Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in June 2020
Page 1 / 2   >   >>
HackerOne Reveals Top 10 Bug-Bounty Programs
Last Message: 6/30/2020
 |  Comments: 1
Russian Cybercriminal Behind CardPlanet Sentenced to 9 Years
Last Message: 6/30/2020
 |  Comments: 1
Profile of the Post-Pandemic CISO
Last Message: 6/30/2020
 |  Comments: 2
FCC Designates Huawei & ZTE as National Security Threats
Last Message: 6/30/2020
 |  Comments: 1
COVID-19 Puts ICS Security Initiatives 'On Pause'
Last Message: 6/30/2020
 |  Comments: 1
CISA Issues Advisory on Home Routers
Last Message: 6/30/2020
 |  Comments: 1
CCPA: Cut From the Same Cloth as PCI DSS
Last Message: 6/28/2020
 |  Comments: 1
Hackers Busted In Online Poker Cheats
Last Message: 6/26/2020
 |  Comments: 1
Long-Term Effects of COVID-19 on the Cybersecurity Industry
Last Message: 6/25/2020
 |  Comments: 6
Average Cost of a Data Breach: $116M
Last Message: 6/25/2020
 |  Comments: 1
DDoS Attack Targets German Food Delivery Service
Last Message: 6/24/2020
 |  Comments: 2
Companies Struggle for Effective Cybersecurity
Last Message: 6/24/2020
 |  Comments: 1
Cloud Security Alliance Offers Tips to Protect Telehealth Data
Last Message: 6/24/2020
 |  Comments: 2
Microsoft Acquires IoT/OT Security Firm CyberX
Last Message: 6/24/2020
 |  Comments: 1
Twitter Says Business Users Were Vulnerable to Data Breach
Last Message: 6/24/2020
 |  Comments: 1
Microsoft Previews Windows Defender ATP for Android
Last Message: 6/24/2020
 |  Comments: 1
Securing Critical Infrastructure
Last Message: 6/24/2020
 |  Comments: 1
Is CVSS the Right Standard for Prioritization?
Last Message: 6/24/2020
 |  Comments: 1
DDoS Attack Mitigation: Don't Sacrifice Speed for Security
Last Message: 6/24/2020
 |  Comments: 1
What Will Cybersecurity's 'New Normal' Look Like?
Last Message: 6/22/2020
 |  Comments: 2
"FBI Warns Of Syrian Electronic Army Hacking Threat"
Last Message: 6/22/2020
 |  Comments: 5
3 Modern Myths of Threat Intelligence
Last Message: 6/21/2020
 |  Comments: 5
Vulnerability Disclosures Drop in Q1 for First Time in a Decade
Last Message: 6/21/2020
 |  Comments: 1
BEC Attacks on the C-Suite Dropped 37% in Q1
Last Message: 6/19/2020
 |  Comments: 1
How Clinton, Trump Could Champion Cybersecurity
Last Message: 6/18/2020
 |  Comments: 12
The Telehealth Attack Surface
Last Message: 6/18/2020
 |  Comments: 1
Top Colleges For Cybersecurity
Last Message: 6/18/2020
 |  Comments: 4
Car Hacking Hits the Streets
Last Message: 6/14/2020
 |  Comments: 2
Former Salesforce Execs Launch Data Protection Startup
Last Message: 6/11/2020
 |  Comments: 1
ICS Threat Snake Ransomware Suspected in Honda Attack
Last Message: 6/11/2020
 |  Comments: 1
Move Over, Mirai: Persirai Now the Top IP Camera Botnet
Last Message: 6/11/2020
 |  Comments: 1
Canada's Fitness Depot Alerts Customers to Data Breach
Last Message: 6/11/2020
 |  Comments: 2
What 30 Classic Games Can Teach Us about Security
Last Message: 6/11/2020
 |  Comments: 3
Asset Management Mess? How to Get Organized
Last Message: 6/11/2020
 |  Comments: 1
Is Zero Trust the Best Answer to the COVID-19 Lockdown?
Last Message: 6/10/2020
 |  Comments: 2
Cybersecurity Spending Hits 'Temporary Pause' Amid Pandemic
Last Message: 6/9/2020
 |  Comments: 2
Name That Toon: Sign of the Tides
Last Message: 6/8/2020
 |  Comments: 7
From Zero to Hero: CISO Edition
Last Message: 6/5/2020
 |  Comments: 1
Page 1 / 2   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Data Breaches Affect the Enterprise
Data breaches continue to cause negative outcomes for companies worldwide. However, many organizations report that major impacts have declined significantly compared with a year ago, suggesting that many have gotten better at containing breach fallout. Download Dark Reading's Report "How Data Breaches Affect the Enterprise" to delve more into this timely topic.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-4020
PUBLISHED: 2021-11-27
janus-gateway is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-23654
PUBLISHED: 2021-11-26
This affects all versions of package html-to-csv. When there is a formula embedded in a HTML page, it gets accepted without any validation and the same would be pushed while converting it into a CSV file. Through this a malicious actor can embed or generate a malicious link or execute commands via C...
CVE-2021-43785
PUBLISHED: 2021-11-26
@joeattardi/emoji-button is a Vanilla JavaScript emoji picker component. In affected versions there are two vectors for XSS attacks: a URL for a custom emoji, and an i18n string. In both of these cases, a value can be crafted such that it can insert a `script` tag into the page and execute malicious...
CVE-2021-43776
PUBLISHED: 2021-11-26
Backstage is an open platform for building developer portals. In affected versions the auth-backend plugin allows a malicious actor to trick another user into visiting a vulnerable URL that executes an XSS attack. This attack can potentially allow the attacker to exfiltrate access tokens or other se...
CVE-2021-41243
PUBLISHED: 2021-11-26
There is a Potential Zip Slip Vulnerability and OS Command Injection Vulnerability on the management system of baserCMS. Users with permissions to upload files may upload crafted zip files which may execute arbitrary commands on the host operating system. This is a vulnerability that needs to be add...