Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Dark Reading INsecurity Conference Registration Now Open
Newest First  |  Oldest First  |  Threaded View
Marilyn Cohodas
Marilyn Cohodas,
User Rank: Strategist
8/10/2017 | 9:16:18 AM
Re: Can someone please tell us the cost?
You can find more information about the conference -- including cost, programming and how to register  -- at https://insecurity.com/passes-prices.  Here are the prices: Early Bird (Through 9/29/17) $999;  On-Site $1499.
mistyh191
mistyh191,
User Rank: Apprentice
8/8/2017 | 6:11:30 PM
Can someone please tell us the cost?
I've been all over the site and can't find the cost anywhere, including the section for Pricing.
sec0pz
sec0pz,
User Rank: Apprentice
8/1/2017 | 10:30:31 AM
Cost
You wont tell me the cost of your conference, then I wont sign up. Keep it, I dont need it.
sec0pz
sec0pz,
User Rank: Apprentice
8/1/2017 | 10:30:17 AM
Cost
You wont tell me the cost of your conference, then I wont sign up. Keep it, I dont need it.
EldonS
EldonS,
User Rank: Author
6/30/2017 | 12:06:27 PM
Differentiation
I'm interested in seeing how this conference can distinguish itself from the dozens of others.
RetiredUser
RetiredUser,
User Rank: Ninja
6/23/2017 | 10:25:15 AM
CTF Equivalent?
I think this is an excellent move - it will be great to see this body of professionals come together.  While not the same environment as other hacker cons, I know this one will have live demos but will there be some equivalent to the now essential "capture the flag" activity we've come to love?  The draw to other cons for many of us is the element of chaos and, frankly, danger they offer.  Again, even though this is a different audience, here's to seeing something a "little" dangerous and chaotic that will bring more people back to INsecurity and give it some sense of "legendary" status that will keep them coming back.
tony71
tony71,
User Rank: Apprentice
6/22/2017 | 1:48:26 PM
very good article
I am wondering what is the future of cyberdefense with the growing influence of Russia
Seanogee
Seanogee,
User Rank: Apprentice
6/22/2017 | 9:50:22 AM
INsecurity
It says to sign up, but gives no place to do so. Is it not up yet?

Sean


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The Promise and Reality of Cloud Security
Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises address the associated security risks. This report - a compilation of cutting-edge Black Hat research, in-depth Omdia analysis, and comprehensive Dark Reading reporting - explores how cloud security is rapidly evolving.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2023-23750
PUBLISHED: 2023-02-01
An issue was discovered in Joomla! 4.0.0 through 4.2.6. A missing token check causes a CSRF vulnerability in the handling of post-installation messages.
CVE-2023-23751
PUBLISHED: 2023-02-01
An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access com_actionlogs.
CVE-2022-37033
PUBLISHED: 2023-02-01
In dotCMS 5.x-22.06, TempFileAPI allows a user to create a temporary file based on a passed in URL, while attempting to block any SSRF access to local IP addresses or private subnets. In resolving this URL, the TempFileAPI follows any 302 redirects that the remote URL returns. Because there is no re...
CVE-2022-3913
PUBLISHED: 2023-02-01
Rapid7 Nexpose and InsightVM versions 6.6.82 through 6.6.177 fail to validate the certificate of the update server when downloading updates. This failure could allow an attacker in a privileged position on the network to provide their own HTTPS endpoint, or intercept communications to the legitimate...
CVE-2022-45782
PUBLISHED: 2023-02-01
An issue was discovered in dotCMS core 5.3.8.5 through 5.3.8.15 and 21.03 through 22.10.1. A cryptographically insecure random generation algorithm for password-reset token generation leads to account takeover.