Amazon Slip-Up Shows How Much Alexa Really Knows

Network Computing Dark Reading

Advertise

About Us

Threaded | Newest First | Oldest First

[close this box]

ChristopherJames,
User Rank: Strategist
1/4/2019 | 4:42:38 AM

Across the digital world

Isn't it frightening to know just how much personal info we are actually trading across the digital world without our knowledge? We could become ever so complacent about our digital activities that we overlook the actual security behind them. We might see them as harmless activities but in actual fact, we are actually disclosing our most intimate secrets to the whole world wide web.

Reply | Post Message | Messages List | Start a Board

PaulChau,
User Rank: Strategist
1/15/2019 | 2:49:07 AM

Hard versus soft copy

And folks, this is why there will always be people who will stick to paper and pen despite all of the technology in the world available at their fingertips. Sure it might be convenient to put all of your data into storage online, but if it's any information worth anything of value, you write it down and keep it under lock and key physically rather than on a network!

Reply | Post Message | Messages List | Start a Board

REISEN1955,
User Rank: Ninja
1/15/2019 | 8:05:55 AM

Re: Hard versus soft copy

Agree about 90% but in the connected world it is almost impossible to keep EVERYTHING offline. I live with a secure (I Hope) cloud backup but generally have three hard drives (right, 3) that are TURNED OFF on my main system and turned on ONLY when I scan new data to them and then hard turn off again. I know being on for a few seconds, well, a risk but you cannot live totally 100% SAFE in this world anymore. Let's get did of Social Security numbers being personal identifiers for a start. But I am protected nine times over for Ransomware, I could survive that with a ghost image of primary drive and 3 drives for backup restoration.

Reply | Post Message | Messages List | Start a Board

Editors' Choice

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry

David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP, 7/9/2021

Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours

Robert Lemos, Contributing Writer, 7/7/2021

It's in the Game (but It Shouldn't Be)

Tal Memran, Cybersecurity Expert, CYE, 7/9/2021

Live Events

Webinars

Cybersecurity Outlook 2023 - December 13 Event

[FREE Virtual Event] The Identity Crisis

More Informa Tech Live Events

White Papers

How Machine Learning, AI & Deep Learning Improve Cybersecurity

State of Email Security

State of Ransomware Readiness: Facing the Reality Gap

How Hybrid Work Fuels Ransomware Attacks

Implementing Zero Trust In Your Enterprise: How to Get Started

More White Papers

Cartoon

Latest Comment: I've heard of people walking right out the front door with entire servers...

Cartoon Archive

Current Issue

Developing and Testing an Effective Breach Response Plan

Whether or not a data breach is a disaster for the organization depends on the security team's response and that is based on how the team developed a breach response plan beforehand and if it was thoroughly tested. Inside this report, experts share how to: -understand the technical environment, -determine what types of incidents would trigger the plan, -know which stakeholders need to be notified and how to do so, -develop steps to contain the breach, collect evidence, and initiate recovery.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

Incident Readiness and Building Response Playbook

In this special report, learn the Xs and Os of any good security incident readiness and response playbook.

Download Now!

Battle for the Endpoint

0 comments

How Enterprises are Developing Secure Applications

0 comments

Assessing Cybersecurity Risk in Today's Enterprises

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2022-4377
PUBLISHED: 2022-12-09

A vulnerability was found in S-CMS 5.0 Build 20220328. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Contact Information Page. The manipulation of the argument Make a Call leads to cross site scripting. The attack can be launched rem...

CVE-2022-4375
PUBLISHED: 2022-12-09

A vulnerability was found in Mingsoft MCMS up to 5.2.9. It has been classified as critical. Affected is an unknown function of the file /cms/category/list. The manipulation of the argument sqlWhere leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed t...

CVE-2022-33187
PUBLISHED: 2022-12-09

Brocade SANnav before v2.2.1 logs usernames and encoded passwords in debug-enabled logs. The vulnerability could allow an attacker with admin privilege to read sensitive information.

CVE-2022-38765
PUBLISHED: 2022-12-09

Canon Medical Informatics Vitrea Vision 7.7.76.1 does not adequately enforce access controls. An authenticated user is able to gain unauthorized access to imaging records by tampering with the vitrea-view/studies/search patientId parameter.

CVE-2022-41947
PUBLISHED: 2022-12-08

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. Through various features of DHIS2, an authenticated user may be able to upload a file which includes embedded javascript. The user could then potentially trick another authenticated use...

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]