Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in December 2016
Page 1 / 2   >   >>
"FinFisher Mobile Spyware Tracking Political Activists"
Last Message: 12/29/2016
 |  Comments: 2
AlienSpy RAT Resurfaces In Case Of Real-Life Political Intrigue
Last Message: 12/29/2016
 |  Comments: 1
Attribution & The Nation-State Malware Market
Last Message: 12/29/2016
 |  Comments: 1
Fileless Malware Takes 2016 By Storm
Last Message: 12/27/2016
 |  Comments: 1
Lithuania Charges Russia With Hacking Government Network
Last Message: 12/27/2016
 |  Comments: 2
Year 2016 Sees Record Deployment Of HTTPS By Firefox, Chrome
Last Message: 12/27/2016
 |  Comments: 1
A Brief History Of Ransomware
Last Message: 12/27/2016
 |  Comments: 3
How Security Scorecards Advance Security, Reduce Risk
Last Message: 12/26/2016
 |  Comments: 3
Has The Security Industry Failed Its Customers?
Last Message: 12/26/2016
 |  Comments: 5
Brute-Force Botnet Attacks Now Elude Volumetric Detection
Last Message: 12/26/2016
 |  Comments: 1
Ashley Madison To Pay $17.5 Million In Breach Settlement
Last Message: 12/25/2016
 |  Comments: 2
A Cybersecurity Christmas Story
Last Message: 12/24/2016
 |  Comments: 1
Full Nelson: The Growing Threat Of Cyberwarfare
Last Message: 12/22/2016
 |  Comments: 1
How Fusion-io Makes The World's Data Go Faster
Last Message: 12/22/2016
 |  Comments: 1
Man Pleads Guilty To Hacking Competitor's Business
Last Message: 12/22/2016
 |  Comments: 1
'Alice' Malware Loots ATMs
Last Message: 12/22/2016
 |  Comments: 1
Application Security Still Slows Developer Work
Last Message: 12/22/2016
 |  Comments: 2
How To Find, Hire The Next-Gen CISO
Last Message: 12/19/2016
 |  Comments: 1
Only 25% Companies Equipped To Handle Data Breaches
Last Message: 12/18/2016
 |  Comments: 4
Cybercrime Now Surpasses Traditional Crime In UK
Last Message: 12/18/2016
 |  Comments: 5
Its Time For Organizations To Automate Security
Last Message: 12/16/2016
 |  Comments: 1
5 Things Security Pros Need To Know About Machine Learning
Last Message: 12/15/2016
 |  Comments: 2
CIA: Russian Hackers Aimed To Help Trump Win
Last Message: 12/15/2016
 |  Comments: 13
The Coolest Hacks of 2016
Last Message: 12/14/2016
 |  Comments: 30
Dark Reading Radio: The Coolest Hacks Of 2016
Last Message: 12/14/2016
 |  Comments: 2
Pay Ransom Or Infect Others!
Last Message: 12/14/2016
 |  Comments: 3
Adobe To Pay $1 Million Compensation In Data Breach Case
Last Message: 12/12/2016
 |  Comments: 5
Ransomware Surveys Fill In Scope, Scale of Extortion Epidemic
Last Message: 12/12/2016
 |  Comments: 27
Time For Security & Privacy To Come Out Of Their Silos
Last Message: 12/11/2016
 |  Comments: 2
Survey Stresses Importance Of Securing The Internet of Things
Last Message: 12/10/2016
 |  Comments: 2
Phishing Services Reap Twice The Profit For Attackers
Last Message: 12/9/2016
 |  Comments: 1
Michigan High School Hosts New Cybersecurity Training Facility
Last Message: 12/9/2016
 |  Comments: 1
Holiday Weekend Online Payment Card Fraud 20% Higher In 2016
Last Message: 12/9/2016
 |  Comments: 1
2016's 7 Worst DDoS Attacks So Far
Last Message: 12/8/2016
 |  Comments: 3
'Root' & The New Age Of IoT-Based DDoS Attacks
Last Message: 12/8/2016
 |  Comments: 1
From Carna To Mirai: Recovering From A Lost Opportunity
Last Message: 12/8/2016
 |  Comments: 1
Fiat Chrysler Launches Bug Bounty Program
Last Message: 12/8/2016
 |  Comments: 2
Crypto Ransomware Officially Eclipses Screen-Blocker Ransomware
Last Message: 12/8/2016
 |  Comments: 2
Hacker Of Celeb Emails Goes To Jail For Five Years
Last Message: 12/8/2016
 |  Comments: 1
PoisonTap USB Device Can Hack A Locked PC In A Minute
Last Message: 12/7/2016
 |  Comments: 1
DMARC Continues To Confound Users, Report Says
Last Message: 12/7/2016
 |  Comments: 2
Top 10 Web Hacking Techniques For 2015
Last Message: 12/6/2016
 |  Comments: 1
Reality Check: Getting Serious About IoT Security
Last Message: 12/6/2016
 |  Comments: 2
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/4/2020
Abandoned Apps May Pose Security Risk to Mobile Devices
Robert Lemos, Contributing Writer,  5/29/2020
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Peter Barker, Chief Product Officer at ForgeRock,  6/1/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: What? IT said I needed virus protection!
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13768
PUBLISHED: 2020-06-04
In MiniShare before 1.4.2, there is a stack-based buffer overflow via an HTTP PUT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018-19861, CVE-2018-19862, and CVE-2019-17601. NOTE: this product is discontinued.
CVE-2020-13849
PUBLISHED: 2020-06-04
The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the ability to establish new connections), as demonstrated by SlowITe.
CVE-2020-13848
PUBLISHED: 2020-06-04
Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
CVE-2020-11682
PUBLISHED: 2020-06-04
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A __RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request ...
CVE-2020-12847
PUBLISHED: 2020-06-04
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console� that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the applicat...