Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in January 2020
Page 1 / 2   >   >>
Average Ransomware Payments More Than Doubled in Q4 2019
Last Message: 1/31/2020
 |  Comments: 11
'George' the Most Popular Password That's a Name
Last Message: 1/31/2020
 |  Comments: 2
Adware vs. Ad Fraud: Viva la Difference!
Last Message: 1/31/2020
 |  Comments: 1
Why Companies Should Care about Data Privacy Day
Last Message: 1/31/2020
 |  Comments: 13
Microsoft Defender ATP Brings EDR Capabilities to macOS
Last Message: 1/31/2020
 |  Comments: 1
Number of Botnet Command & Control Servers Soared in 2019
Last Message: 1/30/2020
 |  Comments: 10
Android Malware for Mobile Ad Fraud Spiked Sharply in 2019
Last Message: 1/30/2020
 |  Comments: 1
Apple Misstep Leaves iPhones Open to Jailbreak
Last Message: 1/30/2020
 |  Comments: 1
Active Directory Needs an Update: Here's Why
Last Message: 1/29/2020
 |  Comments: 3
7 Free Tools for Better Visibility Into Your Network
Last Message: 1/28/2020
 |  Comments: 3
'PowerSnitch' Hacks Androids via Power Banks
Last Message: 1/28/2020
 |  Comments: 5
Regular User Training Most Effective Security Antidote
Last Message: 1/28/2020
 |  Comments: 2
New Security Woes for Popular IoT Protocols
Last Message: 1/27/2020
 |  Comments: 1
Using Artificial InteIligence to Power Application Security
Last Message: 1/27/2020
 |  Comments: 1
Lessons Learned from 7 Big Breaches in 2019
Last Message: 1/26/2020
 |  Comments: 3
Data Privacy Careers Are Helping to Close the IT Gender Gap
Last Message: 1/26/2020
 |  Comments: 8
Write A Caption & Win A Prize
Last Message: 1/25/2020
 |  Comments: 133
Cryptojacking Threat Continues to Rise
Last Message: 1/25/2020
 |  Comments: 1
IoT Security: How Far We've Come, How Far We Have to Go
Last Message: 1/24/2020
 |  Comments: 11
Why Every Organization Needs an Incident Response Plan
Last Message: 1/24/2020
 |  Comments: 4
Toyota Builds Open-Source Car-Hacking Tool
Last Message: 1/24/2020
 |  Comments: 2
Mobile Banking Malware Up 50% in First Half of 2019
Last Message: 1/23/2020
 |  Comments: 3
6 Traits to Develop for Cybersecurity Success
Last Message: 1/23/2020
 |  Comments: 1
For Mismanaged SOCs, The Price Is Not Right
Last Message: 1/23/2020
 |  Comments: 1
7 Tips for Infosec Pros Considering A Lateral Career Move
Last Message: 1/22/2020
 |  Comments: 1
TikTok Bugs Put Users' Videos, Personal Data At Risk
Last Message: 1/20/2020
 |  Comments: 1
Will This Be the Year of the Branded Cybercriminal?
Last Message: 1/20/2020
 |  Comments: 2
Google Lets iPhone Users Turn Device into Security Key
Last Message: 1/20/2020
 |  Comments: 1
More Than 100 Flavors Of Malware Are Stealing Bitcoins
Last Message: 1/19/2020
 |  Comments: 2
How Secure are our Voting Systems for November 2018?
Last Message: 1/19/2020
 |  Comments: 12
Microsoft to Officially End Support for Windows 7, Server 2008
Last Message: 1/18/2020
 |  Comments: 2
6 Security Team Goals for DevSecOps in 2020
Last Message: 1/17/2020
 |  Comments: 1
New Attack Campaigns Suggest Emotet Threat Is Far From Over
Last Message: 1/17/2020
 |  Comments: 1
What Adobe's New PDF Sandbox Really Means For Attackers
Last Message: 1/16/2020
 |  Comments: 1
Securing The PDF
Last Message: 1/16/2020
 |  Comments: 1
Cloud Services Require a Shift in Security Strategy
Last Message: 1/16/2020
 |  Comments: 2
Mobile App Back-End Servers, Databases at Risk
Last Message: 1/15/2020
 |  Comments: 3
Microsoft Patches Windows Vuln Discovered by the NSA
Last Message: 1/15/2020
 |  Comments: 1
Asset Management Becomes the New Security Model
Last Message: 1/14/2020
 |  Comments: 1
Make DNS a Cornerstone of Your Cyber Security Arsenal
Last Message: 1/14/2020
 |  Comments: 1
AWS Issues 'Urgent' Warning for Database Users to Update Certs
Last Message: 1/10/2020
 |  Comments: 1
In App Development, Does No-Code Mean No Security?
Last Message: 1/10/2020
 |  Comments: 2
DHS Warns of Potential Iranian Cyberattacks
Last Message: 1/9/2020
 |  Comments: 1
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 7/2/2020
Ripple20 Threatens Increasingly Connected Medical Devices
Kelly Sheridan, Staff Editor, Dark Reading,  6/30/2020
DDoS Attacks Jump 542% from Q4 2019 to Q1 2020
Dark Reading Staff 6/30/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
The Threat from the Internetand What Your Organization Can Do About It
The Threat from the Internetand What Your Organization Can Do About It
This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-9498
PUBLISHED: 2020-07-02
Apache Guacamole 1.1.0 and older may mishandle pointers involved inprocessing data received via RDP static virtual channels. If a userconnects to a malicious or compromised RDP server, a series ofspecially-crafted PDUs could result in memory corruption, possiblyallowing arbitrary code to be executed...
CVE-2020-3282
PUBLISHED: 2020-07-02
A vulnerability in the web-based management interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an unauthenticated, remote attack...
CVE-2020-5909
PUBLISHED: 2020-07-02
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, when users run the command displayed in NGINX Controller user interface (UI) to fetch the agent installer, the server TLS certificate is not verified.
CVE-2020-5910
PUBLISHED: 2020-07-02
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized.
CVE-2020-5911
PUBLISHED: 2020-07-02
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller installer starts the download of Kubernetes packages from an HTTP URL On Debian/Ubuntu system.