Advertise

Dark Reading Article Boards

Message Boards posted in November 2014

View Content By Month

blog boards | reader boards | start a board | search

Page 1 / 2 > >>

New Citadel Attack Targets Password Managers
Last Message: 11/30/2014 | Comments: 4

Apple, Security, And Disturbing Questions
Last Message: 11/30/2014 | Comments: 1

Cloud Security By The Numbers
Last Message: 11/27/2014 | Comments: 8

Don't Discount XSS Vulnerabilities
Last Message: 11/26/2014 | Comments: 4

Korean-Speaking Cyberspies Targeting Corporate Execs Via Hotel Networks
Last Message: 11/26/2014 | Comments: 5

Data Management Vs. Data Loss Prevention: Vive La Différence!
Last Message: 11/26/2014 | Comments: 4

Underground Carders Abusing Charities To Verify Stolen Payment Data
Last Message: 11/26/2014 | Comments: 2

Newly Revealed Cyber Espionage Attack 'More Complex' Than Stuxnet, Flame
Last Message: 11/26/2014 | Comments: 7

New Attack Method Can Hit 95% Of iOS Devices
Last Message: 11/26/2014 | Comments: 8

Russian Cyber Espionage Under The Microscope
Last Message: 11/24/2014 | Comments: 8

Dairy Queen Breach Shines Light On Impact Of 3rd-Party Breaches
Last Message: 11/24/2014 | Comments: 7

Internet Architecture Board Calls For Net Encryption By Default
Last Message: 11/24/2014 | Comments: 10

New Certification Authority To Offer Free Certs For HTTPS
Last Message: 11/24/2014 | Comments: 5

The Week When Attackers Started Winning The War On Trust
Last Message: 11/24/2014 | Comments: 1

The Year Of The Retailer Data Breach
Last Message: 11/22/2014 | Comments: 4

ID Theft Monitoring Services: What You Need To Know
Last Message: 11/22/2014 | Comments: 3

FreedomPop Debuts Encrypted Snowden Phone
Last Message: 11/21/2014 | Comments: 5

How Enterprises Can Get The Most From Threat Intelligence
Last Message: 11/21/2014 | Comments: 2

When Every Minute Counts: Fighting Advanced Threats With Real-Time SIEM
Last Message: 11/21/2014 | Comments: 3

Surveillance Cameras Next On The Insecure IoT List
Last Message: 11/21/2014 | Comments: 2

Retail Hacking: What To Expect This Holiday Season
Last Message: 11/21/2014 | Comments: 4

Killing Passwords: Don’t Get A-Twitter Over ‘Digits’
Last Message: 11/21/2014 | Comments: 5

Enter The Digital Risk Officer
Last Message: 11/21/2014 | Comments: 1

The World's Most Hackable Cars
Last Message: 11/21/2014 | Comments: 25

Rethinking Security With A System Of 'Checks & Balances'
Last Message: 11/20/2014 | Comments: 7

Time To Turn The Tables On Attackers
Last Message: 11/20/2014 | Comments: 5

When Every Minute Counts: Fighting Advanced Threats With Real-Time SIEM
Last Message: 11/19/2014 | Comments: 1

Microsoft Issues Emergency Patch Amid Targeted Attacks
Last Message: 11/19/2014 | Comments: 2

'Misdial Trap' Phone Scam Hits Financial Services
Last Message: 11/19/2014 | Comments: 2

Retail Hacking: What To Expect This Holiday Season
Last Message: 11/19/2014 | Comments: 95

State Dept. Breach Heightens Concerns Over Resilience Of Government Networks
Last Message: 11/19/2014 | Comments: 6

The Enemy Who Is Us: DoD Puts Contractors On Notice For Insider Threats
Last Message: 11/18/2014 | Comments: 5

Is Rogue IT Really A Problem?
Last Message: 11/18/2014 | Comments: 1

POS Malware Continues To Evolve
Last Message: 11/17/2014 | Comments: 7

'Bashlite' Malware Leverages ShellShock In BusyBox Attack
Last Message: 11/17/2014 | Comments: 4

