Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Cartoon: Connected Car Security
Threaded  |  Newest First  |  Oldest First
Marilyn Cohodas
Marilyn Cohodas,
User Rank: Strategist
2/8/2019 | 11:37:01 AM
New Cartoon! Check it out...
True and funny in a scary way!
REISEN1955
REISEN1955,
User Rank: Ninja
2/20/2019 | 7:57:47 AM
Re: New Cartoon! Check it out...
Dang - he really wants to be serious about websurfing!
PanamaVet
PanamaVet,
User Rank: Strategist
2/11/2019 | 8:39:17 AM
DarkReading
White Hat Job Interview
Ratteau
Ratteau,
User Rank: Strategist
2/13/2019 | 8:27:19 AM
Trust us
We won't blame you if we crash.  Trust us!
acampbell448
acampbell448,
User Rank: Ninja
2/13/2019 | 11:00:35 AM
Don't worry.....
Don't worry - we won't forget that you are back there, just don't create too much drag and slow us down!
Len Sebesta
Len Sebesta,
User Rank: Strategist
2/14/2019 | 12:09:32 PM
Lead, follow, or .....
If I can't lead, shouldn't I at least be in the car ?
Saraquin
Saraquin,
User Rank: Apprentice
2/14/2019 | 8:11:33 PM
Risk
This is not what I meant by Risk Assessment!
PanamaVet
PanamaVet,
User Rank: Strategist
2/15/2019 | 8:58:29 AM
Microsoft Team
NOOB clicked Check For Updates
TheVampireO
TheVampireO,
User Rank: Strategist
2/15/2019 | 3:02:30 PM
Forethought
I know I'm just the intern, but I don't think you put much forethought into security...
jrig1842
jrig1842,
User Rank: Strategist
2/20/2019 | 9:02:48 AM
Security Clearance
It's clear even Security is not sure what to do for self driving cars 
acampbell448
acampbell448,
User Rank: Ninja
2/20/2019 | 11:01:53 AM
Move Fast
Security?   Our motto is Move Fast and Break things.
MarcM
MarcM,
User Rank: Strategist
2/21/2019 | 7:55:30 AM
Business drag
We won't cut you loose as long as you don't slow us down!
Joe Stanganelli
Joe Stanganelli,
User Rank: Ninja
2/23/2019 | 11:03:19 PM
Car or no car
The "connected car" aspect didn't even strike me as first, literally. I took this as a figurative representation of all tech/digital-transformation initiatives!
Len Sebesta
Len Sebesta,
User Rank: Strategist
2/27/2019 | 12:15:09 PM
Re: Car or no car
I with you on that one Joe.
mhhf1ve
mhhf1ve,
User Rank: Apprentice
3/5/2019 | 1:11:29 PM
There is no car...
Where we're going, there are no roads...
WallyDragon
WallyDragon,
User Rank: Strategist
3/1/2019 | 6:29:57 AM
Let me just check...
...is this a secure line I'm on?
lakers85
lakers85,
User Rank: Strategist
3/6/2019 | 9:04:44 AM
Shotgun
Ummmm, I called shotgun...


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The Promise and Reality of Cloud Security
Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises address the associated security risks. This report - a compilation of cutting-edge Black Hat research, in-depth Omdia analysis, and comprehensive Dark Reading reporting - explores how cloud security is rapidly evolving.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-25855
PUBLISHED: 2023-02-06
All versions of the package create-choo-app3 are vulnerable to Command Injection via the devInstall function due to improper user-input sanitization.
CVE-2022-25853
PUBLISHED: 2023-02-06
All versions of the package semver-tags are vulnerable to Command Injection via the getGitTagsRemote function due to improper input sanitization.
CVE-2017-20176
PUBLISHED: 2023-02-06
A vulnerability classified as problematic was found in ciubotaru share-on-diaspora 0.7.9. This vulnerability affects unknown code of the file new_window.php. The manipulation of the argument title/url leads to cross site scripting. The attack can be initiated remotely. The name of the patch is fb6fa...
CVE-2014-12508
PUBLISHED: 2023-02-06
A vulnerability has been found in Gimmie Plugin 1.2.2 and classified as critical. Affected by this vulnerability is an unknown functionality of the file trigger_login.php. The manipulation of the argument userid leads to sql injection. Upgrading to version 1.3.0 is able to address this issue. The na...
CVE-2014-12508
PUBLISHED: 2023-02-06
A vulnerability, which was classified as critical, has been found in Gimmie Plugin 1.2.2. This issue affects some unknown processing of the file trigger_referral.php. The manipulation of the argument referrername leads to sql injection. Upgrading to version 1.3.0 is able to address this issue. The n...