Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
8 Books Security Pros Should Read
Newest First  |  Oldest First  |  Threaded View
Charlotte Galyon
Charlotte Galyon,
User Rank: Apprentice
4/15/2020 | 7:08:23 AM
It's very cool!
It's very cool!
LisaB845
LisaB845,
User Rank: Apprentice
8/24/2017 | 5:30:57 AM
professional logo design
you are so good at this, thanks for the book tips!
silvanosales
silvanosales,
User Rank: Apprentice
5/25/2017 | 11:11:45 AM
Re: novinhas
good
DarkReader007
DarkReader007,
User Rank: Apprentice
4/1/2017 | 3:22:36 PM
Keep Track
Thank you
jonesj26
jonesj26,
User Rank: Author
12/14/2016 | 9:12:56 AM
Good list -- here are some more
Good list.  For those who want to expand into risk management roles, these two are also good reads:

* How to Measure Anything In Cybersecurity

* Measuring and Managing Information Risk: A FAIR Approach

 
Nightwolf76
Nightwolf76,
User Rank: Apprentice
11/29/2016 | 4:05:58 PM
Re: A couple
I think you mean David Thiel.  I'll refrain from posting my opinion on Peter Thiel.
Joe Stanganelli
Joe Stanganelli,
User Rank: Ninja
11/25/2016 | 5:25:42 PM
A couple
Numerous books come to mind to further suggest.  Spam Nation by Brian Krebs highlights the history of the pharma-spam industry.  And a while ago I reviewed iOS Application Security by Peter Thiel -- which is a decent reference book.
ydm.mendez
ydm.mendez,
User Rank: Apprentice
11/23/2016 | 1:01:44 PM
Future Crimes by Marc Goodman
I think this is a great read for every IT Security professional. 


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The Promise and Reality of Cloud Security
Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises address the associated security risks. This report - a compilation of cutting-edge Black Hat research, in-depth Omdia analysis, and comprehensive Dark Reading reporting - explores how cloud security is rapidly evolving.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-47419
PUBLISHED: 2023-02-07
An XSS vulnerability was discovered in the Mayan EDMS DMS. Successful XSS exploitation was observed in the in-product tagging system.
CVE-2023-0713
PUBLISHED: 2023-02-07
The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajax_add_folder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke this f...
CVE-2023-0728
PUBLISHED: 2023-02-07
The Wicked Folders plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.18.16. This is due to missing or incorrect nonce validation on the ajax_save_folder function. This makes it possible for unauthenticated attackers to invoke this function via forge...
CVE-2022-47413
PUBLISHED: 2023-02-07
Given a malicious document provided by an attacker, the OpenKM DMS is vulnerable to a stored (persistent, or "Type II") XSS condition.
CVE-2022-47414
PUBLISHED: 2023-02-07
If an attacker has access to the console for OpenKM (and is authenticated), a stored XSS vulnerability is reachable in the document "note" functionality.