Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Content by DarkReadingTim

DarkReadingTim
Member Since: March 12, 2014
Strategist
Blog Posts: 1718
Posts: 238

posted in December 2008

25 items
Yes, Virginia, There Will Be More Attacks
Commentary  |  12/24/2008  | 
This is the time of year when the editor of a publication usually issues a warm and fuzzy holiday message that's supposed to make you want to gather around the fire with your family for a group hug. Unless, of course, your publication has to do with information security.
Computer Security's Six Most Important Words Of 2008
News  |  12/24/2008  | 
For good or ill, these six words were top of mind for security pros -- and hackers -- in the past year
You're A Mean One, Ms. Grinch
Quick Hits  |  12/24/2008  | 
Thief who steals holiday package contents from homes is now a star on YouTube
Zero-Day SQL Server Flaw Could Allow Remote Code Execution
News  |  12/23/2008  | 
Exploits of unpatched vulnerability have already been published, Microsoft warns
Check Point Buys Nokia's Security Appliance Business
Quick Hits  |  12/23/2008  | 
Acquisition will expand Check Point's product line, execs say
Researchers Point Out XSS Flaws On American Express Site
News  |  12/22/2008  | 
Flaws could jeopardize users' identities, researchers say
Couriers Take The Cake -- And Thousands Of Bank Records
Quick Hits  |  12/22/2008  | 
Delivery drivers reroute thousands of bank records to major German newspaper
RIAA To Stem Tide Of Lawsuits Against Individuals
Quick Hits  |  12/19/2008  | 
Recording association to approach ISPs in effort to protect copyrighted music, video
Researcher: Poor SSL Implementations Leave Many Sites At Risk
News  |  12/16/2008  | 
Major sites continue to operate with expired or misconfigured SSL certificates, according to a researcher at Canola & Jones
Zero-Day Exploits On IE7 Could Spread To Other Microsoft Browsers
News  |  12/16/2008  | 
IE5, IE6, and the IE8 beta are also potentially vulnerable, software giant says
IT Execs Unprepared For Security In Downturn
Quick Hits  |  12/15/2008  | 
Nearly 70 percent aren't sure which workers have access to sensitive applications and data, study says
Study: Identity Theft, Organized Retail Crime On The Rise
News  |  12/12/2008  | 
Security managers should consider doing more information sharing, nonprofit group says
Study: One-Quarter Of Antivirus Apps Aren't Working
Quick Hits  |  12/12/2008  | 
Promisec study says many AV packages are disabled or weren't installed properly in the first place
FTC Shuts Down Security 'Scareware' Scammers
News  |  12/11/2008  | 
Companies falsely claimed to find malware, vulnerabilities on users' PCs via "free security scans"
Zero-Day Bug Discovered In IE7
Quick Hits  |  12/11/2008  | 
Vulnerability in the wild could allow attackers to control and steal data from remote PCs
Koobface Worm Targets MySpace, Other Sites
News  |  12/10/2008  | 
Resurgent worm seeks to recruit zombies for botnets, experts say
U.S. E-Commerce Fraud Total Will Hit $4 Billion, Study Says
Quick Hits  |  12/10/2008  | 
Online fraud costs merchants about 1.4 percent of their top-line revenue annually, survey says
Next-Gen Firewall To Offer Limited Data Loss Prevention Capabilities
News  |  12/9/2008  | 
Palo Alto Networks devices can detect credit card, Social Security numbers on the fly -- and stop them from leaving the corporate net
Commision: White House Should Take Lead In Cybersecurity
News  |  12/8/2008  | 
Congressional group recommends consolidation of cybersecurity efforts, government-led authentication, and further regulation of cyberspace
Magazine Reporters Arrange To Buy 21 Million Identities
Quick Hits  |  12/8/2008  | 
In investigative article, journalists seek to prove how easy it is to buy large amounts of personal data
Microsoft, RSA Partner To Integrate DLP, Identity Management
News  |  12/4/2008  | 
Broad adoption of data classification technology could be "game changer" for both DLP and Microsoft
Insiders Pose New Threats In Down Economy
News  |  12/4/2008  | 
Instances of theft and malicious attack are rising with employee discontent. What can your organization do to stop them?
Black Friday Kicks Off Red-Letter Week For Phishers
Quick Hits  |  12/3/2008  | 
Number of threats increased by 300 percent over 2007, report says
Canadian IT Exec Accused Of Stealing Customer Database
News  |  12/1/2008  | 
Data on more than 3.2 million prospects could be worth more than $10 million
Study: Korea Is Most Popular Origin Of Intrusions
Quick Hits  |  12/1/2008  | 
U.S., China still top virus, spam charts


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Enterprises Are Assessing Cybersecurity Risk in Today's Environment
The adoption of cloud services spurred by the COVID-19 pandemic has resulted in pressure on cyber-risk professionals to focus on vulnerabilities and new exposures that stem from pandemic-driven changes. Many cybersecurity pros expect fundamental, long-term changes to their organization's computing and data security due to the shift to more remote work and accelerated cloud adoption. Download this report from Dark Reading to learn more about their challenges and concerns.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-46346
PUBLISHED: 2022-01-20
There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustment (date_value)' failed at /jerry-core/ecma/builtin-objects/ecma-builtin-date-prototype.c(ecma_builtin_date_prototype_dispatch_set):421 in JerryScript 3.0.0.
CVE-2021-46347
PUBLISHED: 2022-01-20
There is an Assertion 'ecma_object_check_class_name_is_object (obj_p)' failed at /jerry-core/ecma/operations/ecma-objects.c in JerryScript 3.0.0.
CVE-2021-46348
PUBLISHED: 2022-01-20
There is an Assertion 'ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p)' failed at /jerry-core/ecma/base/ecma-literal-storage.c in JerryScript 3.0.0.
CVE-2021-46349
PUBLISHED: 2022-01-20
There is an Assertion 'type == ECMA_OBJECT_TYPE_GENERAL || type == ECMA_OBJECT_TYPE_PROXY' failed at /jerry-core/ecma/operations/ecma-objects.c in JerryScript 3.0.0.
CVE-2021-46350
PUBLISHED: 2022-01-20
There is an Assertion 'ecma_is_value_object (value)' failed at jerryscript/jerry-core/ecma/base/ecma-helpers-value.c in JerryScript 3.0.0.