Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dark Reading Article Boards

Message Boards posted in June 2020
Page 1 / 2   >   >>
HackerOne Reveals Top 10 Bug-Bounty Programs
Last Message: 6/30/2020
 |  Comments: 1
Russian Cybercriminal Behind CardPlanet Sentenced to 9 Years
Last Message: 6/30/2020
 |  Comments: 1
Profile of the Post-Pandemic CISO
Last Message: 6/30/2020
 |  Comments: 2
FCC Designates Huawei & ZTE as National Security Threats
Last Message: 6/30/2020
 |  Comments: 1
COVID-19 Puts ICS Security Initiatives 'On Pause'
Last Message: 6/30/2020
 |  Comments: 1
CISA Issues Advisory on Home Routers
Last Message: 6/30/2020
 |  Comments: 1
CCPA: Cut From the Same Cloth as PCI DSS
Last Message: 6/28/2020
 |  Comments: 1
Hackers Busted In Online Poker Cheats
Last Message: 6/26/2020
 |  Comments: 1
Long-Term Effects of COVID-19 on the Cybersecurity Industry
Last Message: 6/25/2020
 |  Comments: 6
Average Cost of a Data Breach: $116M
Last Message: 6/25/2020
 |  Comments: 1
DDoS Attack Targets German Food Delivery Service
Last Message: 6/24/2020
 |  Comments: 2
Companies Struggle for Effective Cybersecurity
Last Message: 6/24/2020
 |  Comments: 1
Cloud Security Alliance Offers Tips to Protect Telehealth Data
Last Message: 6/24/2020
 |  Comments: 2
Microsoft Acquires IoT/OT Security Firm CyberX
Last Message: 6/24/2020
 |  Comments: 1
Twitter Says Business Users Were Vulnerable to Data Breach
Last Message: 6/24/2020
 |  Comments: 1
Microsoft Previews Windows Defender ATP for Android
Last Message: 6/24/2020
 |  Comments: 1
Securing Critical Infrastructure
Last Message: 6/24/2020
 |  Comments: 1
Is CVSS the Right Standard for Prioritization?
Last Message: 6/24/2020
 |  Comments: 1
DDoS Attack Mitigation: Don't Sacrifice Speed for Security
Last Message: 6/24/2020
 |  Comments: 1
What Will Cybersecurity's 'New Normal' Look Like?
Last Message: 6/22/2020
 |  Comments: 2
"FBI Warns Of Syrian Electronic Army Hacking Threat"
Last Message: 6/22/2020
 |  Comments: 5
3 Modern Myths of Threat Intelligence
Last Message: 6/21/2020
 |  Comments: 5
Vulnerability Disclosures Drop in Q1 for First Time in a Decade
Last Message: 6/21/2020
 |  Comments: 1
BEC Attacks on the C-Suite Dropped 37% in Q1
Last Message: 6/19/2020
 |  Comments: 1
How Clinton, Trump Could Champion Cybersecurity
Last Message: 6/18/2020
 |  Comments: 12
The Telehealth Attack Surface
Last Message: 6/18/2020
 |  Comments: 1
Top Colleges For Cybersecurity
Last Message: 6/18/2020
 |  Comments: 4
Car Hacking Hits the Streets
Last Message: 6/14/2020
 |  Comments: 2
Former Salesforce Execs Launch Data Protection Startup
Last Message: 6/11/2020
 |  Comments: 1
ICS Threat Snake Ransomware Suspected in Honda Attack
Last Message: 6/11/2020
 |  Comments: 1
Move Over, Mirai: Persirai Now the Top IP Camera Botnet
Last Message: 6/11/2020
 |  Comments: 1
Canada's Fitness Depot Alerts Customers to Data Breach
Last Message: 6/11/2020
 |  Comments: 2
What 30 Classic Games Can Teach Us about Security
Last Message: 6/11/2020
 |  Comments: 3
Asset Management Mess? How to Get Organized
Last Message: 6/11/2020
 |  Comments: 1
Is Zero Trust the Best Answer to the COVID-19 Lockdown?
Last Message: 6/10/2020
 |  Comments: 2
Cybersecurity Spending Hits 'Temporary Pause' Amid Pandemic
Last Message: 6/9/2020
 |  Comments: 2
Name That Toon: Sign of the Tides
Last Message: 6/8/2020
 |  Comments: 7
From Zero to Hero: CISO Edition
Last Message: 6/5/2020
 |  Comments: 1
Page 1 / 2   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Improving Enterprise Cybersecurity With XDR
Enterprises are looking at eXtended Detection and Response technologies to improve their abilities to detect, and respond to, threats. While endpoint detection and response is not new to enterprise security, organizations have to improve network visibility, expand data collection and expand threat hunting capabilites if they want their XDR deployments to succeed. This issue of Tech Insights also includes: a market overview for XDR from Omdia, questions to ask before deploying XDR, and an XDR primer.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-31884
PUBLISHED: 2022-06-28
Marval MSM v14.19.0.12476 has an Improper Access Control vulnerability which allows a low privilege user to delete other users API Keys including high privilege and the Administrator users API Keys.
CVE-2022-31887
PUBLISHED: 2022-06-28
Marval MSM v14.19.0.12476 has a 0-Click Account Takeover vulnerability which allows an attacker to change any user's password in the organization, this means that the user can also escalate achieve Privilege Escalation by changing the administrator password.
CVE-2020-19896
PUBLISHED: 2022-06-28
File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php.
CVE-2020-19897
PUBLISHED: 2022-06-28
A reflected Cross Site Scripting (XSS) in wuzhicms v4.1.0 allows remote attackers to execute arbitrary web script or HTML via the imgurl parameter.
CVE-2021-41559
PUBLISHED: 2022-06-28
Silverstripe silverstripe/framework 4.8.1 has a quadratic blowup in Convert::xml2array() that enables a remote attack via a crafted XML document.