Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in September 2017
Page 1 / 2   >   >>
Report: Bank Email Fraud Increases since Equifax Breach
Last Message: 9/29/2017
 |  Comments: 1
Sonic Data Breach Potentially Affects Millions
Last Message: 9/28/2017
 |  Comments: 1
Tesla Hacks: The Good, The Bad, & The Ugly
Last Message: 9/27/2017
 |  Comments: 1
OPM Data Breach Lawsuit Tossed, Fed Plaintiffs will Appeal
Last Message: 9/26/2017
 |  Comments: 19
Equifax CEO Retires in Wake of Breach
Last Message: 9/26/2017
 |  Comments: 1
Equifax CIO, CSO Step Down
Last Message: 9/26/2017
 |  Comments: 11
Breach at Deloitte Exposes Emails, Client Data
Last Message: 9/26/2017
 |  Comments: 1
Health IT & Cybersecurity: 5 Hiring Misconceptions to Avoid
Last Message: 9/25/2017
 |  Comments: 2
SecureAuth to Merge with Core Security
Last Message: 9/25/2017
 |  Comments: 1
Siemens' New ICS/SCADA Security Service a Sign of the Times
Last Message: 9/25/2017
 |  Comments: 1
10 Security Product Flaw Scares
Last Message: 9/25/2017
 |  Comments: 2
GDPR & the Rise of the Automated Data Protection Officer
Last Message: 9/25/2017
 |  Comments: 1
PassGAN: Password Cracking Using Machine Learning
Last Message: 9/25/2017
 |  Comments: 1
Why Size Doesn't Matter in DDoS Attacks
Last Message: 9/25/2017
 |  Comments: 1
10 Hot Cybersecurity Funding Rounds in Q3
Last Message: 9/24/2017
 |  Comments: 2
1.9 Billion Data Records Exposed in First Half of 2017
Last Message: 9/24/2017
 |  Comments: 5
CISOs' Salaries Expected to Edge Above $240,000 in 2018
Last Message: 9/22/2017
 |  Comments: 11
1.4 Million New Phishing Sites Launched Each Month
Last Message: 9/22/2017
 |  Comments: 1
Dark Reading Now HTTPS
Last Message: 9/20/2017
 |  Comments: 5
FTC Opens Probe into Equifax Data Breach
Last Message: 9/20/2017
 |  Comments: 6
7 Takeaways From The Equifax Data Breach
Last Message: 9/20/2017
 |  Comments: 3
Viacom's Secret Cloud Keys Exposed
Last Message: 9/20/2017
 |  Comments: 1
Avast-Owned Piriform Releases CCleaner Security Update
Last Message: 9/20/2017
 |  Comments: 1
OurMine Claims Vevo Hack, Releases 3.12TB of Data
Last Message: 9/20/2017
 |  Comments: 4
Equifax Hit with Lawsuit
Last Message: 9/19/2017
 |  Comments: 1
Cloud Security's Shared Responsibility Is Foggy
Last Message: 9/18/2017
 |  Comments: 3
Why North Korean Actors May Be Targeting Cryptocurrencies
Last Message: 9/18/2017
 |  Comments: 6
Security Orchestration & Automation: Parsing the Options
Last Message: 9/16/2017
 |  Comments: 1
Trump Orders Removal of Kaspersky Products from Federal Systems
Last Message: 9/14/2017
 |  Comments: 1
IBM Launches New Tools for Container Security
Last Message: 9/14/2017
 |  Comments: 3
Cloud Security Hype Fails to Match Deployments
Last Message: 9/13/2017
 |  Comments: 1
7 Things to Know About Today's DDoS Attacks
Last Message: 9/11/2017
 |  Comments: 1
Commercial IoT: Big Trouble in Small Devices
Last Message: 9/11/2017
 |  Comments: 10
Free Tools & Training To Hack Yourself Into Better Security
Last Message: 9/10/2017
 |  Comments: 4
Microsoft: Ransomware Decline Reversed in March 2017
Last Message: 9/8/2017
 |  Comments: 1
Is Public Sector Cybersecurity Adequate?
Last Message: 9/8/2017
 |  Comments: 7
3 Ways AI Could Help Resolve the Cybersecurity Talent Crisis
Last Message: 9/8/2017
 |  Comments: 1
Bot-Driven Online Ad Fraud Losses Decline
Last Message: 9/7/2017
 |  Comments: 4
US Debit Card Compromises Up 39%: FICO
Last Message: 9/6/2017
 |  Comments: 6
Amazon S3 Bucket Leaks Expose Classified US Veteran Data
Last Message: 9/6/2017
 |  Comments: 1
Mikko Hypponen's Vision of the Cybersecurity Future
Last Message: 9/6/2017
 |  Comments: 2
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/4/2020
Abandoned Apps May Pose Security Risk to Mobile Devices
Robert Lemos, Contributing Writer,  5/29/2020
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Peter Barker, Chief Product Officer at ForgeRock,  6/1/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: What? IT said I needed virus protection!
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13768
PUBLISHED: 2020-06-04
In MiniShare before 1.4.2, there is a stack-based buffer overflow via an HTTP PUT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018-19861, CVE-2018-19862, and CVE-2019-17601. NOTE: this product is discontinued.
CVE-2020-13849
PUBLISHED: 2020-06-04
The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the ability to establish new connections), as demonstrated by SlowITe.
CVE-2020-13848
PUBLISHED: 2020-06-04
Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
CVE-2020-11682
PUBLISHED: 2020-06-04
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A __RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request ...
CVE-2020-12847
PUBLISHED: 2020-06-04
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console� that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the applicat...