Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content posted in September 2007
<<   <   Page 2 / 5   >   >>
Good News: Attacks Are Down; Bad News: Attacks Are Worse
Commentary  |  9/24/2007  | 
Fewer but fiercer attacks -- that's the word from a new study of business IT security trends over the past year. Today's breaches are reportedly twice as severe as those of just a couple of years ago.
TJX Proposes to Settle Customer Lawsuit for $6.5M
News  |  9/24/2007  | 
Customers promised a $30 voucher and a three-day discount sale
German Researchers to Test New Anti-Hacker Law
News  |  9/24/2007  | 
N.runs says it will risk arrest and prosecution by putting its hacking tool back online tomorrow
StillSecure Introduces Free NAC
News  |  9/24/2007  | 
StillSecure introduces free network access control solution based on StillSecure Safe Access
Encentuate Adds 'QuickStart' Authentication
News  |  9/24/2007  | 
Encentuate announces 'QuickStart' program at Digital ID World 2007
Shavlik Launches Free Google Gadget
News  |  9/24/2007  | 
Individual users can download free Google gadget for on demand patch assessment and remediation from Shavlik
Credit Unions Choose Imprivata's Appliance
News  |  9/24/2007  | 
Imprivata's Onesign solution solves password management, access, and compliance issues at credit unions nationwide
Breach Security Adds App Defect Detection
News  |  9/24/2007  | 
New version of Breach Security's WebDefend Web application firewall adds passive vulnerability detection
Secure Computing Intros New WebWasher
News  |  9/24/2007  | 
Secure Computing releases next generation Web gateway security solution
Lessons From a Security Breach
News  |  9/24/2007  | 
A hack at Vertical Web Media helps show what to do in the event of a breach - and what not to do
HID to Distribute Privaris Tokens
News  |  9/24/2007  | 
HID Global to distribute Privaris' plusID line of wireless identity verification products
Banks Adopt Entitlement Management
News  |  9/24/2007  | 
Securent milestones signal increasing demand as leading enterprises adopt Entitlement Management
ArcSight Debuts PCI Protection
News  |  9/24/2007  | 
ArcSight debuts industry-leading, comprehensive, scalable, and cost-effective PCI protection solution
P2P Leads to Major Leak at Citigroup Unit
Quick Hits  |  9/24/2007  | 
ABN Amro employee exposes personal data on 5,000 mortgagees by installing BearShare
Tizor Launches PartnerTrust Program
News  |  9/24/2007  | 
Tizor announces PartnerTrust program for resellers, ISVs, consultants, and systems integrators
Fortinet Provides UTM to Cook County
News  |  9/24/2007  | 
Fortinet provides advanced network security to second largest county in US
ClairMail, VeriSign Team Up
News  |  9/24/2007  | 
Verisign mobile banking solution to include two-way customer interaction platform fro Clairmail
AirMagnet Rolls Out Next-Gen Wireless IPS
News  |  9/24/2007  | 
AirMagnet Enterprise 8.0 revolutionizes wireless IDS intelligence
FireEye Fans Anti-Botnet Flame
News  |  9/24/2007  | 
FireEye today is rolling out the latest in a series of anti-botnet offerings from security vendors
Secure Computer Recycling II
Commentary  |  9/21/2007  | 
The first step (admittedly paranoid but also, I think, practical) in recycling computers is to physically remove any storage devices. The second is to smash those devices to smithereens. The third step is to find the right place to drop off the now storage-less (and business data-less) remains of the computer.
Security's School of Hard Knocks
News  |  9/21/2007  | 
Security pros share five of the toughest lessons they've ever learned, and they've got the scars to prove them
Researcher Raises Alarm Over PDFs
News  |  9/21/2007  | 
Adobe files could soon become attackers' favorite medium for malware delivery, experts say
Running the IR Gauntlet
News  |  9/21/2007  | 
There are lots of tools available for incident response, but they have flaws too
Signal Turns to Data Leak Protection
News  |  9/21/2007  | 
Signal Financial Credit Union's DLP architecture protects sensitive data - sometimes a little too well
TD Ameritrade Gambles and Loses
News  |  9/21/2007  | 
Brokerage company had all the warning signs of a breach last year, but held off disclosure in hopes of fixing the problem
Hackers Get the Lingo
Quick Hits  |  9/21/2007  | 
Lingo, a New Zealand VOIP service provider, accidentally sends out the email addresses of more than 14,000 customers
What ISPs Are Scared Of
Commentary  |  9/20/2007  | 
A new study of Internet service providers (ISP) and their top security concerns lets us know what they're most scared of: armies of zombie computers mounting huge distributed denial of service (DDoS) attacks.
