Dark Reading Article Boards

Message Boards posted in March 2014
Outlook Users Face Zero-Day Attack
Last Message: 3/31/2014
 |  Comments: 7
Why FIDO Alliance Standards Will Kill Passwords
Last Message: 3/31/2014
 |  Comments: 9
Experts Question Security Payoff Of Sending Apps To The Cloud
Last Message: 3/31/2014
 |  Comments: 4
Safe Harbor, Lavabit & The Future Of Cloud Security
Last Message: 3/31/2014
 |  Comments: 1
Android Apps Hide Crypto-Currency Mining Malware
Last Message: 3/30/2014
 |  Comments: 1
Mt. Gox Chief Stole 100,000 Bitcoins, Hackers Claim
Last Message: 3/30/2014
 |  Comments: 6
Attacks Rise On Network 'Blind' Spot
Last Message: 3/28/2014
 |  Comments: 4
Securing Software Requires Design, Testing, And Improvement
Last Message: 3/28/2014
 |  Comments: 5
Snowden: I'd Do It Again
Last Message: 3/27/2014
 |  Comments: 10
Will Target Face FTC Probe?
Last Message: 3/27/2014
 |  Comments: 9
MACH37 Funds Six New Security Startups
Last Message: 3/27/2014
 |  Comments: 1
Facebook Builds Its Own Threat Modeling System
Last Message: 3/27/2014
 |  Comments: 4
March Madness: Online Privacy Edition
Last Message: 3/27/2014
 |  Comments: 1
Don't Put Too Much Faith in Cyberinsurance
Last Message: 3/26/2014
 |  Comments: 1
Target Ignored Data Breach Alarms
Last Message: 3/24/2014
 |  Comments: 21
Luck O' The Irish: Caption Contest Winners Announced
Last Message: 3/24/2014
 |  Comments: 4
Symantec Fires CEO In Surprise Move
Last Message: 3/24/2014
 |  Comments: 10
Many Businesses Fail To Disclose Data Breaches
Last Message: 3/22/2014
 |  Comments: 2
Attackers Hit Clearinghouse Selling Stolen Target Data
Last Message: 3/21/2014
 |  Comments: 4
Name That Cartoon: Luck O' The Irish
Last Message: 3/20/2014
 |  Comments: 101
Voice, Proximity Key To Cutting
E-Payment Fraud

Last Message: 3/18/2014
 |  Comments: 2
Experian ID Theft Exposed 200M Consumer Records
Last Message: 3/18/2014
 |  Comments: 9
DDoS Attacks Hit NATO, Ukrainian Media Outlets
Last Message: 3/18/2014
 |  Comments: 3
7 Behaviors That Could Indicate A Security Breach
Last Message: 3/17/2014
 |  Comments: 1
DDoS Attack Hits 400 Gbit/s, Breaks Record
Last Message: 3/15/2014
 |  Comments: 6
Top 3 Tools For Busting Through Firewalls
Last Message: 3/14/2014
 |  Comments: 1
Your Cloud Was Breached. Now What?
Last Message: 3/14/2014
 |  Comments: 5
IT Generations: Communicating Across The Great Divide
Last Message: 3/14/2014
 |  Comments: 6
The Case For Browser-Based Access Controls
Last Message: 3/14/2014
 |  Comments: 2
Bitcoin, Meet Darwin: Crypto Currency's Future
Last Message: 3/13/2014
 |  Comments: 9
Can We Control Our Digital Identities?
Last Message: 3/12/2014
 |  Comments: 4
Retail Industry May Pool Intel To Stop Breaches
Last Message: 3/12/2014
 |  Comments: 2
Data Security: 4 Questions For Road Warriors
Last Message: 3/12/2014
 |  Comments: 25
Target Breach: Phishing Attack Implicated
Last Message: 3/11/2014
 |  Comments: 12
Target CIO's Resignation: 7 Questions
Last Message: 3/10/2014
 |  Comments: 10
Target Seeks New CIO
Last Message: 3/9/2014
 |  Comments: 11
Name That Toon, Win a Prize
Last Message: 3/7/2014
 |  Comments: 99
Data Breach: Persistence Gives Hackers the Upper Hand
Last Message: 3/7/2014
 |  Comments: 2
Bitcoin Heists Cause More Trouble
Last Message: 3/6/2014
 |  Comments: 2
Cryptocat Wins Apple Approval
Last Message: 3/6/2014
 |  Comments: 1
Malware-Lobbing Hackers Seize 300,000 Routers
Last Message: 3/5/2014
 |  Comments: 1
Mt. Gox Bitcoin Meltdown: What Went Wrong
Last Message: 3/5/2014
 |  Comments: 3
DDoS Attack! Is Regulation The Answer?
Last Message: 3/3/2014
 |  Comments: 9
"Hackers Hold Australian Medical Records Ransom"
Last Message: 3/2/2014
 |  Comments: 6
Yahoo Japan Data Breach: 22M Accounts Exposed
Last Message: 3/1/2014
 |  Comments: 1


13 Russians Indicted for Massive Operation to Sway US Election
Kelly Sheridan, Associate Editor, Dark Reading,  2/16/2018
Facebook Aims to Make Security More Social
Kelly Sheridan, Associate Editor, Dark Reading,  2/20/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
How to Cope with the IT Security Skills Shortage
Most enterprises don't have all the in-house skills they need to meet the rising threat from online attackers. Here are some tips on ways to beat the shortage.
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.