Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in April 2017
Page 1 / 2   >   >>
4 Industries Account for Majority of Global Ransomware Attacks
Last Message: 4/30/2017
 |  Comments: 11
7 Tips For Mitigating Phishing And Business Email Hacks
Last Message: 4/30/2017
 |  Comments: 3
Microsoft App Aims to Delete the Password
Last Message: 4/29/2017
 |  Comments: 9
IRS and Immigration Officials Impersonated in Call Center Scam
Last Message: 4/28/2017
 |  Comments: 3
Microsoft Updates Foreign Surveillance Request Count
Last Message: 4/28/2017
 |  Comments: 3
HHS Hits CardioNet with $2.5M HIPAA Settlement Fee
Last Message: 4/28/2017
 |  Comments: 2
So You Want to Be a Security Rock Star?
Last Message: 4/27/2017
 |  Comments: 3
Half of Security Pros Ignore Some Important Alerts
Last Message: 4/27/2017
 |  Comments: 1
6 Steps to Find Your Next Dozen Cloud Security Experts
Last Message: 4/27/2017
 |  Comments: 1
6 Times Hollywood Got Security Right
Last Message: 4/26/2017
 |  Comments: 5
Macron Targeted by Russian Cyber Spies
Last Message: 4/26/2017
 |  Comments: 2
The Hidden Dangers of Component Vulnerabilities
Last Message: 4/26/2017
 |  Comments: 1
IT Engineer Stole Source Code to Verify Acquisition
Last Message: 4/24/2017
 |  Comments: 2
3 Tips for Updating an Endpoint Security Strategy
Last Message: 4/23/2017
 |  Comments: 1
Heartbleed's Intranet & VPN Connection
Last Message: 4/20/2017
 |  Comments: 7
How Top Security Execs are Doing More with Less
Last Message: 4/19/2017
 |  Comments: 3
The Implications Behind Proposed Internet Privacy Rules
Last Message: 4/19/2017
 |  Comments: 4
Why Brand Trumps Tech in C-Level Conversations
Last Message: 4/18/2017
 |  Comments: 1
Health Savings Account Fraud: The Rapidly Growing Threat
Last Message: 4/17/2017
 |  Comments: 1
1 Out of 5 Companies Have Suffered Mobile Device Breach
Last Message: 4/17/2017
 |  Comments: 1
Cartoon: Cloud (In)security
Last Message: 4/17/2017
 |  Comments: 2
Engineer Arrested for Attempted Theft of Trade Secrets
Last Message: 4/15/2017
 |  Comments: 1
In Appreciation: Howard A. Schmidt
Last Message: 4/14/2017
 |  Comments: 1
The Interconnected Nature Of International Cybercrime
Last Message: 4/13/2017
 |  Comments: 2
How to Crack Cybersecuritys Glass Ceiling
Last Message: 4/13/2017
 |  Comments: 7
Slide Show: Top 10 Malware Advances In 2012
Last Message: 4/13/2017
 |  Comments: 1
Microsoft Office Zero-Day Patched After Months of Attacks
Last Message: 4/12/2017
 |  Comments: 1
UK Loan Firm Wonga Suffers Financial Data Breach
Last Message: 4/11/2017
 |  Comments: 1
Tax Season Surprise: W-2 Fraud
Last Message: 4/11/2017
 |  Comments: 1
CIA-Linked Hacking Tools Tied to Longhorn Cyber Espionage Group
Last Message: 4/11/2017
 |  Comments: 2
FAFSA Tool Taken Offline After Breach Report
Last Message: 4/11/2017
 |  Comments: 3
When Hacks Are about Image instead of Money
Last Message: 4/11/2017
 |  Comments: 1
Hiring Hackers To Secure The Internet Of Things
Last Message: 4/11/2017
 |  Comments: 3
'Sundown' Rises as New Threat in Depleted Exploit Kit Landscape
Last Message: 4/11/2017
 |  Comments: 1
Top 5 Dumbest Cyber Threats That Still Pay Off
Last Message: 4/11/2017
 |  Comments: 1
Office 365 Gets Data Governance, Threat Intelligence Tools
Last Message: 4/11/2017
 |  Comments: 1
8 Valuable Security Certifications For 2017
Last Message: 4/10/2017
 |  Comments: 7
12 Tips for Securing Cyber Insurance Coverage
Last Message: 4/10/2017
 |  Comments: 3
Matching Wits with a North Korea-Linked Hacking Group
Last Message: 4/10/2017
 |  Comments: 1
7 Ways Hackers Target Your Employees
Last Message: 4/10/2017
 |  Comments: 2
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/4/2020
Abandoned Apps May Pose Security Risk to Mobile Devices
Robert Lemos, Contributing Writer,  5/29/2020
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Peter Barker, Chief Product Officer at ForgeRock,  6/1/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: What? IT said I needed virus protection!
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13768
PUBLISHED: 2020-06-04
In MiniShare before 1.4.2, there is a stack-based buffer overflow via an HTTP PUT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018-19861, CVE-2018-19862, and CVE-2019-17601. NOTE: this product is discontinued.
CVE-2020-13849
PUBLISHED: 2020-06-04
The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the ability to establish new connections), as demonstrated by SlowITe.
CVE-2020-13848
PUBLISHED: 2020-06-04
Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
CVE-2020-11682
PUBLISHED: 2020-06-04
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A __RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request ...
CVE-2020-12847
PUBLISHED: 2020-06-04
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console� that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the applicat...