Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Name that Toon: Risky Business
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 8 / 10   >   >>
BradP282
BradP282,
User Rank: Apprentice
9/19/2018 | 1:59:55 PM
Cartoon Caption
Apparently Ctl + Alt + Delete has a new feature after this months patches...
Unhappymeal
Unhappymeal,
User Rank: Apprentice
9/19/2018 | 12:20:13 PM
Re: Put your thinking cap on! We have new cartoon caption contest!
The floor is Child Support.
acampbell448
acampbell448,
User Rank: Ninja
9/19/2018 | 10:07:22 AM
Pen Test?
When they asked me to do a pen test, I wasn't thinking of this!
M0nk3
M0nk3,
User Rank: Strategist
9/19/2018 | 2:14:21 AM
Caller stated he was havening an issue with his new desk.
Thank you for calling techincal support.  My name is George.  How can I assist you?
dan91266
dan91266,
User Rank: Strategist
9/17/2018 | 7:19:49 PM
Risky Business
In Russia, application hangs YOU!
jridgeii
jridgeii,
User Rank: Strategist
9/17/2018 | 4:31:05 PM
Name that Toon: Risky Business
No more PEBKAC errors
rzaleski081
rzaleski081,
User Rank: Apprentice
9/17/2018 | 2:03:31 PM
Re: Name that Toon: Risky Business (September 2018)
HR's new office inversion workspace which will fix any sore back from sitting too long.
tcorbeill
tcorbeill,
User Rank: Apprentice
9/17/2018 | 9:02:19 AM
Name that Toon: Risky Business (September 2018)
"Great... someone call security, Dave fell for another phising attack."
tm1971
tm1971,
User Rank: Strategist
9/17/2018 | 2:24:44 AM
Risky Business (September 2018)
Latest anti-shoulder-surfing (aSS) password protection PoC.
drmrs
drmrs,
User Rank: Strategist
9/16/2018 | 5:22:41 PM
Risky Business (September 2018)
An employee named "Hanging Chad" never fully recovered from an earlier era.
<<   <   Page 8 / 10   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Creating an Effective Incident Response Plan
Security teams are realizing their organizations will experience a cyber incident at some point. An effective incident response plan that takes into account their specific requirements and has been tested is critical. This issue of Tech Insights also includes: -a look at the newly signed cyber-incident law, -how organizations can apply behavioral psychology to incident response, -and an overview of the Open Cybersecurity Schema Framework.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-4031
PUBLISHED: 2022-11-29
The Simple:Press plugin for WordPress is vulnerable to arbitrary file modifications in versions up to, and including, 6.8 via the 'file' parameter which does not properly restrict files to be edited in the context of the plugin. This makes it possible with attackers, with high-level permissions such...
CVE-2022-4032
PUBLISHED: 2022-11-29
The Quiz and Survey Master plugin for WordPress is vulnerable to iFrame Injection via the 'question[id]' parameter in versions up to, and including, 8.0.4 due to insufficient input sanitization and output escaping that allowed iframe tags to be injected. This makes it possible for unauthenticated at...
CVE-2022-4033
PUBLISHED: 2022-11-29
The Quiz and Survey Master plugin for WordPress is vulnerable to input validation bypass via the 'question[id]' parameter in versions up to, and including, 8.0.4 due to insufficient input validation that allows attackers to inject content other than the specified value (i.e. a number, file path, etc...
CVE-2022-4034
PUBLISHED: 2022-11-29
The Appointment Hour Booking Plugin for WordPress is vulnerable to CSV Injection in versions up to, and including, 1.3.72. This makes it possible for unauthenticated attackers to embed untrusted input into content during booking creation that may be exported as a CSV file when a site's administrator...
CVE-2022-4035
PUBLISHED: 2022-11-29
The Appointment Hour Booking plugin for WordPress is vulnerable to iFrame Injection via the &acirc;&euro;&tilde;email&acirc;&euro;&trade; or general field parameters in versions up to, and including, 1.3.72 due to insufficient input sanitization and output escaping that makes injecting iFrame tags p...