Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Database Security
Authentication
Mobile
Privacy
Compliance
Careers and People
Identity & Access Management
Security Monitoring
Advanced Threats
Insider Threats
Vulnerability Management
Comments
Name That Toon: End User Lockdown
Threaded  |  Newest First  |  Oldest First
Marilyn Cohodas
Marilyn Cohodas,
 User Rank: Strategist
5/10/2019 | 2:29:52 PM
New Cartoon Caption Contest starts today!
Enter and win a prize..
mbartel1418
mbartel1418,
 User Rank: Strategist
5/10/2019 | 3:40:24 PM
Re: New Cartoon Caption Contest starts today!
I told you we needed to pass that cybersecurity training class.
akosyak
akosyak,
 User Rank: Apprentice
5/16/2019 | 1:31:55 PM
Re: New Cartoon Caption Contest starts today!
It's a bit cumbersome - but I've never felt more secure!
ntwalk
ntwalk,
 User Rank: Strategist
5/21/2019 | 9:38:32 AM
Keys, we don't need no stinkin' keys.
Could you pass the hash, I really have to use the bathroom!
Blaze007
Blaze007,
 User Rank: Strategist
5/28/2019 | 1:34:19 PM
Security Posture
"So this is what those Security folk mean when they talk about improving our security posture! I gotta hand it to them, I've never had better neck support!"
isolovey
isolovey,
 User Rank: Apprentice
5/29/2019 | 3:09:30 PM
Cartoon Caption: PadLock
Ransomware is getting out of control
mbartel1418
mbartel1418,
 User Rank: Strategist
5/10/2019 | 3:39:09 PM
caption
I told you we needed to pass that cybersecurity training.
LeewardBear
LeewardBear,
 User Rank: Strategist
5/10/2019 | 3:57:13 PM
May Cartoon
I've heard of "vendor lock-in", but this is ridiculous!
corbincofer
corbincofer,
 User Rank: Apprentice
5/10/2019 | 4:10:27 PM
Name That Toon: End User Lockdown
"Our company really takes SSO seriously!"
Tempest2004
Tempest2004,
 User Rank: Strategist
5/10/2019 | 11:31:11 PM
End User Lockdown
I sent the screen lockout requirement to the Physical Security DL by mistake
Ace2010
Ace2010,
 User Rank: Strategist
5/11/2019 | 11:58:18 AM
MS
When we were told we were moving to a culture more like Microsoft, I thought it was going to be a good thing!
Ace2010
Ace2010,
 User Rank: Strategist
5/11/2019 | 12:06:44 PM
Key to Success
I never realizes that the "key" to success was going to open a physical lock!
Ace2010
Ace2010,
 User Rank: Strategist
5/11/2019 | 12:09:04 PM
Lock down
There must have a been a very serious security breach...they've really locked us down this time!
Ace2010
Ace2010,
 User Rank: Strategist
5/11/2019 | 12:11:20 PM
Keys
Do you think these use a shared key, or a public/private combination?
Ace2010
Ace2010,
 User Rank: Strategist
5/11/2019 | 12:13:22 PM
Hashing
I sure hope these aren't hashed...If they are, this is irreversible...
Ace2010
Ace2010,
 User Rank: Strategist
5/11/2019 | 12:19:17 PM
2FA
I was told that we were implementing a two factor Auth program...This must be what management considers to be the level 2 part...something you have.
Ace2010
Ace2010,
 User Rank: Strategist
5/11/2019 | 1:07:01 PM
Job Security
I guess this means we're pretty "secure" in our jobs!
Ace2010
Ace2010,
 User Rank: Strategist
5/11/2019 | 1:09:40 PM
Non IT People
This is what non IT people think is securing our systems.
BuddyMac
BuddyMac,
 User Rank: Apprentice
5/13/2019 | 9:28:40 AM
Security Policies
At first I thought the new security policies would be too restrictive, but to tell you the truth, I hardly notice anything different!
CMS.RedRiver
CMS.RedRiver,
 User Rank: Strategist
5/13/2019 | 9:31:04 AM
Caption
If you duck down, & shift your right shoulder up ..it comes off :)

