Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Vulnerabilities / Threats posted in July 2007
<<   <   Page 2 / 2
Thinning the Herd
News  |  7/17/2007  | 
No matter how you slice it, it's time to cut the password plethora
Sana & EarthLink to Offer Anti-Malware
News  |  7/17/2007  | 
EarthLink will offer a version of Sana Security's Primary Response SafeConnect anti-malware solution directly to EarthLink subscribers
Sana, PlumChoice Team on Malware
News  |  7/17/2007  | 
Sana Security announced an agreement with PlumChoice to help rid home and small office users' PCs of malicious software
Hackers Tap Western Union
News  |  7/17/2007  | 
Breach of customer database threatens personal info of about 20,000 customers
BorderWare Finds New Trend: PDF Image Spam
News  |  7/17/2007  | 
BorderWare Technologies announced that its BorderWare Security Network reported a new trend in spam in which images are embedded in PDFs
SSC Launches Vulnerability Assessment Service
News  |  7/17/2007  | 
SSC announced a comprehensive Vulnerability and Risk Assessment service
Symantec Unveils Anti-Botware
News  |  7/17/2007  | 
Tool aimed at tough-to-detect bot infections
NSS Labs Expands Operations, Relocates to US
News  |  7/16/2007  | 
NSS Labs announced the relocation of its operations and company headquarters to the US and the expansion of its senior management team
Black Hat: DLP Hack
News  |  7/16/2007  | 
Researchers will show how some data leakage prevention products are buggy - and even risky
Cross-Site, Cross-Service
News  |  7/16/2007  | 
New cross-site scripting worm could propagate across Webmail services, user address lists
AirMagnet Ships Mobile WLAN Analyzer
News  |  7/16/2007  | 
AirMagnet announced the on-time delivery of AirMagnet Laptop Analyzer 7.5
Watchfire Upgrades AppScan
News  |  7/16/2007  | 
Watchfire introduced AppScan 7.6, the latest enhancement of the company's flagship product, and AppScan OnDemand
Hacking, Iron Chef Style
News  |  7/16/2007  | 
Open contest at Black Hat to pit static-code versus runtime analysis methods to find bugs in sample code
Browsing for Browsers
News  |  7/13/2007  | 
Security can be an important factor when choosing a browser
Breaking Out of the Box
News  |  7/13/2007  | 
Security innovators emerge - on both sides of the firewall
Online Gaming's Seamy Underside
News  |  7/12/2007  | 
New book reveals the black market for hacks and cheats, popular methods for cracking online games, and a warning for IT and security pros
Old Flaw Threatens Web 2.0
News  |  7/12/2007  | 
DNS pinning flaw gives attackers inroads to the corporate intranet - via the browser
Startup Launches Free Malware Blocker
News  |  7/11/2007  | 
Haute Secure comes out of stealth mode with freeware that can recognize and filter malware at the client
Microsoft Adds Threat Portal
News  |  7/11/2007  | 
New site ranks top threats, offers signature downloads, and lets users submit suspicious files for analysis
Harry Potter Gathers Fans and Worms
News  |  7/11/2007  | 
Sophos is cautioning Internet users of the computer worm that exploits Potter-mania, which first appeared in late June
AppSec to Support Oracle 11g
News  |  7/11/2007  | 
Application Security announced that its database security suite, DbProtect, will support Oracle Database 11g
Frost & Sullivan Awards BreakingPoint
News  |  7/11/2007  | 
Frost & Sullivan has recognized BreakingPoint Systems with its 2007 Frost & Sullivan Award for Emerging Technology of the Year
Hackers Clean Up With Ajax
News  |  7/10/2007  | 
New Black Hat research shows how Ajax exposes data, users
SonicWall to Use Mu Analyzer
News  |  7/10/2007  | 
Mu Security announced that SonicWALL uses the Mu-4000 Security Analyzer
'Critical' Java Flaw Bugs Researchers
News  |  7/10/2007  | 
Sun patches some versions of Java - another patch, for consumers, is due this week
Japanese Bank Loses 1M Records
News  |  7/10/2007  | 
ATM transaction data for about 980,000 customers can't be found, Resona Bank says
Ounce Labs Reports Record Q2 Sales
News  |  7/10/2007  | 
Ounce Labs announced that it closed the second quarter of 2007 with record sales and revenue for the sixth quarter in a row
Sourcefire Goes Gigabit
News  |  7/9/2007  | 
Snort vendor today to unveil multifunction platform aimed at large enterprises, service providers
Financial Management Firm Chooses FireEye
News  |  7/9/2007  | 
