Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Issue Archives

Enterprise Cybersecurity Plans in a Post-Pandemic World
Publish Date: Aug 12,2021
The State of Cybersecurity Incident Response
Publish Date: Jun 3,2021
2021 Top Enterprise IT Trends
Publish Date: Feb 4,2021
2020: The Year in Security
Publish Date: Dec 7,2020
How to Measure and Reduce Cybersecurity Risk in Your Organization
Publish Date: Oct 28,2020
Special Report: Computing's New Normal
Publish Date: Sep 17,2020
7 New Cybersecurity Vulnerabilities That Could Put Your Enterprise at Risk
Publish Date: Aug 14,2020
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
Publish Date: May 12,2020
6 Emerging Cyber Threats That Enterprises Face in 2020
Publish Date: Feb 13,2020
IT 2020: A Look Ahead
Publish Date: Jan 23,2020
The Year in Security: 2019
Publish Date: Dec 9,2019
Navigating the Deluge of Security Data
Publish Date: Nov 12,2019
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
Publish Date: Aug 12,2019
Building and Managing an IT Security Operations Program
Publish Date: May 15,2019
5 Emerging Cyber Threats to Watch for in 2019
Publish Date: Feb 7,2019
The Year in Security 2018
Publish Date: Dec 7,2018
10 Best Practices That Could Reshape Your IT Security Department
Publish Date: Nov 6,2018
10 Emerging Threats Every Enterprise Should Know About
Publish Date: Aug 16,2018
The Biggest Cybersecurity Breaches of 2018 (So Far)
Publish Date: Jul 23,2018
The Changing Role of the CISO
Publish Date: May 21,2018
How to Cope with the IT Security Skills Shortage
Publish Date: Feb 12,2018
The Year in Security: 2017
Publish Date: Dec 12,2017
Managing Cyber-Risk
Publish Date: Oct 25,2017
Security Vulnerabilities: The Next Wave
Publish Date: Jul 19,2017
Security Operations and IT Operations: Finding the Path to Collaboration
Publish Date: Apr 19,2017
5 Security Technologies to Watch in 2017
Publish Date: Jan 18,2017
Five Things Every Business Executive Should Know About Cybersecurity
Publish Date: Dec 6,2016
Five Emerging Security Threats - And What You Can Learn From Them
Publish Date: Aug 9,2016
The Changing Face of Identity Management
Publish Date: Jul 26,2016
DNS Threats: What Every Enterprise Should Know
Publish Date: Jun 28,2016
How To Build An Effective Defense Against Ransomware
Publish Date: Jun 21,2016
8 Key Building Blocks for Enterprise Network Defense
Publish Date: May 10,2016
Understanding & Managing the Mobile Security Threat
Publish Date: Mar 15,2016
E-Commerce Security: What Every Enterprise Needs to Know
Publish Date: Nov 2,2015
Dark Reading Tech Digest September 7, 2015
Publish Date: Sep 7,2015
Dark Reading Tech Digest, June 2015
Publish Date: Jun 1,2015
Dark Reading - March 2, 2015
Publish Date: Mar 2,2015
Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Enterprise Cybersecurity Plans in a Post-Pandemic World
Download the Enterprise Cybersecurity Plans in a Post-Pandemic World report to understand how security leaders are maintaining pace with pandemic-related challenges, and where there is room for improvement.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-20037
PUBLISHED: 2021-09-21
SonicWall Global VPN Client 4.10.5 installer (32-bit and 64-bit) incorrect default file permission vulnerability leads to privilege escalation which potentially allows command execution in the host operating system. This vulnerability impacts GVC 4.10.5 installer and earlier.
CVE-2021-39229
PUBLISHED: 2021-09-20
Apprise is an open source library which allows you to send a notification to almost all of the most popular notification services available. In affected versions users who use Apprise granting them access to the IFTTT plugin (which just comes out of the box) are subject to a denial of service attack...
CVE-2021-41083
PUBLISHED: 2021-09-20
Dada Mail is a web-based e-mail list management system. In affected versions a bad actor could give someone a carefully crafted web page via email, SMS, etc, that - when visited, allows them control of the list control panel as if the bad actor was logged in themselves. This includes changing any ma...
CVE-2021-34650
PUBLISHED: 2021-09-20
The eID Easy WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the error parameter found in the ~/admin.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 4.6.
CVE-2021-41082
PUBLISHED: 2021-09-20
Discourse is a platform for community discussion. In affected versions any private message that includes a group had its title and participating user exposed to users that do not have access to the private messages. However, access control for the private messages was not compromised as users were n...