Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Cartoon: The Soviet Threat
Newest First  |  Oldest First  |  Threaded View
FKREITZBERG980
50%
50%
FKREITZBERG980,
User Rank: Moderator
1/11/2019 | 3:32:12 PM
Russia
Fancy Bear, Cozy Bear, Energetic Bear....It is obvious the Americans the come up with these stupid titles have never seen an actual Russian bear.
jrig1842
0%
100%
jrig1842,
User Rank: Strategist
1/8/2019 | 7:23:01 AM
Mentor
Well Mikhail we've been working with Monaco, Mauru and Tuvalu to build their skills.
M0nk3
0%
100%
M0nk3,
User Rank: Strategist
12/31/2018 | 10:29:36 PM
Rumor has it...
Collusion, are you kidding me?  They can't prove anything.  I mean, of course they colluded.  Putin and Trump have been bff's for years.  They've been riding tigers together since community college...
Ratteau
100%
0%
Ratteau,
User Rank: Strategist
12/27/2018 | 12:06:39 PM
Bah
You want real challenge?  Hack 4Chan and get away with it.  I still have random drones taking my photo at least once a month.
acampbell448
0%
100%
acampbell448,
User Rank: Strategist
12/26/2018 | 9:16:45 AM
the Good old Days
You know Fancy Bear, this was alot more fun when we got BIG headlines in all the papers.   Yes you are right Cozy Bear.   Just another day at the office now!
Joe Stanganelli
67%
33%
Joe Stanganelli,
User Rank: Ninja
12/21/2018 | 11:52:01 AM
Obligatory Yakov Smirnoff crack
In post-Soviet Russia, store pays you!

Or something like that. Whatever. All the pieces are there.


COVID-19: Latest Security News & Commentary
Dark Reading Staff 9/21/2020
Hacking Yourself: Marie Moe and Pacemaker Security
Gary McGraw Ph.D., Co-founder Berryville Institute of Machine Learning,  9/21/2020
Startup Aims to Map and Track All the IT and Security Things
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/22/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13991
PUBLISHED: 2020-09-24
vm/opcodes.c in JerryScript 2.2.0 allows attackers to hijack the flow of control by controlling a register.
CVE-2020-15160
PUBLISHED: 2020-09-24
PrestaShop from version 1.7.5.0 and before version 1.7.6.8 is vulnerable to a blind SQL Injection attack in the Catalog Product edition page with location parameter. The problem is fixed in 1.7.6.8
CVE-2020-15162
PUBLISHED: 2020-09-24
In PrestaShop from version 1.5.0.0 and before version 1.7.6.8, users are allowed to send compromised files. These attachments allowed people to input malicious JavaScript which triggered an XSS payload. The problem is fixed in version 1.7.6.8.
CVE-2020-15843
PUBLISHED: 2020-09-24
ActFax Version 7.10 Build 0335 (2020-05-25) is susceptible to a privilege escalation vulnerability due to insecure folder permissions on %PROGRAMFILES%\ActiveFax\Client\, %PROGRAMFILES%\ActiveFax\Install\ and %PROGRAMFILES%\ActiveFax\Terminal\. The folder permissions allow "Full Control" t...
CVE-2020-17365
PUBLISHED: 2020-09-24
Improper directory permissions in the Hotspot Shield VPN client software for Windows 10.3.0 and earlier may allow an authorized user to potentially enable escalation of privilege via local access. The vulnerability allows a local user to corrupt system files: a local user can create a specially craf...