Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Write A Caption & Win A Prize
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 13 / 14   >   >>
ho3w
ho3w,
User Rank: Apprentice
2/15/2016 | 1:13:11 PM
Caption
Boss, hiding in plain sight has proven to be more successful than anticipated.
clone13
clone13,
User Rank: Strategist
2/15/2016 | 11:08:44 AM
HR sent me..
HR sent me to talk to you about the company's clean desk policy...
SHOLLERAN300
SHOLLERAN300,
User Rank: Apprentice
2/15/2016 | 10:47:40 AM
The Blind Leading the Blind
"I don't know how you do it, George! I just do ABC123 to remember mine."
bradmathis
bradmathis,
User Rank: Apprentice
2/15/2016 | 10:25:50 AM
Boss, I think you misunderstood!
Hey Boss.  When I told you to consider a cloud based password management system, this is NOT what I meant. #moremoneythansense
ecote068
ecote068,
User Rank: Strategist
2/15/2016 | 9:59:35 AM
Write a Caption
Well, we have tremendously decreased the time to reset a user's password!  Now we have to work on limiting who gets to see it.
Whoopty
Whoopty,
User Rank: Ninja
2/15/2016 | 7:47:34 AM
Well
"I have a fool proof way of remembering mine. No-one will ever catch on."
MarkN684
MarkN684,
User Rank: Apprentice
2/14/2016 | 1:35:28 AM
Caption
The latest security upgrade to the OPM site
dale_stout
dale_stout,
User Rank: Strategist
2/13/2016 | 10:40:07 PM
Write a Caption
You'd better get your boarding pass.
dale_stout
dale_stout,
User Rank: Strategist
2/13/2016 | 10:40:07 PM
Write a Caption
You'd better get your boarding pass.
hewenthatway
hewenthatway,
User Rank: Strategist
2/13/2016 | 7:28:34 PM
caption
Well, as you can see, we've been pwned.
<<   <   Page 13 / 14   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Incorporating a Prevention Mindset into Threat Detection and Response
Threat detection and response systems, by definition, are reactive because they have to wait for damage to be done before finding the attack. With a prevention-mindset, security teams can proactively anticipate the attacker's next move, rather than reacting to specific threats or trying to detect the latest techniques in real-time. The report covers areas enterprises should focus on: What positive response looks like. Improving security hygiene. Combining preventive actions with red team efforts.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-1268
PUBLISHED: 2022-05-23
The Donate Extra WordPress plugin through 2.02 does not sanitise and escape a parameter before outputting it back in the response, leading to a Reflected cross-Site Scripting
CVE-2022-1298
PUBLISHED: 2022-05-23
The Tabs WordPress plugin before 2.2.8 does not sanitise and escape Tab descriptions, which could allow high privileged users with a role as low as editor to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
CVE-2022-1320
PUBLISHED: 2022-05-23
The Sliderby10Web WordPress plugin before 1.2.52 does not properly sanitize and escape some of its settings, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed
CVE-2022-1547
PUBLISHED: 2022-05-23
The Check &amp; Log Email WordPress plugin before 1.0.6 does not sanitise and escape a parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting
CVE-2022-1558
PUBLISHED: 2022-05-23
The Curtain WordPress plugin through 1.0.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed