Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

9/13/2019
02:00 PM
John Klossner
John Klossner
Cartoon Contest

Name That Toon: SOC Puppets

Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 2 / 5   >   >>
lakers85
25%
75%
lakers85,
User Rank: Strategist
10/4/2019 | 2:15:12 PM
Lack of Cybersecurity Talent is a Systemic Issue
Joan: "I thought our CISO was kidding when he said HR placed 2 new interns in the Security Department to help monitor all operations and infrastructure."

Pete: "Well, he did hit the 'easy button'."

Both: "hahahaha"
REISEN1955
0%
100%
REISEN1955,
User Rank: Ninja
10/3/2019 | 3:06:33 PM
Re: SOC Puppets
Norm was not taking the SOC analyst training very well.
sdenrich
0%
100%
sdenrich,
User Rank: Guru
10/3/2019 | 1:49:37 PM
SOC Puppets
"Marge, I think Larry is is trying to spoof our ID's again"
archeanchaos
25%
75%
archeanchaos,
User Rank: Apprentice
10/2/2019 | 3:18:03 PM
Re: Write a Caption, Win a Prize
George asked for advice on social engineering techniques. I told him the best methods involve something you know.
amaguhn
25%
75%
amaguhn,
User Rank: Strategist
10/1/2019 | 7:49:25 AM
Security Training
The security training budget has been hit hard this year.
Koalaking
40%
60%
Koalaking,
User Rank: Strategist
9/27/2019 | 3:55:25 PM
Replacement CISO
The last CISO moved us to the cloud and did not secure S3 buckets.  I would like to introduce you to his replacement, Socky McSockster.
reg2385
0%
100%
reg2385,
User Rank: Strategist
9/27/2019 | 12:35:29 PM
Cartoon contest
I feel harrassed. They keep saying to each other; Sock-it-to-me! Sock-it-to-me! Sock-it-to-me!
packetnarc
0%
100%
packetnarc,
User Rank: Apprentice
9/27/2019 | 11:57:22 AM
Sock Puppet Social Engineer
Our new Social Engineering campaign sure has brought Allen out of his shell. I just hope he washed them first.
jojoh
60%
40%
jojoh,
User Rank: Apprentice
9/26/2019 | 3:45:04 PM
Monitor This
It appears our SOC monitoring tools are up and running.
Doubleton
0%
100%
Doubleton,
User Rank: Apprentice
9/26/2019 | 8:30:42 AM
Identity theft.
His resume said "Identity Theft Expert."
<<   <   Page 2 / 5   >   >>
COVID-19: Latest Security News & Commentary
Dark Reading Staff 5/22/2020
How an Industry Consortium Can Reinvent Security Solution Testing
Henry Harrison, Co-founder & Chief Technology Officer, Garrison,  5/21/2020
Is Zero Trust the Best Answer to the COVID-19 Lockdown?
Dan Blum, Cybersecurity & Risk Management Strategist,  5/20/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13485
PUBLISHED: 2020-05-25
The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header.
CVE-2020-13486
PUBLISHED: 2020-05-25
The Knock Knock plugin before 1.2.8 for Craft CMS allows malicious redirection.
CVE-2020-13482
PUBLISHED: 2020-05-25
EM-HTTP-Request 1.1.5 uses the library eventmachine in an insecure way that allows an attacker to perform a man-in-the-middle attack against users of the library. The hostname in a TLS server certificate is not verified.
CVE-2020-13458
PUBLISHED: 2020-05-25
An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action.
CVE-2020-13459
PUBLISHED: 2020-05-25
An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There is stored XSS in the Bulk Resize action.