Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Database Security
Authentication
Mobile
Privacy
Compliance
Identity & Access Management
Security Monitoring
Advanced Threats
Insider Threats
Vulnerability Management

Dark Reading Article Boards

Message Boards posted in January 2017
Page 1 / 2   >   >>
Outsider Attacks Give Nightmares To CIOs, CEOs, CISOs
Last Message: 1/31/2017  |  Comments: 1
Putin Directed Cyberattack, Propaganda Operation To Influence US Election
Last Message: 1/31/2017  |  Comments: 5
3 Things Companies Must Do Before A Data Breach
Last Message: 1/31/2017  |  Comments: 1
Intellinx 5.1 Fraud Management Platform Integrates with HADOOP for Improved Cybersecurity
Last Message: 1/31/2017  |  Comments: 1
Are Security Concerns Over Trump’s Android, Twitter Use Overblown?
Last Message: 1/30/2017  |  Comments: 2
"5 Ways To Solve The Password Reset Problem"
Last Message: 1/30/2017  |  Comments: 2
Kaspersky Lab Incident Investigations Head Arrested In Russia For 'Treason'
Last Message: 1/30/2017  |  Comments: 5
10 Cocktail Party Security Tips From The Experts
Last Message: 1/29/2017  |  Comments: 6
8 Security Categories Healthcare Providers Need to Improve On
Last Message: 1/29/2017  |  Comments: 4
10 Things InfoSec Pros Can Celebrate About 2016
Last Message: 1/27/2017  |  Comments: 2
Cyber Incidents Hit 85% Of Firms Over Past 12 Months
Last Message: 1/26/2017  |  Comments: 1
SEC Investigates Yahoo Data Breaches
Last Message: 1/26/2017  |  Comments: 1
Meet Ripper.cc, A Reputation Service For Cybercriminals
Last Message: 1/26/2017  |  Comments: 4
Email Encryption On The Rise But Still Not 'Universal'
Last Message: 1/26/2017  |  Comments: 1
Google Removes Ransomware-Laden App From Play Store
Last Message: 1/25/2017  |  Comments: 1
Bad Bots Up Their Human Impersonation Game
Last Message: 1/25/2017  |  Comments: 1
Verizon Acquisition Of Yahoo Delayed
Last Message: 1/24/2017  |  Comments: 1
"Google Drive Privacy: 4 Misunderstood Facts"
Last Message: 1/23/2017  |  Comments: 12
Number Of Data Breach Disclosures Jumped 40% in 2016
Last Message: 1/23/2017  |  Comments: 2
Cyber Lessons From The NSA’s Admiral Michael Rogers
Last Message: 1/23/2017  |  Comments: 2
What's Next For Canada’s Surveillance Landscape?
Last Message: 1/23/2017  |  Comments: 3
3 Lessons From The Yahoo Breach
Last Message: 1/23/2017  |  Comments: 1
80% Of IT Pros Say Users Set Up Unapproved Cloud Services
Last Message: 1/23/2017  |  Comments: 2
5 Ways The Cyber-Threat Landscape Shifted In 2016
Last Message: 1/22/2017  |  Comments: 5
Ransomware: How A Security Inconvenience Became The Industry's Most-Feared Vulnerability
Last Message: 1/20/2017  |  Comments: 1
6 Ways To Prepare For The EU’s GDPR
Last Message: 1/20/2017  |  Comments: 2
The 4 Top Barriers To Effective Incident Response
Last Message: 1/19/2017  |  Comments: 1
2017 IT Forecast: Cloudy With A Chance Of Security Concerns
Last Message: 1/19/2017  |  Comments: 1
Fixing Critical Infrastructure Means Securing The IT Systems That Support It
Last Message: 1/19/2017  |  Comments: 3
Chelsea Manning Granted Presidential Pardon
Last Message: 1/18/2017  |  Comments: 1
Ex-US National Security Official Clarke: Regulation Key To Protecting ICS/SCADA From Cyberattacks
Last Message: 1/18/2017  |  Comments: 1
Survey Points to Slight Rise in Adaptive Authentication Over 2FA
Last Message: 1/18/2017  |  Comments: 1
Cartoon: Ransomware Strategy
Last Message: 1/18/2017  |  Comments: 1
Top US Intel Officials Double Down On Russian Hacking Allegations
Last Message: 1/18/2017  |  Comments: 3
Giuliani To Coordinate Between Govt., Private Sector On Cybersecurity
Last Message: 1/18/2017  |  Comments: 2
Advances In SSL: 5 Strategies For Secure, High-Performance Load Balancers
Last Message: 1/17/2017  |  Comments: 2
"Microsoft Tech Support Scams: Why They Thrive"
Last Message: 1/17/2017  |  Comments: 10
Name That Toon: Naughty or Nice
Last Message: 1/16/2017  |  Comments: 107
Cyberrisk Through A Business Lens
Last Message: 1/16/2017  |  Comments: 6
Major Cyberattacks On Healthcare Grew 63% In 2016
Last Message: 1/16/2017  |  Comments: 8
Shadow Brokers Calls It Quits After Failing To Get Buyers For NSA Exploits
Last Message: 1/16/2017  |  Comments: 1
7 Ways To Fine-Tune Your Threat Intelligence Model
Last Message: 1/15/2017  |  Comments: 3
The 3 C's Of Security Awareness
Last Message: 1/14/2017  |  Comments: 6
Ransomware Rising On The Plant Floor
Last Message: 1/14/2017  |  Comments: 1
Hacker To Make Amends By Bolstering Victim's Cybersecurity
Last Message: 1/13/2017  |  Comments: 1
Naughty & Nice: Dark Reading Caption Contest Winners
Last Message: 1/12/2017  |  Comments: 1
Credit Freeze: The New Normal In Data Breach Protection?
Last Message: 1/11/2017  |  Comments: 1
FBI Chief: Russian Hackers Exploited Outdated RNC Server, But Not Trump Campaign
Last Message: 1/11/2017  |  Comments: 1
A Look Inside Responsible Vulnerability Disclosure
Last Message: 1/9/2017  |  Comments: 1
DHS-FBI Report Shows Russian Attribution's A Bear
Last Message: 1/9/2017  |  Comments: 2
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/4/2020
Abandoned Apps May Pose Security Risk to Mobile Devices
Robert Lemos, Contributing Writer,  5/29/2020
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Peter Barker, Chief Product Officer at ForgeRock,  6/1/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: What? IT said I needed virus protection!
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13768
PUBLISHED: 2020-06-04
In MiniShare before 1.4.2, there is a stack-based buffer overflow via an HTTP PUT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018-19861, CVE-2018-19862, and CVE-2019-17601. NOTE: this product is discontinued.
CVE-2020-13849
PUBLISHED: 2020-06-04
The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the ability to establish new connections), as demonstrated by SlowITe.
CVE-2020-13848
PUBLISHED: 2020-06-04
Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
CVE-2020-11682
PUBLISHED: 2020-06-04
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A __RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request ...
CVE-2020-12847
PUBLISHED: 2020-06-04
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console� that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the applicat...