News & Commentary

Content tagged with Compliance posted in August 2009
Hacker Ring Tied To Major Breaches Just Tip Of The Iceberg
News  |  8/24/2009  | 
TJX-Heartland attacker and cohorts also reportedly hacked ATM machines in 7-Elevens, but their wide net is likely just one of many
Employers Crack Down On Social Networking, Web Surfing At Work
Quick Hits  |  8/21/2009  | 
More than three-quarters of organizations now block social net sites, ScanSafe says
Botmaster: It's All About Infecting, Selling Big Batches of Bots
News  |  8/20/2009  | 
Undercover Cisco researcher told the going rate for a single bot is 10- to 25 cents
Rare Malware A Hint Of Threats To Come
News  |  8/19/2009  | 
Researchers are spotting new forms of malware features that could signal a new generation of harder-to-kill badware
Mac OS X Trojan Attack Changes DNS Settings
Quick Hits  |  8/11/2009  | 
Researchers spot new variant of malware that prepares machines for botnet recruitment and other cybercrime uses
Report: Less Budget, More Data Leaks
Quick Hits  |  8/10/2009  | 
Budget constraints, social networks, and mobile devices take their toll as data leaks among U.S. enterprises multiply
DDoS Attacks On Twitter, Facebook Result Of Massive Attack On One Person
News  |  8/7/2009  | 
Botnet attack takes aim at pro-Georgian blogger and leaves collateral damage on social networking sites
ISPs Team In Bot Cleanup
News  |  8/6/2009  | 
ISP group issues guidelines for how to clean up bot-infected consumers


'PowerSnitch' Hacks Androids via Power Banks
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/8/2018
Higher Education: 15 Books to Help Cybersecurity Pros Be Better
Curtis Franklin Jr., Senior Editor at Dark Reading,  12/12/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
10 Best Practices That Could Reshape Your IT Security Department
This Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-6705
PUBLISHED: 2018-12-12
Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.
CVE-2018-15717
PUBLISHED: 2018-12-12
Open Dental before version 18.4 stores user passwords as base64 encoded MD5 hashes.
CVE-2018-15718
PUBLISHED: 2018-12-12
Open Dental before version 18.4 transmits the entire user database over the network when a remote unathenticated user accesses the command prompt. This allows the attacker to gain access to usernames, password hashes, privilege levels, and more.
CVE-2018-15719
PUBLISHED: 2018-12-12
Open Dental before version 18.4 installs a mysql database and uses the default credentials of "root" with a blank password. This allows anyone on the network with access to the server to access all database information.
CVE-2018-6704
PUBLISHED: 2018-12-12
Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.