Dark Reading Article Boards

Message Boards posted in October 2015
Page 1 / 2   >   >>
Target Breach: Why Smartcards Wont Stop Hackers
Last Message: 10/31/2015
 |  Comments: 21
CrowdStrike Spots Chinese APTs Targeting US Firms Post-Pact
Last Message: 10/30/2015
 |  Comments: 1
Mandia: US-China No-Hack Pact Could Be Game Changer
Last Message: 10/30/2015
 |  Comments: 3
Chinese Military Behind South China Sea Cyber Espionage Attacks
Last Message: 10/30/2015
 |  Comments: 2
Why China Wants Your Sensitive Data
Last Message: 10/30/2015
 |  Comments: 18
Millennials Not Pursuing Cybersecurity Careers
Last Message: 10/30/2015
 |  Comments: 22
Startup 'Stealth Worker' Matches Businesses With Security Talent
Last Message: 10/30/2015
 |  Comments: 3
Endpoint Security: Putting The Focus On What Matters
Last Message: 10/29/2015
 |  Comments: 1
Digital Certificate Security Fail
Last Message: 10/29/2015
 |  Comments: 1
The Internet of Things: Its All About Trust
Last Message: 10/28/2015
 |  Comments: 1
State Of Employee Security Behavior
Last Message: 10/27/2015
 |  Comments: 2
Passing the Sniff Test: Security Metrics and Measures
Last Message: 10/26/2015
 |  Comments: 2
Attackers Demand Ransom Following Massive Hack on TalkTalk
Last Message: 10/26/2015
 |  Comments: 1
Why DevOps Fails At Application Security
Last Message: 10/24/2015
 |  Comments: 3
Next On Dark Reading Radio: Endpoint Security Transformed
Last Message: 10/24/2015
 |  Comments: 1
Undermining Security By Attacking Computer Clocks
Last Message: 10/23/2015
 |  Comments: 1
New Technology Won't Remove Endpoint From The Bullseye
Last Message: 10/23/2015
 |  Comments: 1
Likeliest Fraudsters Are, Or Claim To Be, 85-90 Years Old
Last Message: 10/22/2015
 |  Comments: 1
Survey Shows Little Accord On Responsibility For Cloud Security
Last Message: 10/21/2015
 |  Comments: 3
From 55 Cents to $1,200: The Value Chain For Stolen Data
Last Message: 10/21/2015
 |  Comments: 2
Endpoint Security Transformed
Last Message: 10/21/2015
 |  Comments: 54
Building A Winning Security Team From The Top Down
Last Message: 10/20/2015
 |  Comments: 1
Former White House Advisor: Marry Infosec To Economics
Last Message: 10/20/2015
 |  Comments: 3
Enterprises Are Leaving Cloud Security Policies To Chance
Last Message: 10/20/2015
 |  Comments: 1
Run, Jump, Shoot, Infect: Trojanized Games Invade Google Play
Last Message: 10/19/2015
 |  Comments: 4
Cybersecurity Insurance: 4 Practical Considerations
Last Message: 10/16/2015
 |  Comments: 3
Pawn Storm Flashes A New Flash Zero-Day
Last Message: 10/16/2015
 |  Comments: 2
The Evolution Of Malware
Last Message: 10/15/2015
 |  Comments: 1
Researchers Warn Against Continuing Use Of SHA-1 Crypto Standard
Last Message: 10/14/2015
 |  Comments: 2
Believe It Or Not, Millennials Do Care About Privacy, Security
Last Message: 10/14/2015
 |  Comments: 1
Japan's Cybercrime Underground On The Rise
Last Message: 10/14/2015
 |  Comments: 1
Why Everybody Loves (And Hates) Security
Last Message: 10/12/2015
 |  Comments: 2
'Evil' Kemoge Serves Androids Ads And Rootkits
Last Message: 10/12/2015
 |  Comments: 2
Jailbreaking Mobile Devices: Thats Not The Real Problem
Last Message: 10/12/2015
 |  Comments: 1
Healthcare Organizations Twice As Likely To Experience Data Theft
Last Message: 10/11/2015
 |  Comments: 12
The Unintended Attack Surface Of The Internet Of Things
Last Message: 10/11/2015
 |  Comments: 9
A Fathers Perspective On The Gender Gap In Cybersecurity
Last Message: 10/11/2015
 |  Comments: 18
Darknet Is Full Of Criminals & Governments Giving TOR A Bad Name
Last Message: 10/10/2015
 |  Comments: 4
State Trooper Vehicles Hacked
Last Message: 10/10/2015
 |  Comments: 22
Corporate VPNs In The Bullseye
Last Message: 10/9/2015
 |  Comments: 1
Data Deletion: A Disconnect Between Perception And Reality
Last Message: 10/9/2015
 |  Comments: 2
CISOs Spend Too Much Time On Tech, Not Enough On Strategy
Last Message: 10/7/2015
 |  Comments: 3
How Tactical Security Works At LinkedIn
Last Message: 10/6/2015
 |  Comments: 2
Nuclear Plants' Cybersecurity Is Bad, & Hard To Fix
Last Message: 10/5/2015
 |  Comments: 1
DHS Funds Project For Open Source 'Invisible Clouds'
Last Message: 10/5/2015
 |  Comments: 2
Page 1 / 2   >   >>


Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/14/2018
Australian Teen Hacked Apple Network
Dark Reading Staff 8/17/2018
Data Privacy Careers Are Helping to Close the IT Gender Gap
Dana Simberkoff, Chief Risk, Privacy, and Information Security Officer, AvePoint, Inc.,  8/20/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-17305
PUBLISHED: 2018-08-21
Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a Bleichenbacher Oracle vulnerability in the IPSEC IKEv1 implementations. Remote attackers can decrypt IPSEC tunnel ciphertext data by leveraging a Bleichenbacher R...
CVE-2017-17311
PUBLISHED: 2018-08-21
Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a DoS vulnerability in the IPSEC IKEv1 implementations of Huawei Firewall products. Due to improper handling of the malformed messages, an attacker may sent crafted...
CVE-2017-17312
PUBLISHED: 2018-08-21
Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a DoS vulnerability in the IPSEC IKEv1 implementations of Huawei Firewall products. Due to improper handling of the malformed messages, an attacker may sent crafted...
CVE-2018-12115
PUBLISHED: 2018-08-21
In all versions of Node.js prior to 6.14.4, 8.11.4 and 10.9.0 when used with UCS-2 encoding (recognized by Node.js under the names `'ucs2'`, `'ucs-2'`, `'utf16le'` and `'utf-16le'`), `Buffer#write()` can be abused to write outside of the bounds of a single `Buffer`. Writes that start from the second...
CVE-2018-7166
PUBLISHED: 2018-08-21
In all versions of Node.js 10 prior to 10.9.0, an argument processing flaw can cause `Buffer.alloc()` to return uninitialized memory. This method is intended to be safe and only return initialized, or cleared, memory. The third argument specifying `encoding` can be passed as a number, this is misint...