News & Commentary

Content tagged with Compliance posted in February 2012
It's True: Compliance Can Be Good For Your Business
Commentary  |  2/29/2012  | 
The best insurance for your organization is often the processes required for compliance
Bots: Stand Up And Be Counted
Commentary  |  2/24/2012  | 
A new FCC-backed initiative will gather real ISP data on infected bot machines, but will it make a dent on the botnet scourge?
Web Encryption That Works
News  |  2/23/2012  | 
SSL technology isn't perfect, but it can be an effective security tool for your organization. Here are four tips for optimizing its performance
Five Dangerous Compliance Assumptions
Commentary  |  2/23/2012  | 
Many businesses fool themselves about their compliance problems
Another Hurdle For IPsec
News  |  2/14/2012  | 
Some organizations are taking a second look at IPsec for more security, but, like SSL, it also relies on a flawed trust model
Being A Security Bully Does Not Make You Compliant
Commentary  |  2/14/2012  | 
Compliance is not a tool for dodging work or dismissing business needs
Avoid Putting IT In A GRC Vacuum
News  |  2/13/2012  | 
When infosec pros are asked to set security and compliance policies with no line-of-business input, problems are inevitable
Five Tactical Security Metrics To Watch
News  |  2/10/2012  | 
Wondering how secure the corporate network is? Here's five operational security metrics that can help. First of a two-part series
'Factory Outlets' Selling Stolen Facebook, Twitter Credentials At Discount Rates
News  |  2/8/2012  | 
Are cybercriminals' inventory overstocked? New bulk sales pitch could be an indication, researchers say
Slide Show: Technologies That Are Changing The Sports Security Game
News  |  2/3/2012  | 
Digital technology is increasingly playing a major role in sports security operations
Compliance And 'The Little Guys'
Commentary  |  2/3/2012  | 
Small and midsize businesses often let the cost of compliance obscure important benefits
How To Spot A Fake Facebook Profile
Quick Hits  |  2/2/2012  | 
Barracuda Networks gathers telltale characteristics of the phony Facebook 'Friend'


'Hidden Tunnels' Help Hackers Launch Financial Services Attacks
Kelly Sheridan, Staff Editor, Dark Reading,  6/20/2018
Inside a SamSam Ransomware Attack
Ajit Sancheti, CEO and Co-Founder, Preempt,  6/20/2018
Tesla Employee Steals, Sabotages Company Data
Jai Vijayan, Freelance writer,  6/19/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-12692
PUBLISHED: 2018-06-23
TP-Link TL-WA850RE Wi-Fi Range Extender with hardware version 5 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the wps_setup_pin parameter to /data/wps.setup.json.
CVE-2018-12693
PUBLISHED: 2018-06-23
Stack-based buffer overflow in TP-Link TL-WA850RE Wi-Fi Range Extender with hardware version 5 allows remote authenticated users to cause a denial of service (outage) via a long type parameter to /data/syslog.filter.json.
CVE-2018-12694
PUBLISHED: 2018-06-23
TP-Link TL-WA850RE Wi-Fi Range Extender with hardware version 5 allows remote attackers to cause a denial of service (reboot) via data/reboot.json.
CVE-2018-12695
PUBLISHED: 2018-06-23
mao10cms 6 allows XSS via the m=bbs&a=index page.
CVE-2018-12696
PUBLISHED: 2018-06-23
mao10cms 6 allows XSS via the article page.