Must Reads

The Year in Security: 2017
Publish Date: Dec 12,2017
Managing Cyber-Risk
Publish Date: Oct 25,2017
Security Vulnerabilities: The Next Wave
Publish Date: Jul 19,2017
Security Operations and IT Operations: Finding the Path to Collaboration
Publish Date: Apr 19,2017
5 Security Technologies to Watch in 2017
Publish Date: Jan 18,2017
Five Things Every Business Executive Should Know About Cybersecurity
Publish Date: Dec 6,2016
Five Emerging Security Threats - And What You Can Learn From Them
Publish Date: Aug 9,2016
The Changing Face of Identity Management
Publish Date: Jul 26,2016
DNS Threats: What Every Enterprise Should Know
Publish Date: Jun 28,2016
How To Build An Effective Defense Against Ransomware
Publish Date: Jun 21,2016
8 Key Building Blocks for Enterprise Network Defense
Publish Date: May 10,2016
Understanding & Managing the Mobile Security Threat
Publish Date: Mar 15,2016
E-Commerce Security: What Every Enterprise Needs to Know
Publish Date: Nov 2,2015
Dark Reading Tech Digest September 7, 2015
Publish Date: Sep 7,2015
Dark Reading Tech Digest, June 2015
Publish Date: Jun 1,2015
Dark Reading - March 2, 2015
Publish Date: Mar 2,2015
Dark Reading Tech Digest, Dec. 19, 2014
Publish Date: Dec 19,2014
Dark Reading, January 2015
Publish Date: Dec 15,2014
Dark Reading Must Reads, Dec. 10, 2014
Publish Date: Dec 10,2014
Dark Reading Must Reads, Dec. 8, 2014
Publish Date: Dec 8,2014
Dark Reading December Tech Digest
Publish Date: Nov 17,2014
Dark Reading's November Tech Digest
Publish Date: Nov 11,2014
Dark Reading's November Tech Digest
Publish Date: Nov 5,2014
Dark Reading's October Tech Digest
Publish Date: Oct 13,2014
Dark Reading Must Reads - September 25, 2014
Publish Date: Sep 25,2014
Dark Reading, September 16, 2014
Publish Date: Sep 16,2014
Dark Reading Must Reads July 15, 2014
Publish Date: Jul 15,2014
DarkReading Tech Digest -June 9, 2014
Publish Date: Jul 8,2014
Dark Reading May 2014 Must Reads
Publish Date: May 28,2014
Dark Reading December 2013 Must Reads
Publish Date: Dec 11,2013
Dark Reading December 2013 Must Reads
Publish Date: Dec 3,2013
Dark Reading October 2013 IT Trends
Publish Date: Oct 9,2013
Dark Reading October 2013 Must Reads - Risk Management
Publish Date: Oct 2,2013
Dark Reading October 2013 Must Reads
Publish Date: Sep 26,2013
Dark Reading July 2013 IT Trends
Publish Date: Jul 17,2013
Dark Reading July 2013 Must Reads
Publish Date: Jul 11,2013
5 Reasons the Cybersecurity Labor Shortfall Won't End Soon
Steve Morgan, Founder & CEO, Cybersecurity Ventures,  12/11/2017
BlueBorne Attack Highlights Flaws in Linux, IoT Security
Kelly Sheridan, Associate Editor, Dark Reading,  12/14/2017
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
The Year in Security: 2017
A look at the biggest news stories (so far) of 2017 that shaped the cybersecurity landscape -- from Russian hacking, ransomware's coming-out party, and voting machine vulnerabilities to the massive data breach of credit-monitoring firm Equifax.
Flash Poll
[Strategic Security Report] Cloud Security's Changing Landscape
[Strategic Security Report] Cloud Security's Changing Landscape
Cloud services are increasingly becoming the platform for mission-critical apps and data. Heres how enterprises are adapting their security strategies!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.