Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Name That Toon: The Advanced Persistent Threat
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 2 / 7   >   >>
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/30/2019 | 10:06:42 PM
js0316
"Hey, if you want to be the one to deny his request for a new phone, be my guest."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/30/2019 | 10:03:46 PM
js0315
"Have you traced the intrusion yet?"
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/30/2019 | 10:02:25 PM
js0314
"They used to fire CISOs. Now it's much worse."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/30/2019 | 10:00:02 PM
js0313
"Are you calling in sick for tomorrow's 'Take Your Child to Work Day'?"
Joe Stanganelli
100%
0%
Joe Stanganelli,
User Rank: Ninja
3/30/2019 | 9:56:40 PM
js0312
"I liked it better when robots were taking our jobs."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/30/2019 | 9:54:47 PM
js0311
"Turns out Sam was using spaces instead of tabs. Next thing you know..."
Kristendean80
100%
0%
Kristendean80,
User Rank: Strategist
3/30/2019 | 11:17:26 AM
Re: Name That Toon
Your Low On Ink light is on again
eschulz809
0%
100%
eschulz809,
User Rank: Apprentice
3/29/2019 | 12:19:44 PM
Name That Toon
"Ya, it's new.  It's called the 20,000 Leagues Under the Sea Virus.
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/29/2019 | 12:51:56 AM
js0310
"I dunno. Check the READMESEYMOUR file."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
3/29/2019 | 12:48:05 AM
js0309
"Open your ears, Frank! I said that red team has to think like enemy -- not the anemone."
<<   <   Page 2 / 7   >   >>


NSA Appoints Rob Joyce as Cyber Director
Dark Reading Staff 1/15/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-28488
PUBLISHED: 2021-01-22
This affects all versions of package jquery-ui; all versions of package org.fujion.webjars:jquery-ui. When the &quot;dialog&quot; is injected into an HTML tag more than once, the browser and the application may crash.
CVE-2021-22847
PUBLISHED: 2021-01-22
Hyweb HyCMS-J1's API fail to filter POST request parameters. Remote attackers can inject SQL syntax and execute commands without privilege.
CVE-2021-22849
PUBLISHED: 2021-01-22
Hyweb HyCMS-J1 backend editing function does not filter special characters. Users after log-in can inject JavaScript syntax to perform a stored XSS (Stored Cross-site scripting) attack.
CVE-2020-8567
PUBLISHED: 2021-01-21
Kubernetes Secrets Store CSI Driver Vault Plugin prior to v0.0.6, Azure Plugin prior to v0.0.10, and GCP Plugin prior to v0.2.0 allow an attacker who can create specially-crafted SecretProviderClass objects to write to arbitrary file paths on the host filesystem, including /var/lib/kubelet/pods.
CVE-2020-8568
PUBLISHED: 2021-01-21
Kubernetes Secrets Store CSI Driver versions v0.0.15 and v0.0.16 allow an attacker who can modify a SecretProviderClassPodStatus/Status resource the ability to write content to the host filesystem and sync file contents to Kubernetes Secrets. This includes paths under var/lib/kubelet/pods that conta...