Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Latest Message Boards
Page 1 / 2   >   >>
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
Last Message: 11/26/2022
 |  Comments: 9
"Hacking Higher Education"
Last Message: 11/25/2022
 |  Comments: 17
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Last Message: 11/11/2022
 |  Comments: 2
Pen Testing A Smart City
Last Message: 10/21/2022
 |  Comments: 2
It's in the Game (but It Shouldn't Be)
Last Message: 9/14/2022
 |  Comments: 2
8 Security Tools to be Unveiled at Black Hat USA
Last Message: 9/7/2022
 |  Comments: 2
A Crisis of Confidence Among Security Pros
Last Message: 8/17/2022
 |  Comments: 12
XDR: A Game-Changer in Enterprise Threat Detection
Last Message: 8/12/2022
 |  Comments: 1
Hackers Cash In On ATMs
Last Message: 7/16/2022
 |  Comments: 2
10 Cybersecurity Twitter Profiles To Watch
Last Message: 6/28/2022
 |  Comments: 3
American Hacker Arrested For 2014 JP Morgan Chase Breach
Last Message: 6/25/2022
 |  Comments: 7
Dark Reading Radio: Firewall Smackdown
Last Message: 5/18/2022
 |  Comments: 1
The Cyber Skills Shortage
Last Message: 11/15/2021
 |  Comments: 50
7 Tips for Choosing Security Metrics That Matter
Last Message: 11/12/2021
 |  Comments: 1
Snowden Sued by US Government Over His New Book
Last Message: 10/31/2021
 |  Comments: 1
3 Things Every CISO Wishes You Understood
Last Message: 10/30/2021
 |  Comments: 1
Mobile Ransomware Hits Browsers with Old-School Techniques
Last Message: 10/20/2021
 |  Comments: 1
Hacking Group LulzSec Denies Arrest Report
Last Message: 9/30/2021
 |  Comments: 5
Name That Toon: Return to the New Normal
Last Message: 9/1/2021
 |  Comments: 20
NordVPN Lists 5 Measures to Supercharge Its Security
Last Message: 8/31/2021
 |  Comments: 1
Russian Hackers Behind DNC Breach Wage Post-US Election Attacks
Last Message: 8/25/2021
 |  Comments: 7
The Three Dimensions of the Threat Intelligence Scale Problem
Last Message: 8/19/2021
 |  Comments: 7
Researchers Call for 'CVE' Approach for Cloud Vulnerabilities
Last Message: 8/11/2021
 |  Comments: 1
White House Cybersecurity Strategy at a Crossroads
Last Message: 8/9/2021
 |  Comments: 7
Latest Security News & Commentary about COVID-19
Last Message: 8/9/2021
 |  Comments: 19
Yahoo Agrees to $80 Million Settlement with Investors
Last Message: 8/5/2021
 |  Comments: 1
7 Hot Cyber Threat Trends to Expect at Black Hat
Last Message: 7/29/2021
 |  Comments: 1
Name That Edge Toon: Security Grill
Last Message: 7/29/2021
 |  Comments: 1
US-CERT Warns That HTTPS Inspection Tools Weaken TLS
Last Message: 7/19/2021
 |  Comments: 45
SonicWall: 'Imminent' Ransomware Attack Targets Older Products
Last Message: 7/15/2021
 |  Comments: 1
Kaseya Releases Security Patch As Companies Continue to Recover
Last Message: 7/15/2021
 |  Comments: 3
Why Are There Never Enough Logs During an Incident Response?
Last Message: 7/10/2021
 |  Comments: 1
5 Mistakes That Impact a Security Team's Success
Last Message: 7/8/2021
 |  Comments: 1
Watch for Cybersecurity Games at the Tokyo Olympics
Last Message: 7/6/2021
 |  Comments: 1
SMB Worm Targeting EternalBlue Vuln Spreads to US
Last Message: 7/1/2021
 |  Comments: 1
Cartoon Caption Winner: In Tow
Last Message: 6/30/2021
 |  Comments: 1
Name That Toon: Sight Unseen
Last Message: 6/28/2021
 |  Comments: 13
Page 1 / 2   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Creating an Effective Incident Response Plan
Security teams are realizing their organizations will experience a cyber incident at some point. An effective incident response plan that takes into account their specific requirements and has been tested is critical. This issue of Tech Insights also includes: -a look at the newly signed cyber-incident law, -how organizations can apply behavioral psychology to incident response, -and an overview of the Open Cybersecurity Schema Framework.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-43705
PUBLISHED: 2022-11-27
In Botan before 2.19.3, it is possible to forge OCSP responses due to a certificate verification error. This issue was introduced in Botan 1.11.34 (November 2016).
CVE-2022-45934
PUBLISHED: 2022-11-27
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
CVE-2022-45931
PUBLISHED: 2022-11-27
A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. The aaa-idm-store-h2/src/main/java/org/opendaylight/aaa/datastore/h2/UserStore.java deleteUser function is affected when the API interface /auth/v1/users/ is used.
CVE-2022-45932
PUBLISHED: 2022-11-27
A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. The aaa-idm-store-h2/src/main/java/org/opendaylight/aaa/datastore/h2/RoleStore.java deleteRole function is affected when the API interface /auth/v1/roles/ is used.
CVE-2022-45933
PUBLISHED: 2022-11-27
KubeView through 0.1.31 allows attackers to obtain control of a Kubernetes cluster because api/scrape/kube-system does not require authentication, and retrieves certificate files that can be used for authentication as kube-admin. NOTE: the vendor's position is that KubeView was a "fun side proj...