Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Perimeter posted in May 2008
Stanford Medical School's Rx: Anomaly Detection
News  |  5/30/2008  | 
Appliance helps minimize bot, malware infections
New Smart Phone Hack Could Expose Cell Network
News  |  5/27/2008  | 
Researchers to release hacking tool that gathers information about the cellular network to which a smart phone is connected
Tech Insight: Debian Linux Flaw Threatens SSL Encryption
News  |  5/23/2008  | 
Vulnerability in Debian OpenSSL could allow attackers to decrypt 'secure' Web sessions
Passport to the Web
News  |  5/23/2008  | 
Our system for authenticating international travelers' identities is solid. Why can't we create a similar process online?
Regulatory Holes Could Leave US Power Grid Open to Attack
News  |  5/21/2008  | 
Utility commissions tell Congress they don't have the authority to quickly respond to cyber threats
SQL Injection Attack Helps Hack OS
News  |  5/20/2008  | 
Multi-step hack using SQL injection provides interactive, GUI access to OS
CompTIA: Only One in Four Severe Data Breaches Are Intentional
Quick Hits  |  5/20/2008  | 
New IT security report finds that most severe security breaches at US firms are inadvertent and caused by human error or technical malfunctions - and intentional breaches come mainly from the outside
Hospital Security Programs Ailing, Study Says
News  |  5/20/2008  | 
Patient data at risk due to lack of attention to policies, regulations
Can You Pass This Privacy Quiz?
News  |  5/16/2008  | 
Most Californians couldn't, according to newly released research
Three-Layer Encryption Method Awarded Patent
News  |  5/15/2008  | 
'Tricryption' scheme encrypts data in file systems, databases, storage -- and their keys
Hackers Sniff Their Way Into Data From Restaurant Chain
News  |  5/14/2008  | 
Thieves collected 5,000 credit cards - and hundreds of thousands of dollars - from 11 Dave & Buster's locations
NATO Members Form Cyber Defense Center
Quick Hits  |  5/14/2008  | 
Estonia will serve as headquarters for new effort; US not joining yet
Check Point Offers Consumers 'New Level' of Security
News  |  5/13/2008  | 
'Browser virtualization' sandboxes OS, constitutes new category of products, firewall giant says
Tech Insight: Finding & Prioritizing Web Application Vulnerabilities
News  |  5/9/2008  | 
Web app flaws are rapidly becoming the most serious threat to your data. Do you know how to identify them - and which ones to fix first?
Hacker's Choice: Top Six Database Attacks
News  |  5/8/2008  | 
It doesn't take a database expert to break into one
Srizbi Botnet Sending Over 60 Billion Spams a Day
Quick Hits  |  5/8/2008  | 
Marshal TRACE team says Srizbi sends more spam than all other botnets combined
Who Killed My Hard Drive?
News  |  5/6/2008  | 
University study examines the causes and costs of hard drive failure
New Spam Attack Exploits Edunet Servers
News  |  5/5/2008  | 
Exploit demonstrates creativity, but little damage caused so far, BitDefender says
DR's 10 Most Popular Stories Ever (Second Edition)
News  |  5/2/2008  | 
A look at the top stories from our first two years, including coolest hacks, biggest botnets, and a thumb drive exploit that readers just can't put down
Health Insurer's SIM Eases HIPAA Compliance
News  |  5/2/2008  | 
Priority Health's security information management architecture streamlines security alert-gathering, analysis
Study: What Happens in Vegas Might Not Stay in Vegas
Quick Hits  |  5/1/2008  | 
Wireless penetration test shows hotels, casinos don't adequately protect their WiFi networks


Attackers Leave Stolen Credentials Searchable on Google
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
How to Better Secure Your Microsoft 365 Environment
Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23901
PUBLISHED: 2021-01-25
An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web security vulnerability that allows an attacker to interfere with an application's processing of XML ...
CVE-2020-17532
PUBLISHED: 2021-01-25
When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 ~ 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5
CVE-2020-12512
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting
CVE-2020-12513
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.
CVE-2020-12514
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd