Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in June 2016
PacketSled Secures $5M in Series A Financing
Products and Releases  |  6/28/2016  | 
Continuous security monitoring company to aggressively accelerate sales, marketing, and execution of product roadmap
67 Percent of Used Drives Sold on eBay and Craigslist Hold Personally Identifiable Information and 11 Percent Contain Sensitive Corporate Data
Products and Releases  |  6/28/2016  | 
Blancco Technology Group Study Uncovers Exposed Social Security Numbers, Financial Data, Resumes, Company Emails, CRM Records and Spreadsheets
Internet Pioneer Discusses Creation, Expectations and Security of DNS on Its 33rd Birthday
Products and Releases  |  6/23/2016  | 
"The Internet community has let legacy infrastructure designs constrain the future."
Zimperium Closes $25 Million Series C Funding Led By Warburg Pincus
Products and Releases  |  6/20/2016  | 
Mobile defense leader will use financing to expand global customer reach
Trustwave and CounterTack Team to Reduce Impact of Data Breaches
Products and Releases  |  6/7/2016  | 
Alliance Expands Portfolio of Trustwave Managed Security Services Worldwide, Brings Endpoint Detection and Response Capabilities to Asia-Pacific Market through Singtel
New Innovations From Veracode Help Security Teams and Software Developers Protect Applications and Shorten Time to Deployment
Products and Releases  |  6/6/2016  | 
Today's Announcement Highlights the Opportunity for a New Approach to Application Security, Extending It Seamlessly From Application Development to Protecting Applications as They Are Running
New IDESG Service Empowers Organizations To Better Protect Digital Identities
Products and Releases  |  6/6/2016  | 
Registry is Key Step in Growing Healthy and Secure Online Identity Ecosystem
WhiteHat Founder Jeremiah Grossman Joins SentinelOne as Chief of Security Strategy
Products and Releases  |  6/6/2016  | 
Industry Visionary Brings History of 
Innovation and Leadership to Accelerate Company Growth
Quick Heal Technologies First Quarter 2016 Threat Report Confirms the Rising Threat of Ransomware as New Variants Emerge
Products and Releases  |  6/2/2016  | 
Windows and Android malware detections continue to increase, with Android malware samples up 38 percent over the first quarter in 2015
Alert Logic Partners with Mitsui for Japan Expansion
Products and Releases  |  6/2/2016  | 
Global business conglomerate to deliver Alert Logic Security-as-a-Service solutions to companies in Japan
Vista Equity Partners to Acquire Ping Identity
Products and Releases  |  6/2/2016  | 
Acquisition Will Accelerate Growth and Innovation for Identity Defined Security Leader
Optiv Security Further Strengthens New England Presence with Acquisition of Adaptive Communications
Products and Releases  |  6/2/2016  | 
Move Enables Company to Better Meet the Growing Cyber Security Needs of New England Businesses


Edge-DRsplash-10-edge-articles
7 Old IT Things Every New InfoSec Pro Should Know
Joan Goodchild, Staff Editor,  4/20/2021
News
Cloud-Native Businesses Struggle With Security
Robert Lemos, Contributing Writer,  5/6/2021
Commentary
Defending Against Web Scraping Attacks
Rob Simon, Principal Security Consultant at TrustedSec,  5/7/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-29040
PUBLISHED: 2021-05-16
The JSON web services in Liferay Portal 7.3.4 and earlier, and Liferay DXP 7.0 before fix pack 97, 7.1 before fix pack 20 and 7.2 before fix pack 10 may provide overly verbose error messages, which allows remote attackers to use the contents of error messages to help launch another, more focused att...
CVE-2021-29041
PUBLISHED: 2021-05-16
Denial-of-service (DoS) vulnerability in the Multi-Factor Authentication module in Liferay DXP 7.3 before fix pack 1 allows remote authenticated attackers to prevent any user from authenticating by (1) enabling Time-based One-time password (TOTP) on behalf of the other user or (2) modifying the othe...
CVE-2021-29047
PUBLISHED: 2021-05-16
The SimpleCaptcha implementation in Liferay Portal 7.3.4, 7.3.5 and Liferay DXP 7.3 before fix pack 1 does not invalidate CAPTCHA answers after it is used, which allows remote attackers to repeatedly perform actions protected by a CAPTCHA challenge by reusing the same CAPTCHA answer.
CVE-2021-22668
PUBLISHED: 2021-05-16
Delta Industrial Automation CNCSoft ScreenEditor Versions 1.01.28 (with ScreenEditor Version 1.01.2) and prior are vulnerable to an out-of-bounds read while processing project files, which may allow an attacker to execute arbitrary code.
CVE-2021-29039
PUBLISHED: 2021-05-16
Cross-site scripting (XSS) vulnerability in the Asset module's categories administration page in Liferay Portal 7.3.4 allows remote attackers to inject arbitrary web script or HTML via the site name.