Comments
Security Concerns Limit Remote Work Opportunities
Newest First  |  Oldest First  |  Threaded View
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
1/17/2019 | 12:35:37 PM
Re: Security Concerns
The problem is that you have to have uses who use corporate security tools as provided - Cisco VPN for example.  They hate it and generally prefer straight internet in a hotel, exposing their asset to any number of infections then wonder why IT security is mad at them.  
evabrown
50%
50%
evabrown,
User Rank: Apprentice
1/11/2019 | 5:35:28 AM
Re: Security Concerns
I get some rare ideas about the IoT. The information is just awesome. I also get some useful ideas from https://netgearroutersupportnumber.com/how-to-reset-recover-change-netgear-router-password-or-login/. You may also visit this.
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
1/10/2019 | 9:28:41 AM
Security Concerns
Policy in many cases is what will give the security program teeth within the enterprise. In lieu of this, if a corporate asset is provided to work remotely it can cut down on the threat landscape greatly. By utilizing a laptop with the corporate security safeguards deployed you can ensure that the endpoint is encrypted, protected from next gen threats, and that it is up to date with patching. As always there isn't a silver bullet but this will cut down the threatscape greatly.


Government Shutdown Brings Certificate Lapse Woes
Curtis Franklin Jr., Senior Editor at Dark Reading,  1/11/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
The Year in Security 2018
This Dark Reading Tech Digest explores the biggest news stories of 2018 that shaped the cybersecurity landscape.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-6487
PUBLISHED: 2019-01-18
TP-Link WDR Series devices through firmware v3 (such as TL-WDR5620 V3.0) are affected by command injection (after login) leading to remote code execution, because shell metacharacters can be included in the weather get_weather_observe citycode field.
CVE-2018-20735
PUBLISHED: 2019-01-17
** DISPUTED ** An issue was discovered in BMC PATROL Agent through 11.3.01. It was found that the PatrolCli application can allow for lateral movement and escalation of privilege inside a Windows Active Directory environment. It was found that by default the PatrolCli / PATROL Agent application only...
CVE-2019-0624
PUBLISHED: 2019-01-17
A spoofing vulnerability exists when a Skype for Business 2015 server does not properly sanitize a specially crafted request, aka "Skype for Business 2015 Spoofing Vulnerability." This affects Skype.
CVE-2019-0646
PUBLISHED: 2019-01-17
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka "Team Foundation Server Cross-site Scripting Vulnerability." This affects Team.
CVE-2019-0647
PUBLISHED: 2019-01-17
An information disclosure vulnerability exists when Team Foundation Server does not properly handle variables marked as secret, aka "Team Foundation Server Information Disclosure Vulnerability." This affects Team.