Advertise

Dark Reading Article Boards

Message Boards posted in October 2017

View Content By Month

blog boards | reader boards | start a board | search

Page 1 / 2 > >>

Passwords Use Alone Still Trumps Multi-Factor Authentication
Last Message: 10/30/2017 | Comments: 1

Can Your Risk Assessment Stand Up Under Scrutiny?
Last Message: 10/30/2017 | Comments: 2

'Bad Rabbit' Ransomware Attacks Rock Russia, Ukraine - and Beyond
Last Message: 10/30/2017 | Comments: 12

Banks Start Broad Use of Blockchain, as JP Morgan, IBM Lead Way
Last Message: 10/29/2017 | Comments: 1

A Checklist for Securing the Internet of Things
Last Message: 10/28/2017 | Comments: 9

Malicious Minecraft Apps on Google Android Could Turn Devices into Bots
Last Message: 10/28/2017 | Comments: 2

IoT: Insecurity of Things or Internet of Threats?
Last Message: 10/28/2017 | Comments: 1

Why Patching Software Is Hard: Technical Challenges
Last Message: 10/27/2017 | Comments: 6

'Reaper' IoT Botnet Likely a DDoS-for-Hire Tool
Last Message: 10/27/2017 | Comments: 1

New Tool Debuts for Hacking Back at Hackers in Your Network
Last Message: 10/27/2017 | Comments: 2

IOTroop Botnet Hits Over a Million Organizations in Under 30 Days
Last Message: 10/26/2017 | Comments: 2

One-Third of Businesses Can't Keep Up with Cloud Security
Last Message: 10/26/2017 | Comments: 12

Finding Your Appetite for Security Automation (and Why That's Important)
Last Message: 10/25/2017 | Comments: 1

Google Play Bug Bounty Program Debuts
Last Message: 10/25/2017 | Comments: 1

New Cybercrime Insurance Policy Protects the 'High Net Worth' Set
Last Message: 10/25/2017 | Comments: 1

US Critical Infrastructure Target of Russia-Linked Cyberattacks
Last Message: 10/24/2017 | Comments: 1

Veracode: 75% Of Apps Have at Least One Vulnerability on Initial Scan
Last Message: 10/23/2017 | Comments: 2

'123456' Leads The Worst Passwords Of 2016
Last Message: 10/23/2017 | Comments: 4

20 Questions to Ask Yourself before Giving a Security Conference Talk
Last Message: 10/23/2017 | Comments: 4

Name That Toon: Screen Sharing
Last Message: 10/23/2017 | Comments: 127

Printers: The Weak Link in Enterprise Security
Last Message: 10/23/2017 | Comments: 6

The Future of Democratic Threats is Digital
Last Message: 10/22/2017 | Comments: 1

GDPR Compliance: 5 Early Steps to Get Laggards Going
Last Message: 10/21/2017 | Comments: 1

Game Change: Meet the Mach37 Fall Startups
Last Message: 10/20/2017 | Comments: 2

'Hacker Door' Backdoor Resurfaces as RAT a Decade Later
Last Message: 10/20/2017 | Comments: 2

IoT Deployment Security Top Concern for Enterprises
Last Message: 10/20/2017 | Comments: 1

Edward Snowden speaking at SecTor 2016
Last Message: 10/20/2017 | Comments: 2

InfoSec Pros Among Worst Offenders of Employer Snooping
Last Message: 10/19/2017 | Comments: 1

Why Security Leaders Can't Afford to Be Just 'Left-Brained'
Last Message: 10/18/2017 | Comments: 2

WannaCry Forces Honda to Take Production Plant Offline
Last Message: 10/17/2017 | Comments: 2

How Systematic Lying Can Improve Your Security
Last Message: 10/17/2017 | Comments: 3

Hyatt Hit With Another Credit Card Breach
Last Message: 10/17/2017 | Comments: 2

Tool For Cybersecurity Job Hunters Launched
Last Message: 10/17/2017 | Comments: 4

Key New Security Features in Android Oreo
Last Message: 10/17/2017 | Comments: 1

Best and Worst Security Functions to Outsource
Last Message: 10/14/2017 | Comments: 14

