Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

<<   <   Page 2 / 2
Explained: Domain-Generating Algorithms
Malwarebytes Labs, Malwarebytes LabsCommentary
Cybercriminals use domain-generating algorithms to prevent their servers from being blacklisted or taken down.
By Malwarebytes Labs Malwarebytes Labs, 12/21/2016
Comment0 comments  |  Read  |  Post a Comment
Phishing Can Leverage Users To Bypass Sandboxes
Malwarebytes Labs, Malwarebytes LabsCommentary
Using social engineering to bypass traditional security defenses is not new and will certainly continue to grow.
By Malwarebytes Labs Malwarebytes Labs, 12/19/2016
Comment0 comments  |  Read  |  Post a Comment
Security In 2017: Ransomware Will Remain King
Malwarebytes Labs, Malwarebytes LabsCommentary
Businesses, consumers, and security professionals must face this reality and take the necessary steps to educate each other and protect their networks.
By Malwarebytes Labs Malwarebytes Labs, 12/13/2016
Comment0 comments  |  Read  |  Post a Comment
Survey Stresses Importance Of Securing The Internet of Things
Malwarebytes Labs, Malwarebytes LabsCommentary
If organizations monitor and deploy IoT devices with caution, they can stay ahead of the curve and continue to keep all of their endpoints protected.
By Malwarebytes Labs Malwarebytes Labs, 12/7/2016
Comment2 comments  |  Read  |  Post a Comment
5 Links Of The Attack Chain And How To Disrupt Them
Malwarebytes Labs, Malwarebytes LabsCommentary
By identifying steps in the attack chain, you can deploy appropriate defenses at each stage to prevent breaches from happening in the first place.
By Malwarebytes Labs Malwarebytes Labs, 11/28/2016
Comment1 Comment  |  Read  |  Post a Comment
Active Defense Framework Can Help Businesses Defend Against Cyberattacks
Malwarebytes Labs, Malwarebytes LabsCommentary
New report provides a framework that lets private sector entities defend themselves while at the same time protect individual liberties and privacy, and mitigate the risk of collateral damage.
By Malwarebytes Labs Malwarebytes Labs, 11/17/2016
Comment0 comments  |  Read  |  Post a Comment
8 Ways Businesses Can Better Secure Their Remote Workers
Malwarebytes Labs, Malwarebytes LabsCommentary
Remote workers may present challenges for IT staff, but a combination of cybersecurity best practices, strong policy, and a dedicated user awareness campaign could keep company data safe.
By Malwarebytes Labs Malwarebytes Labs, 11/14/2016
Comment0 comments  |  Read  |  Post a Comment
Ransomware Doesn’t Have To Mean Game Over
Malwarebytes Labs, Malwarebytes LabsCommentary
3 methods can help you recover from a ransomware attack relatively unscathed.
By Malwarebytes Labs Malwarebytes Labs, 11/8/2016
Comment0 comments  |  Read  |  Post a Comment
Phishing Threat Continues To Loom Large
Malwarebytes Labs, Malwarebytes LabsCommentary
Phishing and spear phishing will only get worse unless companies proactively train employees to recognize a scam when they see one.
By Malwarebytes Labs Malwarebytes Labs, 11/2/2016
Comment0 comments  |  Read  |  Post a Comment
Vendor Security Alliance To Improve Cybersecurity Of Third-Party Providers
Malwarebytes Labs, Malwarebytes LabsCommentary
Member companies can use their VSA rating when offering their services, effectively skipping the process of verification done by prospective businesses.
By Malwarebytes Labs Malwarebytes Labs, 10/24/2016
Comment4 comments  |  Read  |  Post a Comment
<<   <   Page 2 / 2
1268
COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/1/2020
9 Tips to Prepare for the Future of Cloud & Network Security
Kelly Sheridan, Staff Editor, Dark Reading,  9/28/2020
Attacker Dwell Time: Ransomware's Most Important Metric
Ricardo Villadiego, Founder and CEO of Lumu,  9/30/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-5788
PUBLISHED: 2020-10-01
Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to delete arbitrary files on disk via the admin/system/admin/certificates/delete action.
CVE-2020-5789
PUBLISHED: 2020-10-01
Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to read the contents of arbitrary files on disk.
CVE-2020-9486
PUBLISHED: 2020-10-01
In Apache NiFi 1.10.0 to 1.11.4, the NiFi stateless execution engine produced log output which included sensitive property values. When a flow was triggered, the flow definition configuration JSON was printed, potentially containing sensitive values in plaintext.
CVE-2020-9487
PUBLISHED: 2020-10-01
In Apache NiFi 1.0.0 to 1.11.4, the NiFi download token (one-time password) mechanism used a fixed cache size and did not authenticate a request to create a download token, only when attempting to use the token to access the content. An unauthenticated user could repeatedly request download tokens, ...
CVE-2020-9491
PUBLISHED: 2020-10-01
In Apache NiFi 1.2.0 to 1.11.4, the NiFi UI and API were protected by mandating TLS v1.2, as well as listening connections established by processors like ListenHTTP, HandleHttpRequest, etc. However intracluster communication such as cluster request replication, Site-to-Site, and load balanced queues...