 
blightsey3921
blightsey3921,
 User Rank: Strategist
5/13/2019 | 9:41:34 AM
This ransomware has really gotten my attention....I need to dispose of that last cup of coffee!
This ransomware has really gotten my attention....I need to dispose of that last cup of coffee!
SurviveIT
SurviveIT,
 User Rank: Apprentice
5/13/2019 | 9:43:30 AM
Caption Contest Entry
Wasn't the new TLS version supposed to be a light protocol?
matt025
matt025,
 User Rank: Strategist
5/13/2019 | 9:57:22 AM
Locky strikes again!
I told you the Locky ransomware was still in circulation, but you just had to try the link anyway!!!.....
lakers85
lakers85,
 User Rank: Strategist
5/14/2019 | 9:52:45 AM
Best Practices?
Do you think this is what they meant when they talked about 'user lockdown' during the Active Directory Security & Best Practices seminar the other day?
Kristendean80
Kristendean80,
 User Rank: Strategist
5/14/2019 | 10:38:44 AM
PEBKAC Error
PEBKAC error has occurred. Problem Exist Between Keyboard And Chair
rafaelr123
rafaelr123,
 User Rank: Strategist
5/14/2019 | 4:52:32 PM
Toon
Did you click on that link I sent you?

Yep...
Hyznbrg
Hyznbrg,
 User Rank: Strategist
5/14/2019 | 5:13:04 PM
CRM
Maybe we should try the WIFI to get to our CRM!
tedelblute
tedelblute,
 User Rank: Strategist
5/15/2019 | 8:07:51 PM
Lockdown
These system lockdowns are begining to weigh heavily on me.
DnsBeastMode
DnsBeastMode,
 User Rank: Apprentice
5/15/2019 | 9:36:55 PM
Well then...
"I see they pushed out a new group policy..."
lunny
lunny,
 User Rank: Strategist
5/16/2019 | 10:54:02 AM
Phishing
I failed 472 Phishing simulations.  You?
abbyross
abbyross,
 User Rank: Strategist
5/16/2019 | 11:57:59 AM
Name that Toon
"I better tell my wife I won't be home for dinner."

"I told mine I was going phishing."
BillyTequila
BillyTequila,
 User Rank: Apprentice
5/16/2019 | 12:00:46 PM
Name that toon
We need an updated  Remote Access Policy! 
hvaughn
hvaughn,
 User Rank: Apprentice
5/17/2019 | 3:42:48 PM
Meh
Carl: We are now SECURE!

Janet: Whatever...
wstrong
wstrong,
 User Rank: Strategist
5/17/2019 | 7:01:46 PM
caption
Who replaced the "Scroll Lock" key with a "Screen Lock" key?
lassobscure
lassobscure,
 User Rank: Apprentice
5/19/2019 | 7:38:49 AM
Caption Contest
We have been "PAD"locked! Would have prefered being "SHER"locked.
gfreas
gfreas,
 User Rank: Author
5/20/2019 | 1:42:28 PM
Caption
"This new workplace productivity policy really has us on lockdown."
JohnM217
JohnM217,
 User Rank: Strategist
5/20/2019 | 3:51:57 PM
Re: Pending Review
Talk about vendor lock in...
spyder23
spyder23,
 User Rank: Apprentice
5/21/2019 | 6:45:02 AM
"isn't the lock too small for us ! "
"isn't the lock too small for us ! "
LCoughlan
LCoughlan,
 User Rank: Apprentice
5/21/2019 | 7:29:22 AM
Caption
I guess the boss' adoption of Asian work practices didn't just include morning yoga.
Joe Stanganelli
Joe Stanganelli,
 User Rank: Ninja
5/22/2019 | 3:38:44 PM
j01
"To be fair, biometrics didn't really make sense in this context."
Joe Stanganelli
Joe Stanganelli,
 User Rank: Ninja
5/22/2019 | 3:41:08 PM
j02
"I knew there'd be trouble once their non-compete clause was struck down as invalid."
Joe Stanganelli
Joe Stanganelli,
 User Rank: Ninja
5/22/2019 | 3:42:24 PM
j03
"Hey, if you have nothing to hide, you shouldn't have anything to complain about."
Joe Stanganelli
Joe Stanganelli,
 User Rank: Ninja
5/22/2019 | 3:43:08 PM
j04
"Cheer up. Tomorrow we get to wear jeans."
JohnGarret
JohnGarret,
 User Rank: Strategist
5/22/2019 | 4:08:58 PM
AI 1
Where is artificial intelligence when it's most needed?
JohnGarret
JohnGarret,
 User Rank: Strategist
5/22/2019 | 4:13:36 PM
AI 2
We were told we were working with artificial intelligence.

