Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
How To Get More Involved In The IT Security Community
Oldest First  |  Newest First  |  Threaded View
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
2/18/2015 | 2:14:15 PM
Archived?
I was not able to make this time. Was the broadcast archived?
LimorE414
75%
25%
LimorE414,
User Rank: Apprentice
2/18/2015 | 2:33:18 PM
How to connect with your peers
The answer is actually simple - go to www.peerlyst.com where 17K+ security professionals can stay on top of new informaiton without any vendor spam (just follow the stuff you care about, and stop following what gets boring), collaborate with peers, exchange content, send private messages, and get useful guides without the need to fill forms or get spammed. We are an ad-free, hassle-free site, where value is higher than noise. You can find experts for specific topics and products, get and share reviews, and get security perks. The CISOs of Airbnb, Gap, Neiman Markus, Citibank, Visa, Lockheed Marten, Aetna and many more are already there. You? 
av8r1s2fly
50%
50%
av8r1s2fly,
User Rank: Apprentice
2/18/2015 | 2:42:11 PM
Re: How to connect with your peers
Looks interesting. Thanks for sharing!
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
2/19/2015 | 9:39:36 AM
Re: Archived?
It was an excellent broadcast, Ryan. Here's the link to the archive. It's defintely worth a listen and the chat thread has some great nuggets in it, too.  
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
2/20/2015 | 8:48:46 AM
Re: Archived?
Thanks Marilyn. I will defintely listen to it. It asks me to register, is this mandatory to hear the archive? Thanks,
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
2/20/2015 | 8:55:56 AM
Re: Archived?
Yep! You have to register to access the radio show audio.


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Enterprise Cybersecurity Plans in a Post-Pandemic World
Download the Enterprise Cybersecurity Plans in a Post-Pandemic World report to understand how security leaders are maintaining pace with pandemic-related challenges, and where there is room for improvement.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2016-6555
PUBLISHED: 2021-09-24
OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP trap supplied data. By creating a malicious SNMP trap, an attacker can store an XSS payload which will trigger when a user of the web UI views the events list page. This issue was fixed in ver...
CVE-2016-6556
PUBLISHED: 2021-09-24
OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP agent supplied data. By creating a malicious SNMP 'sysName' or 'sysContact' response, an attacker can store an XSS payload which will trigger when a user of the web UI views the data. This iss...
CVE-2021-40654
PUBLISHED: 2021-09-24
An information disclosure issue exist in D-LINK-DIR-615 B2 2.01mt. An attacker can obtain a user name and password by forging a post request to the / getcfg.php page
CVE-2021-40655
PUBLISHED: 2021-09-24
An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version : 2.01MT. An attacker can obtain a user name and password by forging a post request to the / getcfg.php page
CVE-2021-41503
PUBLISHED: 2021-09-24
** UNSUPPORTED WHEN ASSIGNED ** DCS-5000L v1.05 and DCS-932L v2.17 and older are affecged by Incorrect Acess Control. The use of the basic authentication for the devices command interface allows attack vectors that may compromise the cameras configuration and allow malicious users on the LAN to acce...