NOAA Blames China In Hack, Breaks Disclosure Rules
Last Message: 11/17/2014 | Comments: 2

Smart Meter Hack Shuts Off The Lights
Last Message: 11/16/2014 | Comments: 5

Financial Breaches Show ‘Trust Model’ Is Broken
Last Message: 11/15/2014 | Comments: 7

How I Became A CISO: Jennings Aske, Nuance Communications
Last Message: 11/15/2014 | Comments: 9

Expired Antivirus Software No. 1 Cause Of Unprotected Windows 8 PCs
Last Message: 11/14/2014 | Comments: 2

Stuxnet 'Patient Zero' Attack Targets Revealed
Last Message: 11/13/2014 | Comments: 5

How I Became A CISO: Quinn Shamblin, Boston University
Last Message: 11/13/2014 | Comments: 3

Small-to-Midsized Businesses Targeted In More Invasive Cyberattacks
Last Message: 11/13/2014 | Comments: 7

US Postal Service Suspends Telecommuting Following Massive Data Breach
Last Message: 11/13/2014 | Comments: 4

iOS 8 Vs. Android: How Secure Is Your Data?
Last Message: 11/13/2014 | Comments: 4

Most Effective CISOs Have Business Background, Says IBM Security Leader
Last Message: 11/13/2014 | Comments: 8

3 IT Practices That Add Risk To Cloud
Last Message: 11/13/2014 | Comments: 2

The Staggering Complexity of Application Security
Last Message: 11/12/2014 | Comments: 6

Drag Your Adolescent Incident-Response Program Into Adulthood
Last Message: 11/12/2014 | Comments: 2

Protecting the Customer-Facing Website
Last Message: 11/12/2014 | Comments: 28

blog boards | reader boards | start a board | search

Page 1 / 2 > >>

View Content by Month

[close this box]

Editors' Choice

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry

David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP, 7/9/2021

Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours

Robert Lemos, Contributing Writer, 7/7/2021

It's in the Game (but It Shouldn't Be)

Tal Memran, Cybersecurity Expert, CYE, 7/9/2021

Live Events

Webinars

Emerging Cybersecurity Technologies - A Dark Reading Mar 23 Event

Black Hat USA - August 5-10 - Learn More

Black Hat Asia - May 9-12 - Learn More

More Informa Tech Live Events

White Papers

Top Three Considerations To Build, Deploy, and Run Your Application Journey

Cloud Journey Adoption Stage: Securing Hybrid and Multi-cloud Environments

Cloud Journey Migration Stage: Adaptive Cloud Security

Attack Surface Management v2.0 by Brad LaPorte

What Elite Threat Hunters See that Others Miss

More White Papers

Cartoon

Latest Comment: I've heard of people walking right out the front door with entire servers...

Cartoon Archive

Current Issue

The 10 Most Impactful Types of Vulnerabilities for Enterprises Today

Managing system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

Incident Readiness and Building Response Playbook

In this special report, learn the Xs and Os of any good security incident readiness and response playbook.

Download Now!

Battle for the Endpoint

0 comments

How Enterprises are Developing Secure Applications

0 comments

Assessing Cybersecurity Risk in Today's Enterprises

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2023-1172
PUBLISHED: 2023-03-17

The Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the full name value in versions up to, and including, 21.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that w...

CVE-2023-1469
PUBLISHED: 2023-03-17

The WP Express Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the â€&tilde;pec_coupon[code]â€™ parameter in versions up to, and including, 2.2.8 due to insufficient input sanitization and output escaping. This makes it possible for authenti...

CVE-2023-1466
PUBLISHED: 2023-03-17

A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as critical. This issue affects the function view_student of the file admin/?page=students/view_student. The manipulation of the argument id with the input 3' AND (SELECT 2100 FROM (SELECT(...

CVE-2023-1467
PUBLISHED: 2023-03-17

A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file Master.php?f=delete_img of the component POST Parameter Handler. The manipulation of the argument path with the input C%3A%2Ffoo.txt le...

CVE-2023-1468
PUBLISHED: 2023-03-17

A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/?page=reports&date_from=2023-02-17&date_to=2023-03-17 of the component Report Handler. The manipula...

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]