Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in November 2020
Page 1 / 2   >   >>
Cartoon Contest: Gong Show
Last Message: 11/24/2020
 |  Comments: 4
How Industrial IoT Security Can Catch Up With OT/IT Convergence
Last Message: 11/24/2020
 |  Comments: 1
New 'CostaRicto' Hack-for-Hire Group Targets Global Businesses
Last Message: 11/24/2020
 |  Comments: 1
Manchester United Suffers Cyberattack
Last Message: 11/24/2020
 |  Comments: 1
As 'Anywhere Work' Evolves, Security Will Be Key Challenge
Last Message: 11/24/2020
 |  Comments: 1
New Proposed DNS Security Features Released
Last Message: 11/24/2020
 |  Comments: 3
10 Tips for More Secure Mobile Devices
Last Message: 11/23/2020
 |  Comments: 5
Critical Instagram Flaw Could Let Attackers Spy on Victims
Last Message: 11/23/2020
 |  Comments: 1
Vegas Casinos Face New Threat: Database Hackers
Last Message: 11/23/2020
 |  Comments: 1
Security Jobs With a Future -- And Ones on the Way Out
Last Message: 11/23/2020
 |  Comments: 1
Facebook Messenger Flaw Enabled Spying on Android Callees
Last Message: 11/22/2020
 |  Comments: 1
Latest Security News & Commentary about COVID-19
Last Message: 11/21/2020
 |  Comments: 23
A Call for Change in Physical Security
Last Message: 11/21/2020
 |  Comments: 4
6 Cybersecurity Lessons From 2020
Last Message: 11/20/2020
 |  Comments: 1
ISP Security: Do We Expect Too Much?
Last Message: 11/20/2020
 |  Comments: 1
"Hacking Higher Education"
Last Message: 11/20/2020
 |  Comments: 103
The Yellow Brick Road to Risk Management
Last Message: 11/19/2020
 |  Comments: 1
How to Identify Cobalt Strike on Your Network
Last Message: 11/19/2020
 |  Comments: 2
Trump Fires CISA Director Chris Krebs
Last Message: 11/19/2020
 |  Comments: 1
Cryptocurrency Scams Replacing Ransomware as Attackers' Fave
Last Message: 11/18/2020
 |  Comments: 3
Researchers Say They've Developed Fastest Open Source IDS/IPS
Last Message: 11/18/2020
 |  Comments: 1
Physical Security Has a Lot of Catching Up to Do
Last Message: 11/17/2020
 |  Comments: 1
Breakdown of a Break-in: A Manufacturer's Ransomware Response
Last Message: 11/17/2020
 |  Comments: 1
5 Steps Every Company Should Take to Avoid Data Theft Risk
Last Message: 11/17/2020
 |  Comments: 1
We Secured the Election. Now How Do We Secure Trust in Results?
Last Message: 11/16/2020
 |  Comments: 1
6 Ways Passwords Fail Basic Security Tests
Last Message: 11/16/2020
 |  Comments: 3
Manufacturing Sees Rising Ransomware Threat
Last Message: 11/16/2020
 |  Comments: 1
Hacking Group LulzSec Denies Arrest Report
Last Message: 11/15/2020
 |  Comments: 7
Researchers Find 24 'Dangerous' Android Apps with 382M Installs
Last Message: 11/15/2020
 |  Comments: 2
How Hackers Blend Attack Methods to Bypass MFA
Last Message: 11/15/2020
 |  Comments: 4
Cartoon Contest: Second Wind
Last Message: 11/15/2020
 |  Comments: 12
Why Social Media Sites Are The New Cyber Weapons Of Choice
Last Message: 11/14/2020
 |  Comments: 33
Cloud Usage, Biometrics Surge As Remote Work Grows Permanent
Last Message: 11/13/2020
 |  Comments: 1
Ransomware Trains Its Sights on Cloud Providers
Last Message: 11/13/2020
 |  Comments: 17
Cado Security Gets $1.5 Million Seed
Last Message: 11/11/2020
 |  Comments: 6
Data Privacy Gets Solid Upgrade With Early Adopters
Last Message: 11/11/2020
 |  Comments: 1
Google Removes 500 Android Apps Following Spyware Scare
Last Message: 11/11/2020
 |  Comments: 3
Insecure APIs a Growing Risk for Organizations
Last Message: 11/10/2020
 |  Comments: 1
The Oracle-Walmart-TikTok Deal Is Not Enough
Last Message: 11/9/2020
 |  Comments: 1
5 Big Lessons from the Work-from-Home SOC
Last Message: 11/9/2020
 |  Comments: 1
IBM Builds 'SOC on Wheels' to Drive Cybersecurity Training
Last Message: 11/9/2020
 |  Comments: 1
NSS Labs' Abrupt Shutdown Leaves Many Unanswered Questions
Last Message: 11/7/2020
 |  Comments: 1
Rising Ransomware Breaches Underscore Cybersecurity Failures
Last Message: 11/7/2020
 |  Comments: 3
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 11/19/2020
New Proposed DNS Security Features Released
Kelly Jackson Higgins, Executive Editor at Dark Reading,  11/19/2020
How to Identify Cobalt Strike on Your Network
Zohar Buber, Security Analyst,  11/18/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-25159
PUBLISHED: 2020-11-24
499ES EtherNet/IP (ENIP) Adaptor Source Code is vulnerable to a stack-based buffer overflow, which may allow an attacker to send a specially crafted packet that may result in a denial-of-service condition or code execution.
CVE-2020-25654
PUBLISHED: 2020-11-24
An ACL bypass flaw was found in pacemaker before 1.1.24-rc1 and 2.0.5-rc2. An attacker having a local account on the cluster and in the haclient group could use IPC communication with various daemons directly to perform certain tasks that they would be prevented by ACLs from doing if they went throu...
CVE-2020-28329
PUBLISHED: 2020-11-24
Barco wePresent WiPG-1600W firmware includes a hardcoded API account and password that is discoverable by inspecting the firmware image. A malicious actor could use this password to access authenticated, administrative functions in the API. Affected Version(s): 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19.
CVE-2020-29053
PUBLISHED: 2020-11-24
HRSALE 2.0.0 allows XSS via the admin/project/projects_calendar set_date parameter.
CVE-2020-25640
PUBLISHED: 2020-11-24
A flaw was discovered in WildFly before 21.0.0.Final where, Resource adapter logs plain text JMS password at warning level on connection error, inserting sensitive information in the log file.