Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in January 2019
Page 1 / 2   >   >>
For a Super Security Playbook, Take a Page from Football
Last Message: 1/31/2019
 |  Comments: 1
Discover Issues New Cards Following Data Breach
Last Message: 1/31/2019
 |  Comments: 2
Cisco Study Finds Fewer Data Breaches at GDPR-Ready Firms
Last Message: 1/30/2019
 |  Comments: 9
Remote Access & the Diminishing Security Perimeter
Last Message: 1/30/2019
 |  Comments: 2
Cloud Customers Faced 681M Cyberattacks in 2018
Last Message: 1/30/2019
 |  Comments: 11
Iran Ups its Traditional Cyber Espionage Tradecraft
Last Message: 1/30/2019
 |  Comments: 1
Access Control Lists: 6 Key Principles to Keep in Mind
Last Message: 1/30/2019
 |  Comments: 1
Ukraine Sees Surge in Election-Targeted Cyberattacks
Last Message: 1/29/2019
 |  Comments: 3
Container Deployments Bring Security Woes at DevOps Speed
Last Message: 1/28/2019
 |  Comments: 2
Satya Nadella: Privacy Is a Human Right
Last Message: 1/28/2019
 |  Comments: 1
Internet Society to Issue Privacy Code of Conduct
Last Message: 1/28/2019
 |  Comments: 3
Are You Listening to Your Kill Chain?
Last Message: 1/27/2019
 |  Comments: 3
NotPetya Victim Mondelez Sues Zurich Insurance for $100 Million
Last Message: 1/27/2019
 |  Comments: 9
DHS Issues Emergency Directive on DNS Security
Last Message: 1/27/2019
 |  Comments: 9
Cybercriminals Home in on Ultra-High Net Worth Individuals
Last Message: 1/25/2019
 |  Comments: 1
Cyberattackers Bait Financial Firms with Google Cloud Platform
Last Message: 1/25/2019
 |  Comments: 1
Why Cyberattacks Are the No. 1 Risk
Last Message: 1/25/2019
 |  Comments: 3
Aging PCs Running Out-of-Date Software Bring Security Worries
Last Message: 1/24/2019
 |  Comments: 1
Kudos to the Unsung Rock Stars of Security
Last Message: 1/23/2019
 |  Comments: 3
The Rx for HIPAA Compliance in the Cloud
Last Message: 1/22/2019
 |  Comments: 1
Shadow IT, IaaS & the Security Imperative
Last Message: 1/22/2019
 |  Comments: 1
AppSec is Dead, but Software Security Is Alive & Well
Last Message: 1/22/2019
 |  Comments: 3
8 Tips for Monitoring Cloud Security
Last Message: 1/18/2019
 |  Comments: 1
Cyber Crooks Diversify Business with Multi-Intent Malware
Last Message: 1/18/2019
 |  Comments: 2
Security Concerns Limit Remote Work Opportunities
Last Message: 1/17/2019
 |  Comments: 3
Spending Spree: What's on Security Investors' Minds for 2019
Last Message: 1/17/2019
 |  Comments: 2
Who Takes Responsibility for Cyberattacks in the Cloud?
Last Message: 1/16/2019
 |  Comments: 2
8 Threats That Could Sink Your Company
Last Message: 1/16/2019
 |  Comments: 4
Fortnite Players at Risk Via Epic Games Vulnerability
Last Message: 1/16/2019
 |  Comments: 1
SCOTUS Says Suit Over Fiat-Chrysler Hack Can Move Forward
Last Message: 1/16/2019
 |  Comments: 3
Report: Bots Add Volume to Account Takeover Attacks
Last Message: 1/16/2019
 |  Comments: 1
7 Business Metrics Security Pros Need to Know
Last Message: 1/16/2019
 |  Comments: 5
Insider Threats & Insider Objections
Last Message: 1/15/2019
 |  Comments: 4
Amazon Slip-Up Shows How Much Alexa Really Knows
Last Message: 1/15/2019
 |  Comments: 3
Cryptographic Erasure: Moving Beyond Hard Drive Destruction
Last Message: 1/15/2019
 |  Comments: 3
When Cryptocurrency Falls, What Happens to Cryptominers?
Last Message: 1/15/2019
 |  Comments: 2
Criminals Move Markets to Remain in the Shadows
Last Message: 1/14/2019
 |  Comments: 2
Who Are You, Really? A Peek at the Future of Identity
Last Message: 1/14/2019
 |  Comments: 2
Government Shutdown Brings Certificate Lapse Woes
Last Message: 1/14/2019
 |  Comments: 2
Cybercrime Is World's Biggest Criminal Growth Industry
Last Message: 1/14/2019
 |  Comments: 2
Universities Get Schooled by Hackers
Last Message: 1/14/2019
 |  Comments: 3
Cartoon: The Soviet Threat
Last Message: 1/11/2019
 |  Comments: 6
The Containerization of Artificial Intelligence
Last Message: 1/11/2019
 |  Comments: 1
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/4/2020
Abandoned Apps May Pose Security Risk to Mobile Devices
Robert Lemos, Contributing Writer,  5/29/2020
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Peter Barker, Chief Product Officer at ForgeRock,  6/1/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: What? IT said I needed virus protection!
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13768
PUBLISHED: 2020-06-04
In MiniShare before 1.4.2, there is a stack-based buffer overflow via an HTTP PUT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018-19861, CVE-2018-19862, and CVE-2019-17601. NOTE: this product is discontinued.
CVE-2020-13849
PUBLISHED: 2020-06-04
The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the ability to establish new connections), as demonstrated by SlowITe.
CVE-2020-13848
PUBLISHED: 2020-06-04
Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
CVE-2020-11682
PUBLISHED: 2020-06-04
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A __RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request ...
CVE-2020-12847
PUBLISHED: 2020-06-04
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console� that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the applicat...