News & Commentary

Content posted in February 2007
Page 1 / 4   >   >>
Like a Sieve
News  |  2/28/2007  | 
Ways to circumvent content filters, and why you should still retain them
Innovation's Dead
News  |  2/28/2007  | 
Vendors excel at fear-mongering, but fall well short where technical creativity or capabilities are concerned
Heads in the Sand
News  |  2/28/2007  | 
Everyone loses when threats of legal action get made to forestall vulnerability disclosure
HID, IOActive Butt Heads Again
News  |  2/28/2007  | 
Rights and responsibilities of how, when to disclose vulnerabilities get revisited at Black Hat
Government Targets Insider Threat
News  |  2/28/2007  | 
Defense, Justice, and HUD developing new strategies for stopping internal security leaks
Apple Flap Redux
News  |  2/28/2007  | 
David Maynor goes public at Black Hat DC on his side of the Apple wireless exploit story
A Hacker by Any Other Name
News  |  2/27/2007  | 
Black hat? Gray hat? Carder? Cracker? Putting a name on today's hacker is no simple task
ISCorp Selects Decru
News  |  2/27/2007  | 
ISCorp has selected Decru storage security solutions to expand their service offerings and protect sensitive and regulated client data
Encentuate Intros Solution
News  |  2/27/2007  | 
Encentuate announced the Encentuate and Aventail Solution for Secure Remote Access
Children's Hospital Selects Encentuate
News  |  2/27/2007  | 
Children's Hospital Boston has deployed Encentuate TCI for Healthcare to provide single sign-on to its caregivers and staff
Security's Symbiosis
News  |  2/27/2007  | 
Let's face a simple truth: Hackers (white and black hat alike) and vendors need each other
VZW Wins Against SMS Spammers
News  |  2/27/2007  | 
Firm ordered to pay $200,000 damages for sending SMS spam to mobiles, Sophos comments
Wireless Propels Euro Market
News  |  2/27/2007  | 
Frost & Sullivan: Wireless propels European residential security market
Black Hat Cancels RFID Demo
News  |  2/27/2007  | 
Badge, smartcard patent holder threatens lawsuit over cloning presentation
Rohm & Haas Selects IBM
News  |  2/27/2007  | 
Rohm and Haas selects IBM Tivoli software to alleviate password management burden
How to Cheat Hardware Memory Access
News  |  2/27/2007  | 
Researcher Joanna Rutkowska will demonstrate how to derail forensics' search for malware in the OS
Vigilante Hacker -- Hero Or Menace? Your Call…
Commentary  |  2/26/2007  | 
The jury's out on a controversial hack job. Oh, one man is already going to jail in this tale. The question is whether the hacker who helped put the bad guy away was the hero of the story or just another bad guy. What's your take on this one?
CipherMax Introduces CM100
News  |  2/26/2007  | 
CipherMax introduced the CM100 family of storage encryption products for tape media and disk-based storage networks
Norton Goes Online
News  |  2/26/2007  | 
Symantec rolls out new combination security and online backup service for consumers
PatchLink Acquires Harris's Suite
News  |  2/26/2007  | 
PatchLink announced the acquisition of STAT Guardian Vulnerability Management Suite from Harris Corporation
ISCorp Augments Security
News  |  2/26/2007  | 
Backup services specialist ISCorp eyes new customers after deploying Decru
Five Myths About Black Hats
News  |  2/26/2007  | 
In our breakout survey of those who break in, black hats attempt to rewrite conventional wisdom about their motives, methods
More of a Gray Area
News  |  2/26/2007  | 
Blacklisting's about to become passe as major AV companies look to whitelisting's potential
A Virtual Post-It, Perhaps
News  |  2/26/2007  | 
Keeping all those passwords straight - not to mention secure - can suck up a lot of brain power
Here Comes the (Web) Fuzz
News  |  2/26/2007  | 
Black Hat researcher says fuzzing Web applications is the next big thing, will release free tool
Symantec Intros Norton 360
News  |  2/26/2007  | 
Symantec announced the availability of the newest product to join its award winning line of Norton products - Norton 360
CipherMax Secures $10M
News  |  2/25/2007  | 
CipherMax announced that the company has received $10 million in new financing
nCipher Makes Announcement
News  |  2/25/2007  | 
nCipher announces its keyAuthority enterprise key management suite now supports IBM System i platforms
Third Brigade Presents at HIMSS
News  |  2/25/2007  | 
Third Brigade demonstrates latest host intrusion prevention system for EHR applications at HIMSS '07
Chico's Chooses Liquid Machines
News  |  2/25/2007  | 
Leading specialty clothing retailer Chico's chooses Liquid Machines to protect its intellectual property and confidential information
ALU to OEM LANShield
News  |  2/25/2007  | 
ConSentry announced an OEM agreement with Alcatel-Lucent for its LANShield Switch and LANShield Controller platforms
Redemtech Establishes Practice
News  |  2/23/2007  | 
Redemtech announced it is establishing a Security and Asset Protection Practice to strengthen its industry-leading security offering
RSS Syndicates Malware, Too
News  |  2/23/2007  | 
RSS becoming another delivery mechanism for XSS and other Web-related exploits
Black Hats Focus on Apps
News  |  2/23/2007  | 
DC convention shows security researchers are shifting away from network infrastructure - and toward applications
Making Up For A Data Breach
Commentary  |  2/22/2007  | 
Do companies really care about the security of their customers' data? Quite frankly, not as much as they should, based on what's in the news.
