Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in October 2015
Page 1 / 2   >   >>
Target Breach: Why Smartcards Wont Stop Hackers
Last Message: 10/31/2015
 |  Comments: 21
CrowdStrike Spots Chinese APTs Targeting US Firms Post-Pact
Last Message: 10/30/2015
 |  Comments: 1
Mandia: US-China No-Hack Pact Could Be Game Changer
Last Message: 10/30/2015
 |  Comments: 3
Chinese Military Behind South China Sea Cyber Espionage Attacks
Last Message: 10/30/2015
 |  Comments: 2
Why China Wants Your Sensitive Data
Last Message: 10/30/2015
 |  Comments: 18
Millennials Not Pursuing Cybersecurity Careers
Last Message: 10/30/2015
 |  Comments: 22
Startup 'Stealth Worker' Matches Businesses With Security Talent
Last Message: 10/30/2015
 |  Comments: 3
Endpoint Security: Putting The Focus On What Matters
Last Message: 10/29/2015
 |  Comments: 1
Digital Certificate Security Fail
Last Message: 10/29/2015
 |  Comments: 1
The Internet of Things: Its All About Trust
Last Message: 10/28/2015
 |  Comments: 1
State Of Employee Security Behavior
Last Message: 10/27/2015
 |  Comments: 2
Passing the Sniff Test: Security Metrics and Measures
Last Message: 10/26/2015
 |  Comments: 2
Attackers Demand Ransom Following Massive Hack on TalkTalk
Last Message: 10/26/2015
 |  Comments: 1
Why DevOps Fails At Application Security
Last Message: 10/24/2015
 |  Comments: 3
Next On Dark Reading Radio: Endpoint Security Transformed
Last Message: 10/24/2015
 |  Comments: 1
Undermining Security By Attacking Computer Clocks
Last Message: 10/23/2015
 |  Comments: 1
New Technology Won't Remove Endpoint From The Bullseye
Last Message: 10/23/2015
 |  Comments: 1
Likeliest Fraudsters Are, Or Claim To Be, 85-90 Years Old
Last Message: 10/22/2015
 |  Comments: 1
Survey Shows Little Accord On Responsibility For Cloud Security
Last Message: 10/21/2015
 |  Comments: 3
From 55 Cents to $1,200: The Value Chain For Stolen Data
Last Message: 10/21/2015
 |  Comments: 2
Endpoint Security Transformed
Last Message: 10/21/2015
 |  Comments: 54
Building A Winning Security Team From The Top Down
Last Message: 10/20/2015
 |  Comments: 1
Former White House Advisor: Marry Infosec To Economics
Last Message: 10/20/2015
 |  Comments: 3
Enterprises Are Leaving Cloud Security Policies To Chance
Last Message: 10/20/2015
 |  Comments: 1
Run, Jump, Shoot, Infect: Trojanized Games Invade Google Play
Last Message: 10/19/2015
 |  Comments: 4
Cybersecurity Insurance: 4 Practical Considerations
Last Message: 10/16/2015
 |  Comments: 3
Pawn Storm Flashes A New Flash Zero-Day
Last Message: 10/16/2015
 |  Comments: 2
The Evolution Of Malware
Last Message: 10/15/2015
 |  Comments: 1
Researchers Warn Against Continuing Use Of SHA-1 Crypto Standard
Last Message: 10/14/2015
 |  Comments: 2
Believe It Or Not, Millennials Do Care About Privacy, Security
Last Message: 10/14/2015
 |  Comments: 1
Japan's Cybercrime Underground On The Rise
Last Message: 10/14/2015
 |  Comments: 1
Why Everybody Loves (And Hates) Security
Last Message: 10/12/2015
 |  Comments: 2
'Evil' Kemoge Serves Androids Ads And Rootkits
Last Message: 10/12/2015
 |  Comments: 2
Jailbreaking Mobile Devices: Thats Not The Real Problem
Last Message: 10/12/2015
 |  Comments: 1
Healthcare Organizations Twice As Likely To Experience Data Theft
Last Message: 10/11/2015
 |  Comments: 12
The Unintended Attack Surface Of The Internet Of Things
Last Message: 10/11/2015
 |  Comments: 9
A Fathers Perspective On The Gender Gap In Cybersecurity
Last Message: 10/11/2015
 |  Comments: 18
Darknet Is Full Of Criminals & Governments Giving TOR A Bad Name
Last Message: 10/10/2015
 |  Comments: 4
State Trooper Vehicles Hacked
Last Message: 10/10/2015
 |  Comments: 22
Corporate VPNs In The Bullseye
Last Message: 10/9/2015
 |  Comments: 1
Data Deletion: A Disconnect Between Perception And Reality
Last Message: 10/9/2015
 |  Comments: 2
CISOs Spend Too Much Time On Tech, Not Enough On Strategy
Last Message: 10/7/2015
 |  Comments: 3
How Tactical Security Works At LinkedIn
Last Message: 10/6/2015
 |  Comments: 2
Nuclear Plants' Cybersecurity Is Bad, & Hard To Fix
Last Message: 10/5/2015
 |  Comments: 1
DHS Funds Project For Open Source 'Invisible Clouds'
Last Message: 10/5/2015
 |  Comments: 2
Page 1 / 2   >   >>


News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-21070
PUBLISHED: 2021-04-19
Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with permissions to write to the file system could leverage this vulnerability to escalate privileges.
CVE-2020-7851
PUBLISHED: 2021-04-19
Innorix Web-Based File Transfer Solution versuibs prior to and including 9.2.18.385 contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the internal method. A remote attacker could induce a user to access a crafted web page, causing damage...
CVE-2021-29399
PUBLISHED: 2021-04-19
XMB is vulnerable to cross-site scripting (XSS) due to inadequate filtering of BBCode input. This bug affects all versions of XMB. All XMB installations must be updated to versions 1.9.12.03 or 1.9.11.16.
CVE-2021-23381
PUBLISHED: 2021-04-18
This affects all versions of package killing. If attacker-controlled user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.
CVE-2021-23374
PUBLISHED: 2021-04-18
This affects all versions of package ps-visitor. If attacker-controlled user input is given to the kill function, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.