Attacks/Breaches

12/11/2017
09:00 AM
Connect Directly
Twitter
Twitter
RSS
E-Mail

Post-Breach Carnage: Worst Ways The Axe Fell in 2017

Executive firings, stock drops, and class action settlements galore, this year was a study in real-world repercussions for cybersecurity lapses.
9 of 10

Verizon Gets a $350 Million Discount on Yahoo Acquisition

This past year has just been a rolling cavalcade of bad news for Yahoo following its initial announcement late last year of a massive breach of customer data that at the time they said impacted 1 billion users. Yahoo's breach fallout shows how expensive security events can really be when Verizon managed to get a whopping $350 knocked off its buying price when picking up the company earlier this year. Good thing, too, because after the deal went through Verizon found out that the breach actually impacted all 3 billion Yahoo users. 

(Image by way4arer, via Adobe Stock)

Verizon Gets a $350 Million Discount on Yahoo Acquisition

This past year has just been a rolling cavalcade of bad news for Yahoo following its initial announcement late last year of a massive breach of customer data that at the time they said impacted 1 billion users. Yahoo's breach fallout shows how expensive security events can really be when Verizon managed to get a whopping $350 knocked off its buying price when picking up the company earlier this year. Good thing, too, because after the deal went through Verizon found out that the breach actually impacted all 3 billion Yahoo users.

(Image by way4arer, via Adobe Stock)

9 of 10
Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
Russia Hacked Clinton's Computers Five Hours After Trump's Call
Robert Lemos, Technology Journalist/Data Researcher,  4/19/2019
Tips for the Aftermath of a Cyberattack
Kelly Sheridan, Staff Editor, Dark Reading,  4/17/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-11350
PUBLISHED: 2019-04-19
CloudBees Jenkins Operations Center 2.150.2.3, when an expired trial license exists, allows Cleartext Password Storage and Retrieval via the proxy configuration page.
CVE-2019-11351
PUBLISHED: 2019-04-19
TeamSpeak 3 Client before 3.2.5 allows remote code execution in the Qt framework.
CVE-2019-2039
PUBLISHED: 2019-04-19
In rw_i93_sm_detect_ndef of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1...
CVE-2019-2040
PUBLISHED: 2019-04-19
In rw_i93_process_ext_sys_info of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Androi...
CVE-2019-2041
PUBLISHED: 2019-04-19
In the configuration of NFC modules on certain devices, there is a possible failure to distinguish individual devices due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Produc...