Advertise

News & Commentary

Content tagged with Privacy posted in April 2015

View Content By Month

Health Insurers’ Digital Footprint Widening Attack Surface

Commentary | 4/21/2015 |

1 comment

Insurers are ripe targets for attackers since they’re efficient concentrators of every kind of data needed for identity theft, credit card and insurance fraud. Here’s proof.

How Ionic Says It Makes Data Breaches Irrelevant

News | 4/15/2015 |

2 comments

Ionic Security goes public with a data security platform that manages trillions of encryption keys and enables a user to sign each pixel with its own unique key.

3 Of 4 Global 2000 Companies Still Vulnerable To Heartbleed

News | 4/7/2015 |

1 comment

Largest companies on Earth might have patched, but haven't done their due diligence with revoking and issuing new certificates, says Venafi.

View Content by Month

[close this box]

Hot Topics

Editors' Choice

Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms

Kelly Jackson Higgins, Executive Editor at Dark Reading, 8/14/2018

Intel Reveals New Spectre-Like Vulnerability

Curtis Franklin Jr., Senior Editor at Dark Reading, 8/15/2018

Australian Teen Hacked Apple Network

Dark Reading Staff 8/17/2018

Live Events

Webinars

More UBM Tech
Live Events

INsecurity Conference - An Event Like No Other

Black Hat Trainings - October 22 & 23

Are You Looking to Learn About New Cybersecurity Threats & Challenges? Then INsecurity Is For You!

White Papers

Vulnerability Disclosure Policy (VDP) Basics

Coping with the Cybersecurity Skills Gap

Combat the Top 5 Cyberattacks with Managed Detection and Response

Essential Guide - Blocking Malware Without a SOC

The Fileless Attack Checklist

More White Papers

Video

All Videos

Cartoon

Post a Comment

Cartoon Archive

Current Issue

The Biggest Cybersecurity Breaches of 2018 (So Far)

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

The State of IT and Cybersecurity

IT and security are often viewed as different disciplines - and different departments. Find out what our survey data revealed, read the report today!

Download Now!

[Strategic Security Report] Navigating the Threat Intelligence Maze

0 comments

[Strategic Security Report] Cloud Security's Changing Landscape

0 comments

The State of Ransomware

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-15572
PUBLISHED: 2018-08-20

The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks.

CVE-2018-15573
PUBLISHED: 2018-08-20

** DISPUTED ** An issue was discovered in Reprise License Manager (RLM) through 12.2BL2. Attackers can use the web interface to read and write data to any file on disk (as long as rlm.exe has access to it) via /goform/edit_lf_process with file content in the lfdata parameter and a pathname in the lf...

CVE-2018-15574
PUBLISHED: 2018-08-20

** DISPUTED ** An issue was discovered in the license editor in Reprise License Manager (RLM) through 12.2BL2. It is a cross-site scripting vulnerability in the /goform/edit_lf_get_data lf parameter via GET or POST. NOTE: the vendor has stated "We do not consider this a vulnerability."

CVE-2018-15570
PUBLISHED: 2018-08-20

In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter.

CVE-2018-15564
PUBLISHED: 2018-08-20

An issue was discovered in daveismyname simple-cms through 2014-03-11. There is a CSRF vulnerability that can delete any page via admin/?delpage=8.

Terms of Service
Privacy Statement
Legal Entities