Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
US Border Policy Shifts May Drive Changes in Laptop Security
Oldest First  |  Newest First  |  Threaded View
Page 1 / 2   >   >>
jenshadus
50%
50%
jenshadus,
User Rank: Strategist
4/3/2017 | 8:57:34 AM
Catch 22
Besides tunneling to a VDI, or corporate data...which requires an Internet connection, other options include:

1.  thumbdrive...however there are many corporations disabling this option

2.  Removable encrypted hard drive, which still may require a USB connection (I don't know of any maker that allows removing the hard drive in a laptop anymore)

Both these option allow the passenger to carry their data with them, while checking in their laptop. 

Does this policy include checking tablets?  A person might still be able to VPN to a VDI using tablets nowadays.
Shantaram
50%
50%
Shantaram,
User Rank: Ninja
4/4/2017 | 4:38:27 AM
Re: 192.168.1.1
Nice answers! Thanks guys, for your job
marting123
50%
50%
marting123,
User Rank: Apprentice
4/4/2017 | 8:55:54 PM
Great job.
Sure, i agree with you, the blogger shared us amazing and professional messages, great!
marting123
50%
50%
marting123,
User Rank: Apprentice
4/5/2017 | 5:36:12 PM
Thanks for your great article.
Hi Ericka, I really appreciate your great article here, very informative and useful, I am a newbie here, but I am very glad and pleasure to get your amazing post here, have you updated any articles else? I will be very glad to enjoy again...
marting123
50%
50%
marting123,
User Rank: Apprentice
4/5/2017 | 10:54:23 PM
Amazing and professional article.
I really appreciate your great article here, very informative and useful, I am a newbie here, but I am very glad and pleasure to get your amazing post here, have you updated any articles else? I will be very glad to enjoy again...
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
4/6/2017 | 4:19:34 PM
Security
I'm with George Wrenn on this.  It'll force companies to do what they already should be doing.

At the same time, however, while I appreciate the security risks of people hacking into on board systems, I am not convinced this is the best way to solve the problem (especially because what can be done on a laptop can be done on a jailbroken mobile device).  I'd rather see better InfoSec in this environment, even to the point of lack of connectivity.  If the cost is no Wi-Fi for the two to four hours it takes to get to Atlanta, that to me is better than "you can't bring your laptop/device."
marting123
50%
50%
marting123,
User Rank: Apprentice
4/6/2017 | 7:58:19 PM
Great article.
Hi Ericka, every time I back for your article, I got many much very useful messages and knowledge from your posts, in this great platform, you shared me so many much information and kind information, haha, i am sorry i am not the expert of the subject, but I interest in it :) Looking forward to your great update again, thanks much!
marting123
50%
50%
marting123,
User Rank: Apprentice
4/6/2017 | 11:48:04 PM
Amazing article.
Really amazing article, although I am a newbie, but you shared me the best messages. Ericka, looking forward to your update :)
newday2017s
50%
50%
newday2017s,
User Rank: Apprentice
4/7/2017 | 3:18:20 AM
Good reading post
Hi Ericka,

This is a great reading article. I've learn many new things from your post. Thank for your time.
newday2017s
50%
50%
newday2017s,
User Rank: Apprentice
4/7/2017 | 3:20:23 AM
Good reading post.
Hi Ericka,

This is a great reading post. I've learn many new things here. Thank for share it here!
Page 1 / 2   >   >>


HackerOne Drops Mobile Voting App Vendor Voatz
Dark Reading Staff 3/30/2020
Limited-Time Free Offers to Secure the Enterprise Amid COVID-19
Curtis Franklin Jr., Senior Editor at Dark Reading,  3/31/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
State of Cybersecurity Incident Response
State of Cybersecurity Incident Response
Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-11565
PUBLISHED: 2020-04-06
An issue was discovered in the Linux kernel through 5.6.2. mpol_parse_str in mm/mempolicy.c has a stack-based out-of-bounds write because an empty nodelist is mishandled during mount option parsing, aka CID-aa9f7d5172fa.
CVE-2020-11558
PUBLISHED: 2020-04-05
An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This leads to various use-after-free outcomes involving mdia_Read, gf_isom_delete_movie, and gf_isom_parse_m...
CVE-2020-11547
PUBLISHED: 2020-04-05
PRTG Network Monitor before 20.1.57.1745 allows remote unauthenticated attackers to obtain information about probes running or the server itself (CPU usage, memory, Windows version, and internal statistics) via an HTTP request, as demonstrated by type=probes to login.htm or index.htm.
CVE-2020-11548
PUBLISHED: 2020-04-05
The Search Meter plugin through 2.13.2 for WordPress allows user input introduced in the search bar to be any formula. The attacker could achieve remote code execution via CSV injection if a wp-admin/index.php?page=search-meter Export is performed.
CVE-2020-11542
PUBLISHED: 2020-04-04
3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring.