Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Ubuntu Forums Database Hacked
Newest First  |  Oldest First  |  Threaded View
User Rank: Apprentice
11/16/2016 | 5:47:46 AM
security and protections
Database security it is responsible to ensure all access in the whole system with real protections.
User Rank: Apprentice
10/14/2016 | 2:09:11 AM
How to database security ?
DataSunrise Data and Database Security, high-performance software solution for databases and data real-time protection in heterogeneous environments.
User Rank: Apprentice
9/28/2016 | 6:01:17 AM
database security
data security services is a platform against malware and other attacks like Sql injection . You can buy online security for you large scale data from our website.DataSunrise Database Security,  real-time protection in heterogeneous environments.  Visit Here:-  https://www.datasunrise.com/
User Rank: Apprentice
9/1/2016 | 9:15:04 AM
Re: Correct- but what about the authrized entities such as DBA.
Database Forensic (DBF) is a field of digital forensic investigation which deals with database contents and their metadata. It is considered as a significant field by which to identify, detect, acquire, analyse, and reconstruct database incidents and reveal an intruder's activities.  DBF has suffered from several issues which have resulted in it becoming a heterogeneous, confusing and unstructured domain. Examples of these issues include:  a variety of database systems infrastructure; the multidimensional nature of database systems; and domain knowledge effectively being scattered in all directions.  A variety of database systems infrastructures with multidimensional nature have enabled the DBF domain to be able to deal with specific incidents. Therefore, each database management system (DBMS) has a specific forensic investigation model/approach. Consequently, the issues of different concepts and terminologies in terms of forensic investigation process, as well as the scattering of domain knowledge in all directions have produced other challenges for DBF investigators and practitioners. This knowledge (such as models, processes, techniques, tools, frameworks, methods, activities, approaches, and algorithms) is neither organized nor structured, Further, it is universally dispersed such as in: the internet;  books, journals, conferences, online databases, book chapters, dissertations, reports, and organizations. Consequently, there is a lack of generic/standardized models by which to unify concepts and terminologies which may be used to reduce confusion and assist in organizing and structuring domain knowledge. This study discusses the DBF domain from several perspectives in order to highlight, extract, compare, merge and derive common concepts of domain, as well as to harmonize and reconcile concepts and definitions such as:  i) Database dimensions perspective; ii) Database ForensicTechnology perspective; and  iii) Database Forensic Investigation process perspective.
User Rank: Apprentice
8/25/2016 | 1:24:39 AM
database security
A DBMS typically includes a database security and authorization subsystem that is responsible for ensuring the security portions of a database against unauthorized access.The security mechanism of a DBMS must include provisions for restricting access to the database as a whole. 

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Current Issue
Incorporating a Prevention Mindset into Threat Detection and Response
Threat detection and response systems, by definition, are reactive because they have to wait for damage to be done before finding the attack. With a prevention-mindset, security teams can proactively anticipate the attacker's next move, rather than reacting to specific threats or trying to detect the latest techniques in real-time. The report covers areas enterprises should focus on: What positive response looks like. Improving security hygiene. Combining preventive actions with red team efforts.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2022-05-21
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0.
PUBLISHED: 2022-05-21
Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "#admin"' value.
PUBLISHED: 2022-05-21
A Path Traversal vulnerability in Gitblit 1.9.3 can lead to reading website files via /resources//../ (e.g., followed by a WEB-INF or META-INF pathname).
PUBLISHED: 2022-05-21
Solana solana_rbpf before 0.2.29 has an addition integer overflow via invalid ELF program headers. elf.rs has a panic via a malformed eBPF program.
PUBLISHED: 2022-05-21
The route lookup process in beego through 1.12.4 and 2.x through 2.0.2 allows attackers to bypass access control. When a /p1/p2/:name route is configured, attackers can access it by appending .xml in various places (e.g., p1.xml instead of p1).