Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in May 2017
Page 1 / 2   >   >>
Cisco and IBM Team Up on Security
Last Message: 5/31/2017
 |  Comments: 1
Chipotle Dishes Details on Data Breach
Last Message: 5/30/2017
 |  Comments: 2
Medical Devices Fall Short in Security Best Practices
Last Message: 5/30/2017
 |  Comments: 2
Split Tunnel SMTP Exploit Bypasses Email Security Gateways
Last Message: 5/30/2017
 |  Comments: 8
DDoS Attacks Fell 23% in First Quarter, Grew in Size
Last Message: 5/30/2017
 |  Comments: 3
82% of Databases Left Unencrypted in Public Cloud
Last Message: 5/30/2017
 |  Comments: 9
New Samba Bug Dangerous But No WannaCry
Last Message: 5/30/2017
 |  Comments: 1
Microsoft 'Father Of SDL' Named To Top Post At SAFECode
Last Message: 5/30/2017
 |  Comments: 1
WannaCry's 'Kill Switch' May Have Been a Sandbox-Evasion Tool
Last Message: 5/28/2017
 |  Comments: 3
Data Security & Privacy: The Risks of Not Playing by the Rules
Last Message: 5/28/2017
 |  Comments: 1
WannaCry Gives Consumers a First Look into Ransomware
Last Message: 5/27/2017
 |  Comments: 1
5 Security Lessons WannaCry Taught Us the Hard Way
Last Message: 5/25/2017
 |  Comments: 8
Staying a Step Ahead of Internet Attacks
Last Message: 5/25/2017
 |  Comments: 2
4 Reasons the Vulnerability Disclosure Process Stalls
Last Message: 5/24/2017
 |  Comments: 1
8 Notorious Russian Hackers Arrested in the Past 8 Years
Last Message: 5/24/2017
 |  Comments: 2
Don't Forget Basic Security Measures, Experts Say
Last Message: 5/24/2017
 |  Comments: 2
How Many People Does It Take to Defend a Network?
Last Message: 5/22/2017
 |  Comments: 2
Google Won't Trust Symantec and Neither Should You
Last Message: 5/22/2017
 |  Comments: 2
All Generations, All Risks, All Contained: A How-To Guide
Last Message: 5/22/2017
 |  Comments: 1
The Fundamental Flaw in TCP/IP: Connecting Everything
Last Message: 5/19/2017
 |  Comments: 4
"Data Theft Costs Tennessee Blue Cross Big Bucks"
Last Message: 5/19/2017
 |  Comments: 1
And Now a Ransomware Tool That Charges Based On Where You Live
Last Message: 5/19/2017
 |  Comments: 1
Inside the Motivations Behind Modern Cyberattackers
Last Message: 5/18/2017
 |  Comments: 1
The New Shadow IT: Custom Data Center Applications
Last Message: 5/18/2017
 |  Comments: 3
How to Integrate Threat Intel & DevOps
Last Message: 5/17/2017
 |  Comments: 1
Your Grandma Could Be the Next Ransomware Millionaire
Last Message: 5/17/2017
 |  Comments: 3
Understanding The Cloud Threat Surface
Last Message: 5/17/2017
 |  Comments: 10
Call Center Fraud Spiked 113% in 2016
Last Message: 5/17/2017
 |  Comments: 1
Study: Rooted Androids, Jailbroken iPhones Found in Enterprises
Last Message: 5/16/2017
 |  Comments: 1
The Cyber-Committed CEO & Board
Last Message: 5/16/2017
 |  Comments: 2
Seeing Security from the Other Side of the Window
Last Message: 5/16/2017
 |  Comments: 1
Microsoft Calls for IoT Cybersecurity Policy Development
Last Message: 5/16/2017
 |  Comments: 1
OWASP Top 10 Update: Long Overdue Or Same-Old, Same-Old?
Last Message: 5/14/2017
 |  Comments: 1
For The Birds: Dark Reading Cartoon Caption Contest Winners
Last Message: 5/14/2017
 |  Comments: 4
How To Stay Secure At The Hotel On A Business Trip
Last Message: 5/12/2017
 |  Comments: 10
Cisco Offers Free Decryption Tool For Ransomware Victims
Last Message: 5/12/2017
 |  Comments: 7
More Than Half Of Android Devices Run Outdated Browsers
Last Message: 5/10/2017
 |  Comments: 2
The Long Tail of the Intel AMT Flaw
Last Message: 5/10/2017
 |  Comments: 1
Android App Permission in Google Play Contains Security Flaw
Last Message: 5/10/2017
 |  Comments: 1
Hackers Face $8.9 Million Fine for Law Firm Breaches
Last Message: 5/10/2017
 |  Comments: 1
Windows 'BadTunnel' Attack Hijacks Network Traffic
Last Message: 5/9/2017
 |  Comments: 1
Page 1 / 2   >   >>


News
OAuth, OpenID Flaw: 7 Facts
Mathew J. Schwartz 5/8/2014
Quick Hits
Study: Many UK Retail, Financial Firms Still Don't Understand Security Risks
Tim Wilson, Editor in Chief, Dark Reading 5/8/2014
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: Your new device is too complex. Me stick with iWheel.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-21312
PUBLISHED: 2021-03-03
GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Management Software package. In GLPI before verison 9.5.4, there is a vulnerability within the document upload function (Home > Management > Documents > Add, or /front/documen...
CVE-2021-21313
PUBLISHED: 2021-03-03
GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Management Software package. In GLPI before verison 9.5.4, there is a vulnerability in the /ajax/common.tabs.php endpoint, indeed, at least two parameters _target and id are not proper...
CVE-2021-21314
PUBLISHED: 2021-03-03
GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Management Software package. In GLPI before verison 9.5.4, there is an XSS vulnerability involving a logged in user while updating a ticket.
CVE-2021-27931
PUBLISHED: 2021-03-03
LumisXP (aka Lumis Experience Platform) before 10.0.0 allows unauthenticated blind XXE via an API request to PageControllerXml.jsp. One can send a request crafted with an XXE payload and achieve outcomes such as reading local server files or denial of service.
CVE-2021-27935
PUBLISHED: 2021-03-03
An issue was discovered in AdGuard before 0.105.2. An attacker able to get the user's cookie is able to bruteforce their password offline, because the hash of the password is stored in the cookie.