Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Name That Toon: The Advanced Persistent Threat
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 3 / 7   >   >>
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/29/2019 | 12:28:14 AM
js0308
"It's one thing for them to steal our jobs. It's another to have to train them before getting fired."
Joe Stanganelli
100%
0%
Joe Stanganelli,
User Rank: Ninja
3/29/2019 | 12:26:33 AM
js0307
"You really need to clear out your ticket queue."
Joe Stanganelli
100%
0%
Joe Stanganelli,
User Rank: Ninja
3/29/2019 | 12:24:28 AM
js0306
"On the one hand, he's got over a dozen security certifications, he knows more than 40 progamming languages, and he can read hexadecimal. On the other hand, he's a giant monster who's going to eat us."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/29/2019 | 12:13:54 AM
js0305
"Did you meet the new guy yet?"
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/29/2019 | 12:12:05 AM
js0304
"Told you not to feed the trolls."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/29/2019 | 12:10:47 AM
js0303
"Dude. Get off of Facebook."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/29/2019 | 12:09:51 AM
js0302
"Yeah, it does that sometimes."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/28/2019 | 11:20:42 PM
js0301
"Ph'nglui mglw'nafh TLS R'lyeh wgah'nagl fhtagn."
willgetin
0%
100%
willgetin,
User Rank: Guru
3/27/2019 | 4:39:18 PM
Updating the crawler
When development said they were updating the web crawler with some new features, they weren't kidding around!
JohnS78602
0%
100%
JohnS78602,
User Rank: Apprentice
3/27/2019 | 10:18:22 AM
Tentalcles
Now that's a phishing attack...  with tentacles!
<<   <   Page 3 / 7   >   >>


Exploits Released for As-Yet Unpatched Critical Citrix Flaw
Jai Vijayan, Contributing Writer,  1/13/2020
Microsoft to Officially End Support for Windows 7, Server 2008
Kelly Sheridan, Staff Editor, Dark Reading,  1/13/2020
Active Directory Needs an Update: Here's Why
Raz Rafaeli, CEO and Co-Founder at Secret Double Octopus,  1/16/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
The Year in Security: 2019
This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Flash Poll
[Just Released] How Enterprises are Attacking the Cybersecurity Problem
[Just Released] How Enterprises are Attacking the Cybersecurity Problem
Organizations have invested in a sweeping array of security technologies to address challenges associated with the growing number of cybersecurity attacks. However, the complexity involved in managing these technologies is emerging as a major problem. Read this report to find out what your peers biggest security challenges are and the technologies they are using to address them.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-5007
PUBLISHED: 2020-01-17
Directory traversal vulnerability in the agentLogUploader servlet in ZOHO ManageEngine Desktop Central (DC) and Desktop Central Managed Service Providers (MSP) edition before 9 build 90055 allows remote attackers to write to and execute arbitrary files as SYSTEM via a .. (dot dot) in the filename pa...
CVE-2020-5397
PUBLISHED: 2020-01-17
Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Spring MVC (spring-webmvc module) or Spring WebFlux (spring-webflux module) endpoints. Only non-authenticated endpoints are vulnerable because preflight requests should not incl...
CVE-2019-17635
PUBLISHED: 2020-01-17
Eclipse Memory Analyzer version 1.9.1 and earlier is subject to a deserialization vulnerability if an index file of a parsed heap dump is replaced by a malicious version and the heap dump is reopened in Memory Analyzer. The user must chose to reopen an already parsed heap dump with an untrusted inde...
CVE-2019-19339
PUBLISHED: 2020-01-17
It was found that the Red Hat Enterprise Linux 8 kpatch update did not include the complete fix for CVE-2018-12207. A flaw was found in the way Intel CPUs handle inconsistency between, virtual to physical memory address translations in CPU's local cache and system software's Paging structure entries...
CVE-2007-6070
PUBLISHED: 2020-01-17
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2008-1382. Reason: This candidate is a reservation duplicate of CVE-2008-1382. Notes: All CVE users should reference CVE-2008-1382 instead of this candidate. All references and descriptions in this candidate have been removed to prevent ...