Kaspersky Lab and the AV Security Hole
Last Message: 10/14/2017 | Comments: 1

Equifax Now Faces Potential Breach of Customer Help Page
Last Message: 10/13/2017 | Comments: 2

7 SIEM Situations That Can Sack Security Teams
Last Message: 10/12/2017 | Comments: 2

BEC Attacks Don't Always Require Sophistication
Last Message: 10/12/2017 | Comments: 3

Home Routers Being Targeted in DNS Hijacking Attack, Trend Micro Says
Last Message: 10/12/2017 | Comments: 3

Russian Hackers Pilfered Data from NSA Contractor's Home Computer: Report
Last Message: 10/11/2017 | Comments: 14

Ransomware Sales on the Dark Web Spike 2,502% in 2017
Last Message: 10/11/2017 | Comments: 1

Crooks Hack Taiwan ATMs With 'Smartphone,' No Bank Card, Steal Millions
Last Message: 10/11/2017 | Comments: 1

Equifax Lands $7.25 Million Contract with IRS
Last Message: 10/11/2017 | Comments: 5

Microsoft Patches Windows Zero-Day Flaws Tied to DNSSEC
Last Message: 10/10/2017 | Comments: 1

Where Cybercriminals Go To Buy Your Stolen Data
Last Message: 10/10/2017 | Comments: 6

5 IT Practices That Put Enterprises at Risk
Last Message: 10/10/2017 | Comments: 5

Apple Shares More Data with US in First Half of 2017
Last Message: 10/10/2017 | Comments: 1

Endpoint Security Overload
Last Message: 10/10/2017 | Comments: 1

Rise in Insider Threats Drives Shift to Training, Data-Level Security
Last Message: 10/10/2017 | Comments: 2

blog boards | reader boards | start a board | search

Page 1 / 2 > >>

View Content by Month

[close this box]

Editors' Choice

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry

David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP, 7/9/2021

Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours

Robert Lemos, Contributing Writer, 7/7/2021

It's in the Game (but It Shouldn't Be)

Tal Memran, Cybersecurity Expert, CYE, 7/9/2021

Live Events

Webinars

Emerging Cybersecurity Technologies - A Dark Reading Mar 23 Event

Black Hat USA - August 5-10 - Learn More

Black Hat Asia - May 9-12 - Learn More

More Informa Tech Live Events

White Papers

Top Three Considerations To Build, Deploy, and Run Your Application Journey

Cloud Journey Adoption Stage: Securing Hybrid and Multi-cloud Environments

Cloud Journey Migration Stage: Adaptive Cloud Security

Attack Surface Management v2.0 by Brad LaPorte

What Elite Threat Hunters See that Others Miss

More White Papers

Cartoon

Latest Comment: I've heard of people walking right out the front door with entire servers...

Cartoon Archive

Current Issue

The 10 Most Impactful Types of Vulnerabilities for Enterprises Today

Managing system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

Incident Readiness and Building Response Playbook

In this special report, learn the Xs and Os of any good security incident readiness and response playbook.

Download Now!

Battle for the Endpoint

0 comments

How Enterprises are Developing Secure Applications

0 comments

Assessing Cybersecurity Risk in Today's Enterprises

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2023-1172
PUBLISHED: 2023-03-17

The Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the full name value in versions up to, and including, 21.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that w...

CVE-2023-1469
PUBLISHED: 2023-03-17

The WP Express Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the â€&tilde;pec_coupon[code]â€™ parameter in versions up to, and including, 2.2.8 due to insufficient input sanitization and output escaping. This makes it possible for authenti...

CVE-2023-1466
PUBLISHED: 2023-03-17

A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as critical. This issue affects the function view_student of the file admin/?page=students/view_student. The manipulation of the argument id with the input 3' AND (SELECT 2100 FROM (SELECT(...

CVE-2023-1467
PUBLISHED: 2023-03-17

A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file Master.php?f=delete_img of the component POST Parameter Handler. The manipulation of the argument path with the input C%3A%2Ffoo.txt le...

CVE-2023-1468
PUBLISHED: 2023-03-17

A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/?page=reports&date_from=2023-02-17&date_to=2023-03-17 of the component Report Handler. The manipula...

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]