.
The Secret Sauce For Security Blogging
Commentary  |  12/1/2009  | 
I recently wrote in my personal blog about how some security blogs manage to engage their audience better than others and make their readers feel more in touch with what's happening -- on top of earning credibility.
<<   <   Page 4 / 4


News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-30481
PUBLISHED: 2021-04-10
Valve Steam through 2021-04-10, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after one click.
CVE-2021-20020
PUBLISHED: 2021-04-10
A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated attacker to locally escalate privilege to root.
CVE-2021-30480
PUBLISHED: 2021-04-09
Zoom Chat through 2021-04-09 on Windows and macOS allows certain remote authenticated attackers to execute arbitrary code without user interaction. An attacker must be within the same organization, or an external party who has been accepted as a contact. NOTE: this is specific to the Zoom Chat softw...
CVE-2021-21194
PUBLISHED: 2021-04-09
Use after free in screen sharing in Google Chrome prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21195
PUBLISHED: 2021-04-09
Use after free in V8 in Google Chrome prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.