Dark Reading Article Boards

Message Boards posted in November 2013
"Hackers Threaten Destruction Of Obamacare Website"
Last Message: 11/30/2013
 |  Comments: 33
Authentication + Mobile Phone = Password Killer
Last Message: 11/29/2013
 |  Comments: 11
Spamhaus Shows What's Next For Block Listing
Last Message: 11/28/2013
 |  Comments: 12
Data Mining Snares Health Insurance Fraud
Last Message: 11/28/2013
 |  Comments: 1
NSA Surveillance: First Prism, Now Muscled Out Of Cloud
Last Message: 11/27/2013
 |  Comments: 2
Dataium Settles Browser History Sniffing Charges
Last Message: 11/27/2013
 |  Comments: 3
"Military Needs Better Battleground Biometrics"
Last Message: 11/25/2013
 |  Comments: 7
Understanding IT Risk Management In 4 Steps X 3
Last Message: 11/25/2013
 |  Comments: 10
Google Settles With State AGs On Privacy
Last Message: 11/23/2013
 |  Comments: 7
Mobile App Security: 5 Frequent Woes Persist
Last Message: 11/22/2013
 |  Comments: 4
Close HealthCare.gov For Security Reasons, Experts Say
Last Message: 11/22/2013
 |  Comments: 6
'i2Ninja' Trojan Taps Anonymized Darknet
Last Message: 11/22/2013
 |  Comments: 3
FBI Blames Federal Hacks On Anonymous Campaign
Last Message: 11/22/2013
 |  Comments: 9
"6 Worst Data Breaches Of 2011"
Last Message: 11/21/2013
 |  Comments: 2
The New Security Architecture
Last Message: 11/21/2013
 |  Comments: 14
Facebook Forces Some Users To Reset Passwords
Last Message: 11/20/2013
 |  Comments: 16
Cupid Concedes January Hack, 42 Million Passwords Stolen
Last Message: 11/20/2013
 |  Comments: 1
iPhone Photo Leads To Cybercrime Arrest
Last Message: 11/20/2013
 |  Comments: 7
BYOD: 'We Have Met the Enemy & He Is Us'
Last Message: 11/19/2013
 |  Comments: 6
Secure Your Network From Modern Hazards
Last Message: 11/19/2013
 |  Comments: 7
Kelihos Botnet Thrives, Despite Takedowns
Last Message: 11/18/2013
 |  Comments: 4
Higher Ed Must Lock Down Data Security
Last Message: 11/18/2013
 |  Comments: 4
IT Security Faces Big Data Skills and Resource Gap
Last Message: 11/18/2013
 |  Comments: 1
"Kelihos Botnet Thrives, Despite Takedowns"
Last Message: 11/18/2013
 |  Comments: 2
DDoS Attack: Preparing For The Inevitable
Last Message: 11/17/2013
 |  Comments: 1
LinkedIn Lesson: Detail Security First, Feature Fest Second
Last Message: 11/17/2013
 |  Comments: 1
Avoid The Bermuda Triangle of Cloud Security
Last Message: 11/16/2013
 |  Comments: 1


Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/14/2018
Intel Reveals New Spectre-Like Vulnerability
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/15/2018
Australian Teen Hacked Apple Network
Dark Reading Staff 8/17/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-15504
PUBLISHED: 2018-08-18
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. The server mishandles some HTTP request fields associated with time, which results in a NULL pointer dereference, as demonstrated by If-Modified-Since or If-Unmodified-Since with a month greater than 11.
CVE-2018-15505
PUBLISHED: 2018-08-18
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. An HTTP POST request with a specially crafted "Host" header field may cause a NULL pointer dereference and thus cause a denial of service, as demonstrated by the lack of a trailing ']' character in an IPv6 a...
CVE-2018-15492
PUBLISHED: 2018-08-18
A vulnerability in the lservnt.exe component of Sentinel License Manager version 8.5.3.35 (fixed in 8.5.3.2403) causes UDP amplification.
CVE-2018-15494
PUBLISHED: 2018-08-18
In Dojo Toolkit before 1.14, there is unescaped string injection in dojox/Grid/DataGrid.
CVE-2018-15495
PUBLISHED: 2018-08-18
/filemanager/upload.php in Responsive FileManager before 9.13.3 allows Directory Traversal and SSRF because the url parameter is used directly in a curl_exec call, as demonstrated by a file:///etc/passwd value.