Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in August 2015
Page 1 / 2   >   >>
Valasek Not Done With Car Hacking Just Yet
Last Message: 8/31/2015
 |  Comments: 10
FBI Sounds Alarm Again On Business Email Compromise Threat
Last Message: 8/30/2015
 |  Comments: 2
Ouch! Feeling The Pain Of Cybersecurity In Healthcare
Last Message: 8/29/2015
 |  Comments: 11
Cybersecurity Under FTC Authority: What Does it Mean?
Last Message: 8/29/2015
 |  Comments: 8
Cybersecurity Under FTC Authority: What Does it Mean?
Last Message: 8/28/2015
 |  Comments: 1
Catching Attackers In The Act Of Stage Two, With Gigamon
Last Message: 8/27/2015
 |  Comments: 1
Getting To Yes, Cooperatively
Last Message: 8/27/2015
 |  Comments: 1
IBM Advises Businesses To Block Tor
Last Message: 8/27/2015
 |  Comments: 7
Flash: Web Browser Plugins Are Vulnerable
Last Message: 8/27/2015
 |  Comments: 1
Keyless Cars: A New Frontier For Bug Bounties?
Last Message: 8/26/2015
 |  Comments: 4
Ruling: FTC Can Hold Wyndham Liable For Data Breach
Last Message: 8/26/2015
 |  Comments: 3
Securing OS X: Apple, Security Vendors Need To Up Their Game
Last Message: 8/26/2015
 |  Comments: 2
Beware The Hidden Risk Of Business Partners In The Cloud
Last Message: 8/25/2015
 |  Comments: 1
Applying the 80/20 Rule to Cyber Security Practices
Last Message: 8/24/2015
 |  Comments: 1
View From The Top: Governments Role In Cybersecurity
Last Message: 8/24/2015
 |  Comments: 1
Law Firms Form Their Own Threat Intel-Sharing Group
Last Message: 8/24/2015
 |  Comments: 1
RASP: A False Sense of Security For Apps & Data
Last Message: 8/24/2015
 |  Comments: 7
Securing Black Hat From Black Hat
Last Message: 8/23/2015
 |  Comments: 1
Mad World: The Truth About Bug Bounties
Last Message: 8/23/2015
 |  Comments: 5
Wardriving Burglars Hacked Business Wi-Fi Networks
Last Message: 8/23/2015
 |  Comments: 1
With Great IoT Comes Great Insecurity
Last Message: 8/22/2015
 |  Comments: 2
Pen Testing A Smart City
Last Message: 8/22/2015
 |  Comments: 1
Re-evaluating Ransomware, Without The Hype
Last Message: 8/22/2015
 |  Comments: 2
The Month Of Android Vulnerabilities Rolls On
Last Message: 8/21/2015
 |  Comments: 2
Dark Reading at Black Hat: Highlights and Lessons
Last Message: 8/19/2015
 |  Comments: 14
An Apple Fanboi Writing Malware For Mac OSX
Last Message: 8/19/2015
 |  Comments: 3
Unpatched 'Tpwn' Mac OS X Bug Could Grant Root Privileges
Last Message: 8/19/2015
 |  Comments: 1
Software Security Is Hard But Not impossible
Last Message: 8/18/2015
 |  Comments: 2
"Most Consumers Don't Lock Mobile Phone Via PIN"
Last Message: 8/16/2015
 |  Comments: 10
The Summer Of Car Hacks Continues
Last Message: 8/16/2015
 |  Comments: 3
Iranian, Syrian Hackers Hit 'Gas Gauges'
Last Message: 8/14/2015
 |  Comments: 4
Jeep Hack 0Day: An Exposed Port
Last Message: 8/13/2015
 |  Comments: 2
June Was 'Worst Month Of Malvertising Ever'
Last Message: 8/13/2015
 |  Comments: 1
FTC to Black Hat Attendees: Help Us Make Good Tech Policy
Last Message: 8/12/2015
 |  Comments: 1
IoT Working Group Crafts Framework For Security, Privacy
Last Message: 8/12/2015
 |  Comments: 1
Profile Of A Cybercrime Petty Thief
Last Message: 8/12/2015
 |  Comments: 1
DGA.Changer Gets Anti-Detection Upgrade
Last Message: 8/11/2015
 |  Comments: 2
Kaminsky Creates Clickjacking-Killer
Last Message: 8/11/2015
 |  Comments: 3
"Looking For Love? Don't Trust Online Dating Sites"
Last Message: 8/9/2015
 |  Comments: 2
Why Cyber-Physical Hackers Have It Harder Than You
Last Message: 8/7/2015
 |  Comments: 1
What Should the Users of Ashley Madison Do?
Last Message: 8/7/2015
 |  Comments: 2
Black Hat Radio by Dark Reading, Episode 2
Last Message: 8/6/2015
 |  Comments: 2
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/4/2020
Abandoned Apps May Pose Security Risk to Mobile Devices
Robert Lemos, Contributing Writer,  5/29/2020
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Peter Barker, Chief Product Officer at ForgeRock,  6/1/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: What? IT said I needed virus protection!
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13768
PUBLISHED: 2020-06-04
In MiniShare before 1.4.2, there is a stack-based buffer overflow via an HTTP PUT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018-19861, CVE-2018-19862, and CVE-2019-17601. NOTE: this product is discontinued.
CVE-2020-13849
PUBLISHED: 2020-06-04
The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the ability to establish new connections), as demonstrated by SlowITe.
CVE-2020-13848
PUBLISHED: 2020-06-04
Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
CVE-2020-11682
PUBLISHED: 2020-06-04
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A __RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request ...
CVE-2020-12847
PUBLISHED: 2020-06-04
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console� that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the applicat...