Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Vulnerabilities / Threats posted in February 2007
<<   <   Page 2 / 2
New Method Traps 'Fast' Worms
News  |  2/12/2007  | 
Penn State researchers devise new technique for ID, prevention of worm attacks
Sophos: Valentine's Spam Increases
News  |  2/12/2007  | 
Sophos reports that in the run-up to Valentine's Day, spam campaigns selling romantic gift continue to increase
McAfee: Malware Attacks on Rise
News  |  2/11/2007  | 
McAfee announced findings from new research that reveals mobile operators globally are experiencing more mobile malware attacks
Pirated Software's Problem
News  |  2/9/2007  | 
In developing nations, at least, illegal copies of software, music, and movies are riddled with malware
Encryption Set to Go Mainstream
News  |  2/9/2007  | 
Study: Data breaches, new laws drive enterprises to build encryption into infrastructure, processes
Are 'Sealed' Websites Any Safer?
News  |  2/9/2007  | 
Website seals are designed to make buyers feel safer. But are sites with seals really more secure?
DNSstuff.com Responds to Attacks
News  |  2/8/2007  | 
DNSstuff.com issued a warning and called for greater preparedness as a result of the recent attack targeting root servers
VeriSign Ups the DNS Ante
News  |  2/8/2007  | 
Tenfold capacity increase to DNS infrastructure, tighter security intended to blunt future DDOS attacks
VeriSign to Increase Capacity Tenfold
News  |  2/8/2007  | 
VeriSign announced a major initiative to expand and diversify the capacity of its global Internet infrastructure by ten times by 2010
Sophos Adds Mobile Security
News  |  2/8/2007  | 
Sophos announced the Sophos Mobile Security to protect organizations against the growing number of malware attacks aimed at Windows Mobile
IBM's Stealthy Security Play
News  |  2/8/2007  | 
After being acquired by IBM in August, ISS is doubling in size, tripling its customer pipeline, and laying the groundwork for a major security push by Big Blue, top exec says
Skype, Symantec Ink Deal
News  |  2/7/2007  | 
Skype announced a relationship to deliver PC security solutions to small office and home office Skype users for a secure PC environment
Third Brigade Expands in US
News  |  2/7/2007  | 
Third Brigade announced the addition of key systems integrators and resellers in New York, Washington, and Chicago
RSA Devices Open to Attack
News  |  2/7/2007  | 
AirDefense unveiled results from its wireless airwave monitoring on Tuesday, February 6 at the RSA Conference
DNS Attack: Only a Warning Shot?
News  |  2/7/2007  | 
Yesterday's DDOS attack on the Internet's DNS root servers may have been a trial run for a bigger attack
Symantec Licenses Liquid Machines
News  |  2/7/2007  | 
Symantec has licensed Liquid Machine's ERM technology as part of Symantec's Enterprise Vault content management, archival, and retrieval system
Symantec Reveals NAC Upgrades
News  |  2/6/2007  | 
Symantec has extended its Symantec NAC software with new features that enable enterprises to more easily enforce NAC across endpoints
Spirent Announces Test Solution
News  |  2/6/2007  | 
Spirent Communications announced the release of ThreatEx 2.50, which offers the most powerful security testing functionality available
Microsoft Vision Raises Questions
News  |  2/6/2007  | 
Past developments suggest that Microsoft's future security road may be a bumpy ride
It's All in Your Head
News  |  2/6/2007  | 
Sometimes spam is in the eye of the beholder
PayPal CSO: Phishing Threat Overstated
News  |  2/6/2007  | 
Chief security officer at one of phishers' favorite targets says phishing isn't among the top five threats to his company's bottom line
AppSecInc Debuts Security Suite
News  |  2/6/2007  | 
Application Security unveiled DbProtect, the industry's most comprehensive database security solution
Browsers Gone Bad
News  |  2/6/2007  | 
XSS can turn your desktop against you, and possibly even implicate you in malware creation
Grisoft Enhances Reseller Program
News  |  2/6/2007  | 
Grisoft announced an enhanced AVG Reseller Merit Program providing more benefits and revenue-building support
Third Brigade Upgrades HIPS
News  |  2/5/2007  | 
Third Brigade unveiled Deep Security 5 to detect and prevent known and zero-day attacks targeting mission critical servers
Attackers Take Trojans to the Bank
News  |  2/5/2007  | 
Rapidly mutating malware threatens to overwhelm its financial services targets
Color-Coding Web Searches
News  |  2/5/2007  | 
New ScanSafe Web filtering feature gives users the green light to visit sites in their search results, providing they are safe
Cisco to Integrate Security Tools
News  |  2/5/2007  | 
Cisco to announce it will unite individual point products, enhance its Self-Defending Network concept
nCircle Intros nTellect for McAfee
News  |  2/5/2007  | 
nCircle announces nTellect for McAfee IntruShield to identify and prioritize network attacks
On the Dark Side of ISP Nets
News  |  2/4/2007  | 
Arbor Networks's new Atlas service provides ISPs and enterprises with a global view of botnets, malware, and other threats
NAC: Can't Get No Satisfaction
News  |  2/2/2007  | 
Vendors prepare to shore up the shortcomings of network access control at RSA conference next week
RSA Preview: Shutting Down Insiders
News  |  2/2/2007  | 
With the insider threat on the rise, data leakage technology takes higher profile at show
Schneier: In Touch With Security's Sensitive Side
News  |  2/1/2007  | 
Security icon's latest work explores the psychology, brain chemistry of security
To Enter, Act Like Yourself
News  |  2/1/2007  | 
Behavior-based biometrics to ID you by the way you speak, type, move your mouse, and more
Sophos Unveils Top 10 Threats
News  |  2/1/2007  | 
Sophos revealed the most prevalent malware threats causing problems for computer users around the world during January 2007
McAfee Intros Mobile Security Risk Mgt
News  |  2/1/2007  | 
McAfee announced the launch of McAfee Mobile Security Risk Management
<<   <   Page 2 / 2


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Enterprises Are Assessing Cybersecurity Risk in Today's Environment
The adoption of cloud services spurred by the COVID-19 pandemic has resulted in pressure on cyber-risk professionals to focus on vulnerabilities and new exposures that stem from pandemic-driven changes. Many cybersecurity pros expect fundamental, long-term changes to their organization's computing and data security due to the shift to more remote work and accelerated cloud adoption. Download this report from Dark Reading to learn more about their challenges and concerns.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-23599
PUBLISHED: 2022-01-28
Products.ATContentTypes are the core content types for Plone 2.1 - 4.3. Versions of Plone that are dependent on Products.ATContentTypes prior to version 3.0.6 are vulnerable to reflected cross site scripting and open redirect when an attacker can get a compromised version of the image_view_fullscree...
CVE-2022-0395
PUBLISHED: 2022-01-28
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVE-2022-21721
PUBLISHED: 2022-01-28
Next.js is a React framework. Starting with version 12.0.0 and prior to version 12.0.9, vulnerable code could allow a bad actor to trigger a denial of service attack for anyone using i18n functionality. In order to be affected by this CVE, one must use next start or a custom server and the built-in ...
CVE-2022-23598
PUBLISHED: 2022-01-28
laminas-form is a package for validating and displaying simple and complex forms. When rendering validation error messages via the `formElementErrors()` view helper shipped with laminas-form, many messages will contain the submitted value. However, in laminas-form prior to version 3.1.1, the value w...
CVE-2021-4160
PUBLISHED: 2022-01-28
There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS 1.3 default curves. Impact was not analyzed in detail, because the pre-requisites for attack are considered unlikely and include reusing private keys. Analysis sug...