Canaras Capital Management has implemented a solution from FireEye to secure its network from targeted malware, including botnets
nCircle Automates Quarterly PCI Scan
News  |  7/9/2007  | 
nCircle announced the nCircle Certified PCI Scan Service version 2.0
FaceTime Finds Finds More IM, P2P Attacks
News  |  7/9/2007  | 
FaceTime reported that security incidents targeting public IM and P2P channels have increased by 5 percent in the second quarter of 2007
Aqua Finance Choses St. Bernard to Fight Adware
News  |  7/9/2007  | 
St. Bernard Software announced that Aqua Finance has deployed iPrism, St. Bernard's Internet-filtering appliance
Major US Law Firm Selects Sophos
News  |  7/9/2007  | 
Sophos announced that Kilpatrick Stockton has selected Sophos Endpoint Security & Control to protect its desktops
'Hacking Capitalism'
News  |  7/6/2007  | 
Popular financial transaction protocol leaves trading open to hackers
Spyware Spreaders Settle Suit
News  |  7/6/2007  | 
FTC levies restrictions, $1.5 million fine on adware distributor
They Told You So
News  |  7/6/2007  | 
Sometimes, predictions of security threats come true
An Auction Site for Vulnerabilities
News  |  7/5/2007  | 
WabiSabiLabi takes buying and selling of security vulnerabilities mainstream with first above-board, eBay-like auction site
Getting & Securing Your iPhone
News  |  7/5/2007  | 
How you can justify the company buying your iPhone - and how to keep it safe from attack
To Crypt or Not to Crypt
News  |  7/5/2007  | 
If you're not careful, you can be sniffed almost anywhere
Meet the Next-Gen Web Worm
News  |  7/5/2007  | 
New mutating Web worm evades scanners and even uses bug reports to propagate
DLP in Flux
News  |  7/3/2007  | 
Enterprises should think before they leap into data leakage prevention technology, new report says
Admin Accused of Stealing 2.3M Names
News  |  7/3/2007  | 
Fidelity National Information Services says a subsidiary's employee stole records containing personal info
FlexiSPY: Product or Trojan?
News  |  7/3/2007  | 
Security vendors warn of new mobile spyware, but developer says its product is legit
Comodo Intros Protection Against Phishing
News  |  7/3/2007  | 
Comodo's EV SSL delivers new protection against the growing number of phishing sites
Bucking Law Enforcement's Borders
News  |  7/2/2007  | 
New agreement could make it easier for cops to pursue privacy violators across geographic lines
i Caramba! iPhone Hacked Already
News  |  7/2/2007  | 
Researchers find bugs in iPhone browser, Bluetooth, and WiFi connections
Barracuda Intros Real-Time Protection
News  |  7/2/2007  | 
Barracuda Networks announced Barracuda Real-Time Protection, which enables the Barracuda Spam Firewall to immediately block attacks
<<   <   Page 2 / 2

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Current Issue
Improving Enterprise Cybersecurity With XDR
Enterprises are looking at eXtended Detection and Response technologies to improve their abilities to detect, and respond to, threats. While endpoint detection and response is not new to enterprise security, organizations have to improve network visibility, expand data collection and expand threat hunting capabilites if they want their XDR deployments to succeed. This issue of Tech Insights also includes: a market overview for XDR from Omdia, questions to ask before deploying XDR, and an XDR primer.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2022-07-02
An issue was discovered in MediaWiki before 1.35.7, 1.36.x and 1.37.x before 1.37.3, and 1.38.x before 1.38.1. XSS can occur in configurations that allow a JavaScript payload in a username. After account creation, when it sets the page title to &quot;Welcome&quot; followed by the username, the usern...
PUBLISHED: 2022-07-02
An issue was discovered in MediaWiki before 1.37.3 and 1.38.x before 1.38.1. The contributions-title, used on Special:Contributions, is used as page title without escaping. Hence, in a non-default configuration where a username contains HTML entities, it won't be escaped.
PUBLISHED: 2022-07-02
** DISPUTED ** md2roff 1.7 has a stack-based buffer overflow via a Markdown file containing a large number of consecutive characters to be processed. NOTE: the vendor's position is that the product is not intended for untrusted input.
PUBLISHED: 2022-07-02
Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.
PUBLISHED: 2022-07-02
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.