News & Commentary

Content tagged with Compliance posted in June 2012
Not Much To Learn From The Second Kick Of The Mule
Commentary  |  6/29/2012  | 
Repeating compliance and security failures shows a lack of progress
Startup Wraps User Tasks In Virtual Containers
News  |  6/20/2012  | 
Bromium announces micro-VM technology that protects the OS, network, from users' security missteps
The Compliance Officer's Dirty Little Secret
News  |  6/18/2012  | 
Fines may not equal cost of regulatory compliance, but they aren't the only cost of noncompliance
Ironman And Captain America Fight Over Compliance
Commentary  |  6/18/2012  | 
Defending your company requires both warriors and soldiers
Security Startups Focusing On Threats, Not Malware
News  |  6/14/2012  | 
Stopping malware is so yesterday. Eclectic groups of security people have banded together to make life difficult for attackers
IT Pros Say Privileged Accounts Getting '0wned'
Quick Hits  |  6/12/2012  | 
Businesses see insiders as the No. 1 threat, new survey says
Keep Watch On Accounts For Stolen Passwords
News  |  6/8/2012  | 
Log management and a well-refined ruleset can help companies pinpoint suspicious activity on accounts that suggest a password compromise
The Truth Is Not Believable
Commentary  |  6/7/2012  | 
Too many businesses don’t want to know about their compliance problems
When Antivirus Fails, All Is Not Lost
News  |  6/5/2012  | 
Following Flame, Stuxnet, and Duqu, even the antivirus industry is questioning its ability to stop targeted attacks. Yet other technologies exist to catch malware in the corporate network
5 Ways You're Wasting Compliance Dollars
News  |  6/4/2012  | 
Fighting redundancy and ineffectual practices leaves more money for meaningful security
Systems Are Not Compliant; Organizations Are Compliant
Commentary  |  6/1/2012  | 
IT cannot make your organization compliant


'PowerSnitch' Hacks Androids via Power Banks
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/8/2018
Higher Education: 15 Books to Help Cybersecurity Pros Be Better
Curtis Franklin Jr., Senior Editor at Dark Reading,  12/12/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
10 Best Practices That Could Reshape Your IT Security Department
This Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-6705
PUBLISHED: 2018-12-12
Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.
CVE-2018-15717
PUBLISHED: 2018-12-12
Open Dental before version 18.4 stores user passwords as base64 encoded MD5 hashes.
CVE-2018-15718
PUBLISHED: 2018-12-12
Open Dental before version 18.4 transmits the entire user database over the network when a remote unathenticated user accesses the command prompt. This allows the attacker to gain access to usernames, password hashes, privilege levels, and more.
CVE-2018-15719
PUBLISHED: 2018-12-12
Open Dental before version 18.4 installs a mysql database and uses the default credentials of "root" with a blank password. This allows anyone on the network with access to the server to access all database information.
CVE-2018-6704
PUBLISHED: 2018-12-12
Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.