Amazon Slip-Up Shows How Much Alexa Really Knows

Network Computing Dark Reading

Advertise

About Us

Threaded | Newest First | Oldest First

[close this box]

50%

ChristopherJames,
User Rank: Strategist
1/4/2019 | 4:42:38 AM

Across the digital world

Isn't it frightening to know just how much personal info we are actually trading across the digital world without our knowledge? We could become ever so complacent about our digital activities that we overlook the actual security behind them. We might see them as harmless activities but in actual fact, we are actually disclosing our most intimate secrets to the whole world wide web.

Reply | Post Message | Messages List | Start a Board

50%

PaulChau,
User Rank: Strategist
1/15/2019 | 2:49:07 AM

Hard versus soft copy

And folks, this is why there will always be people who will stick to paper and pen despite all of the technology in the world available at their fingertips. Sure it might be convenient to put all of your data into storage online, but if it's any information worth anything of value, you write it down and keep it under lock and key physically rather than on a network!

Reply | Post Message | Messages List | Start a Board

50%

REISEN1955,
User Rank: Ninja
1/15/2019 | 8:05:55 AM

Re: Hard versus soft copy

Agree about 90% but in the connected world it is almost impossible to keep EVERYTHING offline. I live with a secure (I Hope) cloud backup but generally have three hard drives (right, 3) that are TURNED OFF on my main system and turned on ONLY when I scan new data to them and then hard turn off again. I know being on for a few seconds, well, a risk but you cannot live totally 100% SAFE in this world anymore. Let's get did of Social Security numbers being personal identifiers for a start. But I am protected nine times over for Ransomware, I could survive that with a ghost image of primary drive and 3 drives for backup restoration.

Reply | Post Message | Messages List | Start a Board

Editors' Choice

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry

David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP, 7/9/2021

Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours

Robert Lemos, Contributing Writer, 7/7/2021

It's in the Game (but It Shouldn't Be)

Tal Memran, Cybersecurity Expert, CYE, 7/9/2021

Live Events

Webinars

Cybersecurity Technology - March 24 Dark Reading Virtual Event

Black Hat Spring Trainings 2022 - February 28 - March 3 - Learn More

SupportWorld Live: May 15-20, 2022, MGM Grand, Las Vegas, NV

More Informa Tech Live Events

White Papers

Zero Trust and the Power of Isolation for Threat Prevention

Zero Trust in Real Life

Protecting Your Mainframe Against Relentless Ransomware

2021 Ransomware Threat Report

The Future of Passwordless Rests With Your Employees

More White Papers

Cartoon

Latest Comment: I've heard of people walking right out the front door with entire servers...

Cartoon Archive

Current Issue

How Enterprises Are Assessing Cybersecurity Risk in Today's Environment

The adoption of cloud services spurred by the COVID-19 pandemic has resulted in pressure on cyber-risk professionals to focus on vulnerabilities and new exposures that stem from pandemic-driven changes. Many cybersecurity pros expect fundamental, long-term changes to their organization's computing and data security due to the shift to more remote work and accelerated cloud adoption. Download this report from Dark Reading to learn more about their challenges and concerns.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

Incident Readiness and Building Response Playbook

In this special report, learn the Xs and Os of any good security incident readiness and response playbook.

Download Now!

Battle for the Endpoint

0 comments

How Enterprises are Developing Secure Applications

0 comments

Assessing Cybersecurity Risk in Today's Enterprises

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2021-46204
PUBLISHED: 2022-01-19

Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path parameter. SQL injection vulnerability via taocms\include\Model\Article.php.

CVE-2022-0274
PUBLISHED: 2022-01-19

Cross-site Scripting (XSS) - Stored in NPM cypress-orchardcore prior to 1.2.2.

CVE-2021-33912
PUBLISHED: 2022-01-19

libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code (via an unauthenticated e-mail message from anywhere on the Internet) with a crafted SPF DNS record, because of incorrect sprintf usage in SPF_record_expand_data in spf_expand...

CVE-2021-33913
PUBLISHED: 2022-01-19

libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code (via an unauthenticated e-mail message from anywhere on the Internet) with a crafted SPF DNS record, because of SPF_record_expand_data in spf_expand.c. The amount of overflowed data dep...

CVE-2021-42810
PUBLISHED: 2022-01-19

A flaw in the previous versions of the product may allow an authenticated attacker the ability to execute code as a privileged user on a system where the agent is installed.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]