Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Name That Toon: The Advanced Persistent Threat
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 4 / 7   >   >>
jrig1842
0%
100%
jrig1842,
User Rank: Strategist
3/27/2019 | 7:36:37 AM
Quick
Better call Saul.....er Aquaman!
PanamaVet
100%
0%
PanamaVet,
User Rank: Strategist
3/26/2019 | 8:52:08 AM
End Factor Authentication
Incorrect password, you have one second to click on all pictures with a traffic signal...
katchootoo
100%
0%
katchootoo,
User Rank: Apprentice
3/25/2019 | 3:59:13 PM
Incognito Tab Fail
Bob, I told you incognito mode doesn't protect on those sites.  Now I have to call IT, HR and animal control to clean up your mess.
mholm971
100%
0%
mholm971,
User Rank: Apprentice
3/24/2019 | 1:54:19 AM
Re: The Attack Of The Octopus.
Must be an security incident. IT has released the Kraken again...
mholm971
50%
50%
mholm971,
User Rank: Apprentice
3/24/2019 | 1:52:03 AM
Re: The Attack Of The Octopus.
Mist be a security incident.It has released the kraken again...
drmrs
0%
100%
drmrs,
User Rank: Strategist
3/22/2019 | 10:16:50 AM
The Attack Of The Octopus.
Well, at least it isn't Mobby Dick!
jmgutierrezjr
100%
0%
jmgutierrezjr,
User Rank: Apprentice
3/21/2019 | 6:55:05 PM
Catoon Contest
That's what happens when you don't read the EULA Karen!
cdunn355
100%
0%
cdunn355,
User Rank: Strategist
3/21/2019 | 5:09:31 PM
Password what?
Oh, password cracker! I thought you said you needed a password kraken!
jpappe
100%
0%
jpappe,
User Rank: Apprentice
3/21/2019 | 3:43:48 PM
Bento No-No
Nancy's got to stop using the WiFi at Kyosho. Seems she's brought that new IKA worm back in her bento.
TheVampireO
100%
0%
TheVampireO,
User Rank: Strategist
3/21/2019 | 2:35:22 PM
Underwater
WoW! When the CFO siad we were underwater, I had no idea it was this bad...
<<   <   Page 4 / 7   >   >>


Mobile Banking Malware Up 50% in First Half of 2019
Kelly Sheridan, Staff Editor, Dark Reading,  1/17/2020
Active Directory Needs an Update: Here's Why
Raz Rafaeli, CEO and Co-Founder at Secret Double Octopus,  1/16/2020
New Attack Campaigns Suggest Emotet Threat Is Far From Over
Jai Vijayan, Contributing Writer,  1/16/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
The Year in Security: 2019
This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Flash Poll
How Enterprises are Attacking the Cybersecurity Problem
How Enterprises are Attacking the Cybersecurity Problem
Organizations have invested in a sweeping array of security technologies to address challenges associated with the growing number of cybersecurity attacks. However, the complexity involved in managing these technologies is emerging as a major problem. Read this report to find out what your peers biggest security challenges are and the technologies they are using to address them.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-5216
PUBLISHED: 2020-01-23
In Secure Headers (RubyGem secure_headers), a directive injection vulnerability is present in versions before 3.9.0, 5.2.0, and 6.3.0. If user-supplied input was passed into append/override_content_security_policy_directives, a newline could be injected leading to limited header injection. Upon seei...
CVE-2020-5217
PUBLISHED: 2020-01-23
In Secure Headers (RubyGem secure_headers), a directive injection vulnerability is present in versions before 3.8.0, 5.1.0, and 6.2.0. If user-supplied input was passed into append/override_content_security_policy_directives, a semicolon could be injected leading to directive injection. This could b...
CVE-2020-5223
PUBLISHED: 2020-01-23
In PrivateBin versions 1.2.0 before 1.2.2, and 1.3.0 before 1.3.2, a persistent XSS attack is possible. Under certain conditions, a user provided attachment file name can inject HTML leading to a persistent Cross-site scripting (XSS) vulnerability. The vulnerability has been fixed in PrivateBin v1.3...
CVE-2019-20399
PUBLISHED: 2020-01-23
A timing vulnerability in the Scalar::check_overflow function in Parity libsecp256k1-rs before 0.3.1 potentially allows an attacker to leak information via a side-channel attack.
CVE-2020-7915
PUBLISHED: 2020-01-22
An issue was discovered on Eaton 5P 850 devices. The Ubicacion SAI field allows XSS attacks by an administrator.