Pharmed Out Passwords
News  |  2/22/2007  | 
A simple change to wireless password defaults could make a world of difference, and possibly render this issue moot
Smart & Safe
News  |  2/22/2007  | 
Smartphones are a favorite new hacker target, and there's plenty you can do to lock 'em down
Top 10 Admin Passwords to Avoid
News  |  2/22/2007  | 
Don't want hackers to guess the password for that critical server or application? Stay away from these
Bluefire Intros Mobile Security
News  |  2/22/2007  | 
Bluefire announced the availability of the Bluefire Mobile Security Professional Edition version 4.0 on Bluefire's Website
JohnsonDiversey Chooses Novell
News  |  2/22/2007  | 
JohnsonDiversey cleans up on savings with Novell Identity and Systems Management
Entensys Unveils UserGate 4.1
News  |  2/22/2007  | 
Entensys releases a new version of UserGate, a popular Internet security server
Vulnerability Found in Google Desktop
News  |  2/21/2007  | 
Watchfire announced its security researchers have discovered a vulnerability in Google Desktop
When to Disclose a Data Breach
News  |  2/21/2007  | 
You've discovered a possible security leak. How quickly should you inform customers and employees?
Black Hat: Botnets Go One-on-One
News  |  2/21/2007  | 
Botnets are changing channels and fighting back at researchers
Cisco's Web Security Play
News  |  2/21/2007  | 
Acquisition of Reactivity could pave way to network-based solutions for Web 2.0, SOA
VMs Create Potential Risks
News  |  2/21/2007  | 
Convenient and efficient, virtual machines can also increase your security exposure
Spam Volumes Grow
News  |  2/21/2007  | 
Spam volumes hit record high
Careless Whispers
News  |  2/21/2007  | 
The problem with unsecured wireless is you never know who's listening, or what they'll do with what they hear
AirDefense Adds Platform
News  |  2/21/2007  | 
AirDefense reaffirmed its leadership position in the wireless LAN prevention industry with the launch of AirDefense Enterprise 7.2
Survey: Data Less Secure
News  |  2/21/2007  | 
nCircle survey highlights insider view of increasing risk to personal and corporate information online
Page 1 / 4   >   >>


New Mexico Man Sentenced on DDoS, Gun Charges
Dark Reading Staff 5/18/2018
Is Threat Intelligence Garbage?
Chris McDaniels, Chief Information Security Officer of Mosaic451,  5/23/2018
Cracking 2FA: How It's Done and How to Stay Safe
Kelly Sheridan, Staff Editor, Dark Reading,  5/17/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Shhh!  They're watching... And you have a laptop?  
Current Issue
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-11415
PUBLISHED: 2018-05-24
SAP Internet Transaction Server (ITS) 6200.X.X has Reflected Cross Site Scripting (XSS) via certain wgate URIs. NOTE: the vendor has reportedly indicated that there will not be any further releases of this product.
CVE-2018-11412
PUBLISHED: 2018-05-24
In the Linux kernel 4.13 through 4.16.11, ext4_read_inline_data() in fs/ext4/inline.c performs a memcpy with an untrusted length value in certain circumstances involving a crafted filesystem that stores the system.data extended attribute value in a dedicated inode.
CVE-2018-11413
PUBLISHED: 2018-05-24
An issue was discovered in BearAdmin 0.5. Remote attackers can download arbitrary files via /admin/databack/download.html?name= directory traversal sequences, as demonstrated by name=../application/database.php to read the MySQL credentials in the configuration.
CVE-2018-11414
PUBLISHED: 2018-05-24
An issue was discovered in BearAdmin 0.5. There is admin/admin_log/index.html?user_id= SQL injection because admin\controller\AdminLog.php constructs a MySQL query improperly.
CVE-2018-10593
PUBLISHED: 2018-05-24
A vulnerability in DB Manager version 3.0.1.0 and previous and PerformA version 3.0.0.0 and previous allows an authorized user with access to a privileged account on a BD Kiestra system (Kiestra TLA, Kiestra WCA, and InoqulA+ specimen processor) to issue SQL commands, which may result in data corrup...