Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in August 2019
Page 1 / 2   >   >>
Aviation Faces Increasing Cybersecurity Scrutiny
Last Message: 8/31/2019
 |  Comments: 4
VMware to Buy Carbon Black for $2.1B
Last Message: 8/30/2019
 |  Comments: 1
D-FENSE! Using Research To Craft Effective Cyber Defenses
Last Message: 8/30/2019
 |  Comments: 10
7 Ways to Mitigate Supply Chain Attacks
Last Message: 8/30/2019
 |  Comments: 7
Is Machine Learning the Future of Cloud-Native Security?
Last Message: 8/29/2019
 |  Comments: 1
Cryptography & the Hype Over Quantum Computing
Last Message: 8/29/2019
 |  Comments: 10
Magecart Shops for Victims as E-Commerce Market Grows
Last Message: 8/29/2019
 |  Comments: 1
TrickBot Comes to Cellular Carriers
Last Message: 8/29/2019
 |  Comments: 1
Microsoft Launches 'Private Conversations' in Skype
Last Message: 8/28/2019
 |  Comments: 1
IBM Announces Quantum Safe Encryption
Last Message: 8/27/2019
 |  Comments: 1
Capital One Breach: What Security Teams Can Do Now
Last Message: 8/27/2019
 |  Comments: 3
3 Arrested in Transnational Fraud Indictments
Last Message: 8/27/2019
 |  Comments: 2
How Hackers Will Crack Your Password
Last Message: 8/26/2019
 |  Comments: 2
Microsoft Tops Phishers' Favorite Brands as Facebook Spikes
Last Message: 8/26/2019
 |  Comments: 2
In Mobile, It's Back to the Future
Last Message: 8/25/2019
 |  Comments: 1
Which Security Metrics Should I Use?
Last Message: 8/25/2019
 |  Comments: 1
Is My Development Environment at Risk?
Last Message: 8/25/2019
 |  Comments: 1
How Do I Monitor for Malicious Insiders?
Last Message: 8/25/2019
 |  Comments: 1
7 Big Factors Putting Small Businesses At Risk
Last Message: 8/25/2019
 |  Comments: 1
Russia Hacked Clinton's Computers Five Hours After Trump's Call
Last Message: 8/23/2019
 |  Comments: 17
5 Identity Challenges Facing Todays IT Teams
Last Message: 8/23/2019
 |  Comments: 1
New FISMA Report Shows Progress, Gaps in Federal Cybersecurity
Last Message: 8/22/2019
 |  Comments: 1
The Key to Enterprisewide Encryption
Last Message: 8/21/2019
 |  Comments: 2
Get Serious about IoT Security
Last Message: 8/21/2019
 |  Comments: 4
GitHub Named in Capital One Breach Lawsuit
Last Message: 8/20/2019
 |  Comments: 3
Tough Love: Debunking Myths about DevOps & Security
Last Message: 8/20/2019
 |  Comments: 1
Contest: Name That Toon
Last Message: 8/20/2019
 |  Comments: 11
5 Ways to Improve the Patching Process
Last Message: 8/20/2019
 |  Comments: 1
5 Things to Know About Cyber Insurance
Last Message: 8/19/2019
 |  Comments: 3
You Gotta Reach Em to Teach Em
Last Message: 8/19/2019
 |  Comments: 2
Keep Your Eye on Digital Certificates
Last Message: 8/17/2019
 |  Comments: 1
Rethinking Website Spoofing Mitigation
Last Message: 8/17/2019
 |  Comments: 5
Project Zero Turns 5: How Google's Zero-Day Hunt Has Grown
Last Message: 8/16/2019
 |  Comments: 1
European Central Bank Website Hit by Malware Attack
Last Message: 8/16/2019
 |  Comments: 1
Google Analyzes Pilfered Password Reuse
Last Message: 8/16/2019
 |  Comments: 1
BioStar 2 Leak Exposes 23GB Data, 1M Fingerprints
Last Message: 8/16/2019
 |  Comments: 1
The Flaw in Vulnerability Management: It's Time to Get Real
Last Message: 8/16/2019
 |  Comments: 2
Microsoft Patches Wormable RCE Vulns in Remote Desktop Services
Last Message: 8/15/2019
 |  Comments: 3
700K Guest Records Stolen in Choice Hotels Breach
Last Message: 8/13/2019
 |  Comments: 2
DEF CON Voting Village: It's About 'Risk'
Last Message: 8/13/2019
 |  Comments: 1
FBI Plans to Monitor Social Media May Spark Privacy Issues
Last Message: 8/12/2019
 |  Comments: 1
It's (Still) the Password, Stupid!
Last Message: 8/12/2019
 |  Comments: 3
Researchers Show Vulnerabilities in Facial Recognition
Last Message: 8/12/2019
 |  Comments: 1
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/4/2020
Abandoned Apps May Pose Security Risk to Mobile Devices
Robert Lemos, Contributing Writer,  5/29/2020
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Peter Barker, Chief Product Officer at ForgeRock,  6/1/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: What? IT said I needed virus protection!
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13768
PUBLISHED: 2020-06-04
In MiniShare before 1.4.2, there is a stack-based buffer overflow via an HTTP PUT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018-19861, CVE-2018-19862, and CVE-2019-17601. NOTE: this product is discontinued.
CVE-2020-13849
PUBLISHED: 2020-06-04
The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the ability to establish new connections), as demonstrated by SlowITe.
CVE-2020-13848
PUBLISHED: 2020-06-04
Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
CVE-2020-11682
PUBLISHED: 2020-06-04
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A __RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request ...
CVE-2020-12847
PUBLISHED: 2020-06-04
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console� that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the applicat...