Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in April 2016
Page 1 / 2   >   >>
San Bernardino iPhone Hack Tool Cost FBI Under $1 Million
Last Message: 4/30/2016
 |  Comments: 2
New Kid On The Block: Cyber Threat Analyst
Last Message: 4/29/2016
 |  Comments: 1
Mexican Voter Database Exposed
Last Message: 4/28/2016
 |  Comments: 7
Pro-ISIS Hacking Groups Growing, Unifying, But Still Unskilled
Last Message: 4/28/2016
 |  Comments: 1
10 Questions To Ask Yourself About Securing Big Data
Last Message: 4/27/2016
 |  Comments: 1
'Dogspectus' Breaks New Ground For Android Ransomware
Last Message: 4/27/2016
 |  Comments: 1
SWIFT Issues Warning About Multiple Security Incidents
Last Message: 4/27/2016
 |  Comments: 1
FBI Rules Out Disclosing iPhone Software Flaw
Last Message: 4/27/2016
 |  Comments: 1
Extortionists Demand Ransom In 'Empty' DDoS Threats
Last Message: 4/26/2016
 |  Comments: 2
US Cyber Command Hacks ISIS
Last Message: 4/26/2016
 |  Comments: 1
Be Prepared: How Proactivity Improves Cybersecurity Defense
Last Message: 4/25/2016
 |  Comments: 2
Is Cloud Security An Exaggerated Concern?
Last Message: 4/25/2016
 |  Comments: 1
Cyber Thieves Raid School District Bank Account
Last Message: 4/23/2016
 |  Comments: 1
SpyeEye Creators Sentenced To Long Prison Terms
Last Message: 4/22/2016
 |  Comments: 1
MIT Launches Bug Bounty Program
Last Message: 4/21/2016
 |  Comments: 2
9 Years Prison, $1.7 Million Fine For Malicious Insider
Last Message: 4/21/2016
 |  Comments: 3
Creepy New Ransomware Riffs Off Popular Horror Film
Last Message: 4/21/2016
 |  Comments: 7
Privacy Debate: Apple & Google Today; AWS or Azure Tomorrow?
Last Message: 4/20/2016
 |  Comments: 1
Google Finds 800,000 Websites Breached Worldwide
Last Message: 4/18/2016
 |  Comments: 2
Dark Reading Radio: Advancing Your Security Career
Last Message: 4/17/2016
 |  Comments: 1
PowerShell Increasingly Being Used To Hide Malicious Activity
Last Message: 4/16/2016
 |  Comments: 1
How To Prepare For A DDoS Attack: 10 Steps
Last Message: 4/15/2016
 |  Comments: 2
Java Deserialization: Running Faster Than a Bear
Last Message: 4/15/2016
 |  Comments: 3
'Threat Hunting' On The Rise
Last Message: 4/15/2016
 |  Comments: 1
Law Firms Present Tempting Targets For Attackers
Last Message: 4/14/2016
 |  Comments: 2
Imagining The Ransomware Of The Future
Last Message: 4/14/2016
 |  Comments: 2
Mobile Apps A Vulnerable Spot For Connected Security Cameras
Last Message: 4/14/2016
 |  Comments: 2
EU Privacy Officials Push Back On Privacy Shield
Last Message: 4/14/2016
 |  Comments: 1
Mega Hack Exposes Philippine Voter Database
Last Message: 4/13/2016
 |  Comments: 1
Securing the Weakest Link: Insiders
Last Message: 4/13/2016
 |  Comments: 1
Advancing Your Security Career
Last Message: 4/13/2016
 |  Comments: 71
The 8 Most Convincing Phishing Schemes Of 2016
Last Message: 4/13/2016
 |  Comments: 2
Badlock Bug Declared A Bust--But Patch, Anyway
Last Message: 4/12/2016
 |  Comments: 1
Cybercrime And Hacking Atlas
Last Message: 4/12/2016
 |  Comments: 10
WordPress Deploys HTTPS Encryption For All Of Its Websites
Last Message: 4/12/2016
 |  Comments: 1
When It Comes To Cyberthreat Intelligence, Sharing Is Caring
Last Message: 4/12/2016
 |  Comments: 1
7 Profiles Of Highly Risky Insiders
Last Message: 4/11/2016
 |  Comments: 1
Why Security & DevOps Cant Be Friends
Last Message: 4/9/2016
 |  Comments: 3
10 Cybersecurity Twitter Profiles To Watch
Last Message: 4/9/2016
 |  Comments: 3
"Epsilon Email Hack Exposes Bank, Business Customers"
Last Message: 4/8/2016
 |  Comments: 3
'Panama Papers' Law Firm: We Were Hacked
Last Message: 4/7/2016
 |  Comments: 3
'FBiOS' Case Heading For A New Firestorm
Last Message: 4/6/2016
 |  Comments: 1
Ransomware Authors Break New Ground With Petya
Last Message: 4/6/2016
 |  Comments: 3
Mobile Security: Why App Stores Dont Keep Users Safe
Last Message: 4/5/2016
 |  Comments: 2
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/4/2020
Abandoned Apps May Pose Security Risk to Mobile Devices
Robert Lemos, Contributing Writer,  5/29/2020
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Peter Barker, Chief Product Officer at ForgeRock,  6/1/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: What? IT said I needed virus protection!
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13768
PUBLISHED: 2020-06-04
In MiniShare before 1.4.2, there is a stack-based buffer overflow via an HTTP PUT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018-19861, CVE-2018-19862, and CVE-2019-17601. NOTE: this product is discontinued.
CVE-2020-13849
PUBLISHED: 2020-06-04
The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the ability to establish new connections), as demonstrated by SlowITe.
CVE-2020-13848
PUBLISHED: 2020-06-04
Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
CVE-2020-11682
PUBLISHED: 2020-06-04
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A __RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request ...
CVE-2020-12847
PUBLISHED: 2020-06-04
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console� that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the applicat...