Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in November 2014
Page 1 / 2   >   >>
New Citadel Attack Targets Password Managers
Last Message: 11/30/2014
 |  Comments: 4
Apple, Security, And Disturbing Questions
Last Message: 11/30/2014
 |  Comments: 1
Cloud Security By The Numbers
Last Message: 11/27/2014
 |  Comments: 8
Don't Discount XSS Vulnerabilities
Last Message: 11/26/2014
 |  Comments: 4
Data Management Vs. Data Loss Prevention: Vive La Diffrence!
Last Message: 11/26/2014
 |  Comments: 4
New Attack Method Can Hit 95% Of iOS Devices
Last Message: 11/26/2014
 |  Comments: 8
Russian Cyber Espionage Under The Microscope
Last Message: 11/24/2014
 |  Comments: 8
Dairy Queen Breach Shines Light On Impact Of 3rd-Party Breaches
Last Message: 11/24/2014
 |  Comments: 7
Internet Architecture Board Calls For Net Encryption By Default
Last Message: 11/24/2014
 |  Comments: 10
New Certification Authority To Offer Free Certs For HTTPS
Last Message: 11/24/2014
 |  Comments: 5
The Week When Attackers Started Winning The War On Trust
Last Message: 11/24/2014
 |  Comments: 1
The Year Of The Retailer Data Breach
Last Message: 11/22/2014
 |  Comments: 4
ID Theft Monitoring Services: What You Need To Know
Last Message: 11/22/2014
 |  Comments: 3
FreedomPop Debuts Encrypted Snowden Phone
Last Message: 11/21/2014
 |  Comments: 5
How Enterprises Can Get The Most From Threat Intelligence
Last Message: 11/21/2014
 |  Comments: 2
Surveillance Cameras Next On The Insecure IoT List
Last Message: 11/21/2014
 |  Comments: 2
Retail Hacking: What To Expect This Holiday Season
Last Message: 11/21/2014
 |  Comments: 4
Killing Passwords: Dont Get A-Twitter Over Digits
Last Message: 11/21/2014
 |  Comments: 5
Enter The Digital Risk Officer
Last Message: 11/21/2014
 |  Comments: 1
The World's Most Hackable Cars
Last Message: 11/21/2014
 |  Comments: 25
Rethinking Security With A System Of 'Checks & Balances'
Last Message: 11/20/2014
 |  Comments: 7
Time To Turn The Tables On Attackers
Last Message: 11/20/2014
 |  Comments: 5
Microsoft Issues Emergency Patch Amid Targeted Attacks
Last Message: 11/19/2014
 |  Comments: 2
'Misdial Trap' Phone Scam Hits Financial Services
Last Message: 11/19/2014
 |  Comments: 2
Retail Hacking: What To Expect This Holiday Season
Last Message: 11/19/2014
 |  Comments: 95
Is Rogue IT Really A Problem?
Last Message: 11/18/2014
 |  Comments: 1
POS Malware Continues To Evolve
Last Message: 11/17/2014
 |  Comments: 7
'Bashlite' Malware Leverages ShellShock In BusyBox Attack
Last Message: 11/17/2014
 |  Comments: 4
NOAA Blames China In Hack, Breaks Disclosure Rules
Last Message: 11/17/2014
 |  Comments: 2
Smart Meter Hack Shuts Off The Lights
Last Message: 11/16/2014
 |  Comments: 5
Financial Breaches Show Trust Model Is Broken
Last Message: 11/15/2014
 |  Comments: 7
How I Became A CISO: Jennings Aske, Nuance Communications
Last Message: 11/15/2014
 |  Comments: 9
Stuxnet 'Patient Zero' Attack Targets Revealed
Last Message: 11/13/2014
 |  Comments: 5
How I Became A CISO: Quinn Shamblin, Boston University
Last Message: 11/13/2014
 |  Comments: 3
iOS 8 Vs. Android: How Secure Is Your Data?
Last Message: 11/13/2014
 |  Comments: 4
3 IT Practices That Add Risk To Cloud
Last Message: 11/13/2014
 |  Comments: 2
The Staggering Complexity of Application Security
Last Message: 11/12/2014
 |  Comments: 6
Drag Your Adolescent Incident-Response Program Into Adulthood
Last Message: 11/12/2014
 |  Comments: 2
Protecting the Customer-Facing Website
Last Message: 11/12/2014
 |  Comments: 28
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 9/21/2020
Cybersecurity Bounces Back, but Talent Still Absent
Simone Petrella, Chief Executive Officer, CyberVista,  9/16/2020
Meet the Computer Scientist Who Helped Push for Paper Ballots
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/16/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-14180
PUBLISHED: 2020-09-21
Affected versions of Atlassian Jira Service Desk Server and Data Center allow remote attackers authenticated as a non-administrator user to view Project Request-Types and Descriptions, via an Information Disclosure vulnerability in the editform request-type-fields resource. The affected versions are...
CVE-2020-14177
PUBLISHED: 2020-09-21
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to impact the application's availability via a Regex-based Denial of Service (DoS) vulnerability in JQL version searching. The affected versions are before version 7.13.16; from version 7.14.0 before 8.5.7; from versio...
CVE-2020-14179
PUBLISHED: 2020-09-21
Affected versions of Atlassian Jira Server and Data Center allow remote, unauthenticated attackers to view custom field names and custom SLA names via an Information Disclosure vulnerability in the /secure/QueryComponent!Default.jspa endpoint. The affected versions are before version 8.5.8, and from...
CVE-2020-25789
PUBLISHED: 2020-09-19
An issue was discovered in Tiny Tiny RSS (aka tt-rss) before 2020-09-16. The cached_url feature mishandles JavaScript inside an SVG document.
CVE-2020-25790
PUBLISHED: 2020-09-19
** DISPUTED ** Typesetter CMS 5.x through 5.1 allows admins to upload and execute arbitrary PHP code via a .php file inside a ZIP archive. NOTE: the vendor disputes the significance of this report because "admins are considered trustworthy"; however, the behavior "contradicts our secu...