Five Signs That You're Under a Targeted Attack
News  |  9/20/2007  | 
Clues that your organization is in the bull's eye might be right under your nose
Security Problems Linger at VA
News  |  9/20/2007  | 
Despite highly publicized breach, Veterans Affairs' IT efforts still coming up short, according to GAO report
Secure Elements, SignaCert Partner
News  |  9/20/2007  | 
Combined offering validates SCAP configurations and related binaries to fulfill Federal Desktop Core Configuration compliance
New App Delivers Dynamic Security Content
News  |  9/20/2007  | 
Secure Elements announces C5 content platform
Cyber Law Cuts Two Ways
News  |  9/20/2007  | 
Regional laws - such as Minnesota's credit card data legislation - create both benefits and hardships
Radware Adds Protection Against Trojan
News  |  9/20/2007  | 
Radware issues immediate protection against the 'Gangsta.exe' trojan horse
Secure Elements, Grant Thornton LLP Team
News  |  9/20/2007  | 
Secure Elements announces joint marketing agreement with Grant Thornton LLP Global Public Sector
Homeland Security's 'Virtual Fence' Has Holes
Quick Hits  |  9/20/2007  | 
Pilot program for US's new border-crossing system of cameras, sensors, and radar hits early snags
Former Bank of America CISO Joins PGP Board
News  |  9/20/2007  | 
Rhonda MacLean joins PGP Corporation's board of directors
Gemalto Minidriver Now Microsoft-Certified
News  |  9/20/2007  | 
SafesITe Classic Trusted PKI card minidriver provides deployment and management to protect digital identities and secure data
Third Brigade Offers Program for Healthcare
News  |  9/20/2007  | 
Third Brigade launches quick start program to help Healthcare Organizations shield vulnerabilities in EHR systems
Cybercrooks Outpacing Cybercops: McAfee
Commentary  |  9/19/2007  | 
It's that time of year when the major security vendors release updates, upgrades... and public statements. McAfee's CEO this week pointed out that cybercrime is now bigger than the illegal drug trade -- and continues to grow.
Reports: Threats More Sophisticated, More Costly Than Ever
News  |  9/19/2007  | 
Cybercrime has become a cottage industry, and companies are feeling it in their bank accounts, researchers say
Radware Offers Defense Against Gangsta
News  |  9/19/2007  | 
Radware issues immediate protection against the 'Gangsta.exe' trojan horse
VeriSign: Many Short of PCI Standards
News  |  9/19/2007  | 
VeriSign finds 53% of companies assessed fall short of mandatory security standards
ISPs Try on Anti-Botnet Services Model
News  |  9/19/2007  | 
Anti-botnet security services are on the rise, but ISPs still aren't coming over to clean up your machine
The Six Stages of Incident Response
News  |  9/19/2007  | 
Following these simple steps can help your organization handle a serious data breach
Verio to Deliver GlobalSign SSL Certs
News  |  9/19/2007  | 
Verio and GlobalSign announce strategic partnership
Mu Security Discovers DHCP Zero-Day
News  |  9/19/2007  | 
Mu Security discovers Dibbler DHCPv6 zero-day denial of service vulnerability
Yoggie Adds New Features
News  |  9/19/2007  | 
Yoggie Security Systems enhances its range of Yoggie security computers through firmware update
Hosting Vendor Suffers Major Security Breach
Quick Hits  |  9/19/2007  | 
Even the companies contracted to protect your data are losing it
Astaro Unveils PCI Reporting for UTM
News  |  9/19/2007  | 
Astaro announces new automated PCI compliance reporting for Astaro Unified Threat Management systems
Sophos Warns Users to Patch Bug
News  |  9/19/2007  | 
Network Access Control helps companies gain visibility and control over unpatched PCs
<<   <   Page 2 / 5   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Enterprises are Attacking the Cybersecurity Problem
Concerns over supply chain vulnerabilities and attack visibility drove some significant changes in enterprise cybersecurity strategies over the past year. Dark Reading's 2021 Strategic Security Survey showed that many organizations are staying the course regarding the use of a mix of attack prevention and threat detection technologies and practices for dealing with cyber threats.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-16060
PUBLISHED: 2021-10-15
Mitsubishi Electric SmartRTU devices allow remote attackers to obtain sensitive information (directory listing and source code) via a direct request to the /web URI.
CVE-2018-16061
PUBLISHED: 2021-10-15
Mitsubishi Electric SmartRTU devices allow XSS via the username parameter or PATH_INFO to login.php.
CVE-2021-27561
PUBLISHED: 2021-10-15
Yealink Device Management (DM) 3.6.0.20 allows command injection as root via the /sm/api/v1/firewall/zone/services URI, without authentication.
CVE-2020-4951
PUBLISHED: 2021-10-15
IBM Cognos Analytics 11.1.7 and 11.2.0 contains locally cached browser data, that could allow a local attacker to obtain sensitive information.
CVE-2021-28021
PUBLISHED: 2021-10-15
Buffer overflow vulnerability in function stbi__extend_receive in stb_image.h in stb 2.26 via a crafted JPEG file.