Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Perimeter posted in April 2007
Websense to Buy SurfControl
News  |  4/27/2007  | 
$400 million deal will merge two top end-user monitoring tools
Telcos at Risk of Web Bugs
News  |  4/27/2007  | 
Service providers face security learning curve as they roll out next-generation Web services
Vendors Crank Up Email Security
News  |  4/24/2007  | 
Security specialists take aim at the chink in users' mail security armor
Sweetening the Honeypot
News  |  4/23/2007  | 
Experts disagree whether free tools will make honeynets more practical for enterprise IT deployment
Ranking Bugs, Saving Pigs
News  |  4/19/2007  | 
The man behind the SANS Top 20, Rohit Dhamankar, calls out bugs - and animal rights
Security, Post-Va. Tech
News  |  4/19/2007  | 
It's time to address two common mistakes made in responding to these kinds of disasters
Targeted Attacks on the Rise
News  |  4/18/2007  | 
Most attacks target a single user, report says
Botnets Battle Over Turf
News  |  4/18/2007  | 
Some botnets even patch their infected machines to prevent other botnets from hijacking them
Electoral Subtext
News  |  4/16/2007  | 
Whether you're monitoring the voting process or the status of your most valued server, you better have a Plan B
10 Hot Security Startups
News  |  4/12/2007  | 
Want to know who's on the cutting edge of security technology? Take a look at these 10 newcomers
Feds Under Fire Over Security
News  |  4/12/2007  | 
Agencies get C- on security report card; FTC criticized for low number of spam, spyware convictions
Retailers, FBI Launch Crime Database
News  |  4/10/2007  | 
National repository will let stores, law enforcement agencies share information about retail crimes
Critical WiFi Bug Found on Linux
News  |  4/10/2007  | 
France Telecom researcher demo'd device driver bug in MadWiFi Linux kernel
PCI Won't Save You
News  |  4/9/2007  | 
You need more than standards and legal requirements to detect and prevent data leakage
Researchers Put Nail in WEP's Coffin
News  |  4/9/2007  | 
Already-weak encryption protocol now can be cracked in three seconds
RFID Under Attack Again
News  |  4/9/2007  | 
RFID hacking isn't rocket science, but the risk depends on proper use, deployment
Hacking Bluetooth With a USB Stick
News  |  4/5/2007  | 
European researchers have built a Bluetooth sniffer on a $30 USB dongle
Audit Uncovers IRS Security Flaws
News  |  4/4/2007  | 
Tax agency not doing enough to protect taxpayer data on laptops, PCs, according to Treasury report
Read This, Or I'll Kill You
News  |  4/4/2007  | 
Or, how the rising tide of threats made online creates big-time legal exposure for users' employers
Dude, Where's Your PC?
News  |  4/2/2007  | 
Audit exposes lost computers at counterintelligence agency, need for better inventory management


Attackers Leave Stolen Credentials Searchable on Google
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
How to Better Secure Your Microsoft 365 Environment
Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23901
PUBLISHED: 2021-01-25
An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web security vulnerability that allows an attacker to interfere with an application's processing of XML ...
CVE-2020-17532
PUBLISHED: 2021-01-25
When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 ~ 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5
CVE-2020-12512
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting
CVE-2020-12513
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.
CVE-2020-12514
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd