Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in January 2020
Cowbell Cyber Demystifies Cyber Insurance with Cowbell Prime 100
Products and Releases  |  1/22/2020  | 
Cyber Insurance product backed by A-rated insurers delivers stand-alone, tailored coverage to SMBs in 5 minutes.
Tripwire Expands Industrial Security Capabilities, Launches Industrial Appliance Line, Joins ISA Global Security Alliance
Products and Releases  |  1/16/2020  | 
Tripwire introduces new line of hardware appliances and joins ISA Global Security Alliance to advance industrial cybersecurity.
California Fraudster Sentenced In Maryland To Four Years In Federal Prison For A Credit Card Fraud Scheme With Losses Of More Than $1.365 Million
Products and Releases  |  1/14/2020  | 
Used ATMs in Maryland, California, and Georgia to Withdraw Stolen Funds
Florida Man Sentenced in ATM 'Cash-out' Scheme
Products and Releases  |  1/14/2020  | 
Risk & Assurance Group Joins i3forum to Tackle Voice Fraud in International Telecommunications
Products and Releases  |  1/7/2020  | 
The not-for-profit industry bodies will join forces to boost collaboration and accelerate the fight against fraud for the entire carrier ecosystem,
Auctus Advises 5nine in Acronis Buyout
Products and Releases  |  1/6/2020  | 
Acronis will integrate 5nines technology into the Acronis Cyber Platform, making new services available through the Acronis Cyber Cloud Solutions portal.
Imperva Names Pam Murphy as CEO
Products and Releases  |  1/6/2020  | 
Former Infor and Oracle executive appointed to drive growth


More SolarWinds Attack Details Emerge
Kelly Jackson Higgins, Executive Editor at Dark Reading,  1/12/2021
Vulnerability Management Has a Data Problem
Tal Morgenstern, Co-Founder & Chief Product Officer, Vulcan Cyber,  1/14/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-35128
PUBLISHED: 2021-01-19
Mautic before 3.2.4 is affected by stored XSS. An attacker with permission to manage companies, an application feature, could attack other users, including administrators. For example, by loading an externally crafted JavaScript file, an attacker could eventually perform actions as the target user. ...
CVE-2020-35129
PUBLISHED: 2021-01-19
Mautic before 3.2.4 is affected by stored XSS. An attacker with access to Social Monitoring, an application feature, could attack other users, including administrators. For example, an attacker could load an externally drafted JavaScript file that would allow them to eventually perform actions on th...
CVE-2020-23342
PUBLISHED: 2021-01-19
A CSRF vulnerability exists in Anchor CMS 0.12.7 anchor/views/users/edit.php that can change the Delete admin users.
CVE-2020-20950
PUBLISHED: 2021-01-19
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications 2018-11-26 All up to 2018-11-26. The vulnerability can allow one to use Bleichenbacher's oracle attack to decrypt an encrypted ciphertext by making successive queries to the server using the vulnerable li...
CVE-2020-23522
PUBLISHED: 2021-01-19
Pixelimity 1.0 has cross-site request forgery via the admin/setting.php data [Password] parameter.