Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Cartoon Contest: Bedtime Stories
Newest First  |  Oldest First  |  Threaded View
lboettger537
50%
50%
lboettger537,
User Rank: Apprentice
9/11/2019 | 2:29:30 PM
Bugs
Don't let the (bed) bugs byte.
Hyznbrg
80%
20%
Hyznbrg,
User Rank: Strategist
9/6/2019 | 5:32:49 PM
Security
Ya know, I think that this security blanket is just the coverage we need to protect our laptop from hackers.
abigailb
0%
100%
abigailb,
User Rank: Strategist
9/5/2019 | 3:33:28 PM
Cartoon Contest: Bedtime Stories
My sleep tracking app is SURE to work now.
Rich3737
0%
100%
Rich3737,
User Rank: Guru
9/5/2019 | 10:33:54 AM
Contest
"You can just ask to fool around Harry, you don't need to type it out."
Rich3737
0%
100%
Rich3737,
User Rank: Guru
9/5/2019 | 10:30:29 AM
Contest
"Stop hitting the Backspace button, it's taking forever to finish this book."
andrew890
0%
100%
andrew890,
User Rank: Apprentice
9/5/2019 | 2:14:32 AM
Re: Sleep on it.
Good content. I really like it. 
geoff.sowrey
50%
50%
geoff.sowrey,
User Rank: Apprentice
9/4/2019 | 2:44:24 PM
Do you think we're on our devices too much?
Just a sec, let me finish this text...


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Enterprise Cybersecurity Plans in a Post-Pandemic World
Download the Enterprise Cybersecurity Plans in a Post-Pandemic World report to understand how security leaders are maintaining pace with pandemic-related challenges, and where there is room for improvement.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-40690
PUBLISHED: 2021-09-19
All versions of Apache Santuario - XML Security for Java prior to 2.2.3 and 2.1.7 are vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. This allows an attacker to abuse an XPath Transform to extract...
CVE-2021-41073
PUBLISHED: 2021-09-19
loop_rw_iter in fs/io_uring.c in the Linux kernel through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free of a kernel buffer, as demonstrated by using /proc/<pid>/maps for exploitation.
CVE-2021-23441
PUBLISHED: 2021-09-19
All versions of package com.jsoniter:jsoniter are vulnerable to Deserialization of Untrusted Data via malicious JSON strings. This may lead to a Denial of Service, and in certain cases, code execution.
CVE-2021-41393
PUBLISHED: 2021-09-18
Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows forgery of SSH host certificates in some situations.
CVE-2021-41394
PUBLISHED: 2021-09-18
Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows alteration of build artifacts in some situations.