Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Name That Toon: Naughty or Nice
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 10 / 11   >   >>
scnaseba
50%
50%
scnaseba,
User Rank: Apprentice
11/29/2016 | 5:23:56 PM

"He sees you when your sleeping, he knows when you're awake"
"Yeah... these IoT breaches are getting intense"
PaulT566
0%
100%
PaulT566,
User Rank: Strategist
11/29/2016 | 10:56:24 AM
Santa at the helpdesk
Apparently there is a cyber war on Christmas and Santa wants to do his part.
Kmdean80
83%
17%
Kmdean80,
User Rank: Strategist
11/28/2016 | 9:30:40 PM
Caption for comic
It looks like Everyone is getting what they want this year.....Someone Posted Santas Credit card info online
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
11/28/2016 | 7:17:50 PM
e
"I don't know about you, but I'm getting pretty sick of these H1-B Visas."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
11/28/2016 | 7:16:31 PM
d
"He's making a listserv and checking it twice."
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
11/28/2016 | 7:12:14 PM
c
"The new guy's okay, but he got pretty angry when someone at the cookies in the breakroom with his name on them."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
11/28/2016 | 7:11:02 PM
b
"He's here to install RHEL."
jc2it
0%
100%
jc2it,
User Rank: Apprentice
11/28/2016 | 4:57:46 PM
Naughty or Nice
"Novembeard is getting a bit out of hand."
BlakeK525
33%
67%
BlakeK525,
User Rank: Apprentice
11/28/2016 | 3:40:39 PM
Who's the new guy
Hey, you guys know the contractors- we just figured he dropped in ! Doesn't say much but sure gets crumbs on the keyboard !
rreynolds2118
25%
75%
rreynolds2118,
User Rank: Apprentice
11/28/2016 | 3:37:29 PM
Santa
Someone should tell the new guy that this is order fulfillment only, we don't actually deliver!
<<   <   Page 10 / 11   >   >>


News
Former CISA Director Chris Krebs Discusses Risk Management & Threat Intel
Kelly Sheridan, Staff Editor, Dark Reading,  2/23/2021
Edge-DRsplash-10-edge-articles
Security + Fraud Protection: Your One-Two Punch Against Cyberattacks
Joshua Goldfarb, Director of Product Management at F5,  2/23/2021
News
Cybercrime Groups More Prolific, Focus on Healthcare in 2020
Robert Lemos, Contributing Writer,  2/22/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Building the SOC of the Future
Building the SOC of the Future
Digital transformation, cloud-focused attacks, and a worldwide pandemic. The past year has changed the way business works and the way security teams operate. There is no going back.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-21273
PUBLISHED: 2021-02-26
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.25.0, requests to user provided domains were not restricted to external IP addresses when calculating the key va...
CVE-2021-21274
PUBLISHED: 2021-02-26
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.25.0, a malicious homeserver could redirect requests to their .well-known file to a large file. This can lead to...
CVE-2021-23345
PUBLISHED: 2021-02-26
All versions of package github.com/thecodingmachine/gotenberg are vulnerable to Server-side Request Forgery (SSRF) via the /convert/html endpoint when the src attribute of an HTML element refers to an internal system file, such as &lt;iframe src='file:///etc/passwd'&gt;.
CVE-2021-21297
PUBLISHED: 2021-02-26
Node-Red is a low-code programming for event-driven applications built using nodejs. Node-RED 1.2.7 and earlier contains a Prototype Pollution vulnerability in the admin API. A badly formed request can modify the prototype of the default JavaScript Object with the potential to affect the default beh...
CVE-2021-21298
PUBLISHED: 2021-02-26
Node-Red is a low-code programming for event-driven applications built using nodejs. Node-RED 1.2.7 and earlier has a vulnerability which allows arbitrary path traversal via the Projects API. If the Projects feature is enabled, a user with `projects.read` permission is able to access any file via th...