Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Name That Toon: Threat Landscape
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 5 / 9   >   >>
Kristendean80
Kristendean80,
User Rank: Strategist
5/7/2018 | 9:55:55 AM
Under the Table
" I'll take the job only if you can pay me under the table"
Samtheseagull
Samtheseagull,
User Rank: Strategist
5/7/2018 | 3:34:00 AM
Man in the middle
Alice: Are you interfering with my Chai latte order, Everett?

Everett: I am working undercover, apparently someone has hacked Bob's pizza order, it was a denial of sausage attack (DOS)
Joe Stanganelli
Joe Stanganelli,
User Rank: Ninja
5/6/2018 | 12:24:31 PM
js024
"I found a flaw in our BC/DR plan. Can you call my chiropractor?"
Joe Stanganelli
Joe Stanganelli,
User Rank: Ninja
5/6/2018 | 12:21:01 PM
js023
"Do you mind? I need to wipe my critical assets."
Joe Stanganelli
Joe Stanganelli,
User Rank: Ninja
5/6/2018 | 12:17:01 PM
js022
"It's not a matter of if the sky is going to fall, but when."
dwaltersct
dwaltersct,
User Rank: Apprentice
5/5/2018 | 2:05:51 PM
Re: Time for a new caption contest!
Hey, it works for Ellie on NCIS!
0scorpion0
0scorpion0,
User Rank: Apprentice
5/5/2018 | 1:14:59 PM
Improvisation...
Management denied my request for a Faraday Cage!
Joe Stanganelli
Joe Stanganelli,
User Rank: Ninja
5/4/2018 | 4:50:26 PM
js021
"Not the button.The CEO pushed a button. He doesn't know which one. I'm just waiting for the fallout."
Joe Stanganelli
Joe Stanganelli,
User Rank: Ninja
5/4/2018 | 4:47:53 PM
js020
"I'm looking for bugs."
Vexel
Vexel,
User Rank: Strategist
5/4/2018 | 10:51:37 AM
Re: Time for a new caption contest!
The cubes at his last company had 4 walls.
<<   <   Page 5 / 9   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Creating an Effective Incident Response Plan
Security teams are realizing their organizations will experience a cyber incident at some point. An effective incident response plan that takes into account their specific requirements and has been tested is critical. This issue of Tech Insights also includes: -a look at the newly signed cyber-incident law, -how organizations can apply behavioral psychology to incident response, -and an overview of the Open Cybersecurity Schema Framework.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-4144
PUBLISHED: 2022-11-29
An out-of-bounds read flaw was found in the QXL display device emulation in QEMU. The qxl_phys2virt() function does not check the size of the structure pointed to by the guest physical address, potentially reading past the end of the bar space into adjacent pages. A malicious guest user could use th...
CVE-2022-4172
PUBLISHED: 2022-11-29
An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table (ERST) device of QEMU in the read_erst_record() and write_erst_record() functions. Both issues may allow the guest to overrun the host buffer allocated for the ERST memory device. A malicious guest...
CVE-2022-46150
PUBLISHED: 2022-11-29
Discourse is an open-source discussion platform. Prior to version 2.8.13 of the `stable` branch and version 2.9.0.beta14 of the `beta` and `tests-passed` branches, unauthorized users may learn of the existence of hidden tags and that they have been applied to topics that they have access to. This is...
CVE-2022-21126
PUBLISHED: 2022-11-29
The package com.github.samtools:htsjdk before 3.0.1 are vulnerable to Creation of Temporary File in Directory with Insecure Permissions due to the createTempDir() function in util/IOUtil.java not checking for the existence of the temporary directory before attempting to create it.
CVE-2022-25848
PUBLISHED: 2022-11-29
This affects all versions of package static-dev-server. This is because when paths from users to the root directory are joined, the assets for the path accessed are relative to that of the root directory.