Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in October 2015
Page 1 / 2   >   >>
Target Breach: Why Smartcards Wont Stop Hackers
Last Message: 10/31/2015
 |  Comments: 21
CrowdStrike Spots Chinese APTs Targeting US Firms Post-Pact
Last Message: 10/30/2015
 |  Comments: 1
Mandia: US-China No-Hack Pact Could Be Game Changer
Last Message: 10/30/2015
 |  Comments: 3
Chinese Military Behind South China Sea Cyber Espionage Attacks
Last Message: 10/30/2015
 |  Comments: 2
Why China Wants Your Sensitive Data
Last Message: 10/30/2015
 |  Comments: 18
Millennials Not Pursuing Cybersecurity Careers
Last Message: 10/30/2015
 |  Comments: 22
Startup 'Stealth Worker' Matches Businesses With Security Talent
Last Message: 10/30/2015
 |  Comments: 3
Endpoint Security: Putting The Focus On What Matters
Last Message: 10/29/2015
 |  Comments: 1
Digital Certificate Security Fail
Last Message: 10/29/2015
 |  Comments: 1
The Internet of Things: Its All About Trust
Last Message: 10/28/2015
 |  Comments: 1
State Of Employee Security Behavior
Last Message: 10/27/2015
 |  Comments: 2
Passing the Sniff Test: Security Metrics and Measures
Last Message: 10/26/2015
 |  Comments: 2
Attackers Demand Ransom Following Massive Hack on TalkTalk
Last Message: 10/26/2015
 |  Comments: 1
Why DevOps Fails At Application Security
Last Message: 10/24/2015
 |  Comments: 3
Next On Dark Reading Radio: Endpoint Security Transformed
Last Message: 10/24/2015
 |  Comments: 1
Undermining Security By Attacking Computer Clocks
Last Message: 10/23/2015
 |  Comments: 1
New Technology Won't Remove Endpoint From The Bullseye
Last Message: 10/23/2015
 |  Comments: 1
Likeliest Fraudsters Are, Or Claim To Be, 85-90 Years Old
Last Message: 10/22/2015
 |  Comments: 1
Survey Shows Little Accord On Responsibility For Cloud Security
Last Message: 10/21/2015
 |  Comments: 3
From 55 Cents to $1,200: The Value Chain For Stolen Data
Last Message: 10/21/2015
 |  Comments: 2
Endpoint Security Transformed
Last Message: 10/21/2015
 |  Comments: 54
Building A Winning Security Team From The Top Down
Last Message: 10/20/2015
 |  Comments: 1
Former White House Advisor: Marry Infosec To Economics
Last Message: 10/20/2015
 |  Comments: 3
Enterprises Are Leaving Cloud Security Policies To Chance
Last Message: 10/20/2015
 |  Comments: 1
Run, Jump, Shoot, Infect: Trojanized Games Invade Google Play
Last Message: 10/19/2015
 |  Comments: 4
Cybersecurity Insurance: 4 Practical Considerations
Last Message: 10/16/2015
 |  Comments: 3
Pawn Storm Flashes A New Flash Zero-Day
Last Message: 10/16/2015
 |  Comments: 2
The Evolution Of Malware
Last Message: 10/15/2015
 |  Comments: 1
Researchers Warn Against Continuing Use Of SHA-1 Crypto Standard
Last Message: 10/14/2015
 |  Comments: 2
Believe It Or Not, Millennials Do Care About Privacy, Security
Last Message: 10/14/2015
 |  Comments: 1
Japan's Cybercrime Underground On The Rise
Last Message: 10/14/2015
 |  Comments: 1
Why Everybody Loves (And Hates) Security
Last Message: 10/12/2015
 |  Comments: 2
'Evil' Kemoge Serves Androids Ads And Rootkits
Last Message: 10/12/2015
 |  Comments: 2
Jailbreaking Mobile Devices: Thats Not The Real Problem
Last Message: 10/12/2015
 |  Comments: 1
Healthcare Organizations Twice As Likely To Experience Data Theft
Last Message: 10/11/2015
 |  Comments: 12
The Unintended Attack Surface Of The Internet Of Things
Last Message: 10/11/2015
 |  Comments: 9
A Fathers Perspective On The Gender Gap In Cybersecurity
Last Message: 10/11/2015
 |  Comments: 18
Darknet Is Full Of Criminals & Governments Giving TOR A Bad Name
Last Message: 10/10/2015
 |  Comments: 4
State Trooper Vehicles Hacked
Last Message: 10/10/2015
 |  Comments: 22
Corporate VPNs In The Bullseye
Last Message: 10/9/2015
 |  Comments: 1
Data Deletion: A Disconnect Between Perception And Reality
Last Message: 10/9/2015
 |  Comments: 2
CISOs Spend Too Much Time On Tech, Not Enough On Strategy
Last Message: 10/7/2015
 |  Comments: 3
How Tactical Security Works At LinkedIn
Last Message: 10/6/2015
 |  Comments: 2
Nuclear Plants' Cybersecurity Is Bad, & Hard To Fix
Last Message: 10/5/2015
 |  Comments: 1
DHS Funds Project For Open Source 'Invisible Clouds'
Last Message: 10/5/2015
 |  Comments: 2
Page 1 / 2   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Incorporating a Prevention Mindset into Threat Detection and Response
Threat detection and response systems, by definition, are reactive because they have to wait for damage to be done before finding the attack. With a prevention-mindset, security teams can proactively anticipate the attacker's next move, rather than reacting to specific threats or trying to detect the latest techniques in real-time. The report covers areas enterprises should focus on: What positive response looks like. Improving security hygiene. Combining preventive actions with red team efforts.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-1809
PUBLISHED: 2022-05-21
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0.
CVE-2022-31267
PUBLISHED: 2022-05-21
Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "#admin"' value.
CVE-2022-31268
PUBLISHED: 2022-05-21
A Path Traversal vulnerability in Gitblit 1.9.3 can lead to reading website files via /resources//../ (e.g., followed by a WEB-INF or META-INF pathname).
CVE-2022-31264
PUBLISHED: 2022-05-21
Solana solana_rbpf before 0.2.29 has an addition integer overflow via invalid ELF program headers. elf.rs has a panic via a malformed eBPF program.
CVE-2022-31259
PUBLISHED: 2022-05-21
The route lookup process in beego through 1.12.4 and 2.x through 2.0.2 allows attackers to bypass access control. When a /p1/p2/:name route is configured, attackers can access it by appending .xml in various places (e.g., p1.xml instead of p1).