Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Products and Releases

Content posted in June 2016
PacketSled Secures $5M in Series A Financing
Products and Releases  |  6/28/2016  | 
Continuous security monitoring company to aggressively accelerate sales, marketing, and execution of product roadmap
67 Percent of Used Drives Sold on eBay and Craigslist Hold Personally Identifiable Information and 11 Percent Contain Sensitive Corporate Data
Products and Releases  |  6/28/2016  | 
Blancco Technology Group Study Uncovers Exposed Social Security Numbers, Financial Data, Resumes, Company Emails, CRM Records and Spreadsheets
Internet Pioneer Discusses Creation, Expectations and Security of DNS on Its 33rd Birthday
Products and Releases  |  6/23/2016  | 
"The Internet community has let legacy infrastructure designs constrain the future."
Zimperium Closes $25 Million Series C Funding Led By Warburg Pincus
Products and Releases  |  6/20/2016  | 
Mobile defense leader will use financing to expand global customer reach
Trustwave and CounterTack Team to Reduce Impact of Data Breaches
Products and Releases  |  6/7/2016  | 
Alliance Expands Portfolio of Trustwave Managed Security Services Worldwide, Brings Endpoint Detection and Response Capabilities to Asia-Pacific Market through Singtel
New Innovations From Veracode Help Security Teams and Software Developers Protect Applications and Shorten Time to Deployment
Products and Releases  |  6/6/2016  | 
Today's Announcement Highlights the Opportunity for a New Approach to Application Security, Extending It Seamlessly From Application Development to Protecting Applications as They Are Running
New IDESG Service Empowers Organizations To Better Protect Digital Identities
Products and Releases  |  6/6/2016  | 
Registry is Key Step in Growing Healthy and Secure Online Identity Ecosystem
WhiteHat Founder Jeremiah Grossman Joins SentinelOne as Chief of Security Strategy
Products and Releases  |  6/6/2016  | 
Industry Visionary Brings History of 
Innovation and Leadership to Accelerate Company Growth
Quick Heal Technologies First Quarter 2016 Threat Report Confirms the Rising Threat of Ransomware as New Variants Emerge
Products and Releases  |  6/2/2016  | 
Windows and Android malware detections continue to increase, with Android malware samples up 38 percent over the first quarter in 2015
Alert Logic Partners with Mitsui for Japan Expansion
Products and Releases  |  6/2/2016  | 
Global business conglomerate to deliver Alert Logic Security-as-a-Service solutions to companies in Japan
Vista Equity Partners to Acquire Ping Identity
Products and Releases  |  6/2/2016  | 
Acquisition Will Accelerate Growth and Innovation for Identity Defined Security Leader
Optiv Security Further Strengthens New England Presence with Acquisition of Adaptive Communications
Products and Releases  |  6/2/2016  | 
Move Enables Company to Better Meet the Growing Cyber Security Needs of New England Businesses


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The 10 Most Impactful Types of Vulnerabilities for Enterprises Today
Managing system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2023-1172
PUBLISHED: 2023-03-17
The Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the full name value in versions up to, and including, 21.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that w...
CVE-2023-1469
PUBLISHED: 2023-03-17
The WP Express Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘pec_coupon[code]’ parameter in versions up to, and including, 2.2.8 due to insufficient input sanitization and output escaping. This makes it possible for authenti...
CVE-2023-1466
PUBLISHED: 2023-03-17
A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as critical. This issue affects the function view_student of the file admin/?page=students/view_student. The manipulation of the argument id with the input 3' AND (SELECT 2100 FROM (SELECT(...
CVE-2023-1467
PUBLISHED: 2023-03-17
A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file Master.php?f=delete_img of the component POST Parameter Handler. The manipulation of the argument path with the input C%3A%2Ffoo.txt le...
CVE-2023-1468
PUBLISHED: 2023-03-17
A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/?page=reports&date_from=2023-02-17&date_to=2023-03-17 of the component Report Handler. The manipula...