Not that they force us to be the "artificial intelligence" for "User any customer or Vendor name"
REISEN1955
REISEN1955,
 User Rank: Ninja
5/23/2019 | 8:50:19 AM
Re: Pending Review
Ben saw that management takes locked-down situations very seriously.

 
PaulV972
PaulV972,
 User Rank: Strategist
5/24/2019 | 2:01:32 PM
Caption
I told you we should worry abit more about vendor lock-in.
RetiredUser
RetiredUser,
 User Rank: Ninja
5/25/2019 | 12:27:45 PM
Not an Entry - Just for Fun
"Well, if you hadn't made us skip the Lockpicking Village at DEF CON this year, MAYBE this wouldn't be an issue!"
Bleachers
Bleachers,
 User Rank: Apprentice
5/27/2019 | 1:12:56 PM
Padlocked systems cartoon caption
Don't tell me I can't overclock!
ChrisR430
ChrisR430,
 User Rank: Apprentice
5/28/2019 | 11:48:27 AM
Cartoon Caption
I guess the new security policy works, but it really makes bio breaks a hassle
rootbid
rootbid,
 User Rank: Apprentice
5/28/2019 | 1:54:05 PM
Solidity
Client-side security.
acampbell448
acampbell448,
 User Rank: Ninja
5/30/2019 | 9:23:43 AM
Pentest coming!
I think we are ready now for the pentesters to come on site!
Kristendean80
Kristendean80,
 User Rank: Strategist
6/3/2019 | 9:22:50 AM
Locked out
I don’t always type my password wrong, but when I do, I make sure to repeat it until I’m locked out!
mroberts1161
mroberts1161,
 User Rank: Strategist
6/3/2019 | 10:09:34 AM
Name That Toon: End User Lockdown
Audit day? What gave it away?
tharmsen
tharmsen,
 User Rank: Apprentice
6/5/2019 | 3:56:32 AM
Privileged Account Management
Our security team are taking accountability a bit far?
rfarnl
rfarnl,
 User Rank: Strategist
6/6/2019 | 9:39:57 AM
My request for a day off has been denied
My request for a day off was denied
Koalaking
Koalaking,
 User Rank: Strategist
6/6/2019 | 11:10:42 AM
New Person
The new person the hired has gone a bit too far....
syekim13
syekim13,
 User Rank: Strategist
6/6/2019 | 11:12:59 AM
Job Security
Job Security


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Everything You Need to Know About DNS Attacks
It's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask. Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted. Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2023-33196
PUBLISHED: 2023-05-26
Craft is a CMS for creating custom digital experiences. Cross site scripting (XSS) can be triggered by review volumes. This issue has been fixed in version 4.4.7.
CVE-2023-33185
PUBLISHED: 2023-05-26
Django-SES is a drop-in mail backend for Django. The django_ses library implements a mail backend for Django using AWS Simple Email Service. The library exports the `SESEventWebhookView class` intended to receive signed requests from AWS to handle email bounces, subscriptions, etc. These requests ar...
CVE-2023-33187
PUBLISHED: 2023-05-26
Highlight is an open source, full-stack monitoring platform. Highlight may record passwords on customer deployments when a password html input is switched to `type="text"` via a javascript "Show Password" button. This differs from the expected behavior which always obfuscates `ty...
CVE-2023-33194
PUBLISHED: 2023-05-26
Craft is a CMS for creating custom digital experiences on the web.The platform does not filter input and encode output in Quick Post validation error message, which can deliver an XSS payload. Old CVE fixed the XSS in label HTML but didn’t fix it when clicking save. This issue was...
CVE-2023-2879
PUBLISHED: 2023-05-26
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file