Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Content by DarkReadingTim

DarkReadingTim
Member Since: March 12, 2014
Strategist
Blog Posts: 1718
Posts: 238

posted in April 2013

10 items
Big Data Makes A Big Target
Commentary  |  4/29/2013  | 
LivingSocial.com is another in a long line of "big scores" for data attackers
LivingSocial Says Cyberattack Puts Data Of 50 Million Customers At Risk
Quick Hits  |  4/29/2013  | 
Shopping and deals site LivingSocial says all customers should change passwords; source of hack undisclosed
The Many Faces Of The Verizon Data Breach Investigation Report
Commentary  |  4/23/2013  | 
Verizon's annual data breach report offers volumes of data -- and even more interpretations
Report: DDoS Attacks Getting Bigger, Faster Than Ever
Quick Hits  |  4/22/2013  | 
DDoS attacks of more than 10 Gbps now happen several times a day across the globe, study says
What Every CFO Should Know About Security Breaches
Commentary  |  4/19/2013  | 
Panelists say chief financial officers should know the difference between good security spending and bad
Botnets Come Out Of Hiding For Boston Bombing Spam
Quick Hits  |  4/19/2013  | 
Kelihos, Cutwail botnets jump into action to deliver spam emails disguised as news from bombings
ACLU Issues Wake-Up Call To Android Service Providers
Commentary  |  4/18/2013  | 
In complaint to FTC, civil liberties organization accuses AT&T, Verizon, Sprint, and T-Mobile of "unfair and deceptive business practices"
A New Look For Dark Reading
Commentary  |  4/17/2013  | 
New site layout, functionality will make it easier for Dark Reading's IT security readers to find the information they need
Mobile Malware Up 163 Percent In 2012, Study Says
Quick Hits  |  4/15/2013  | 
App repackaging, malicious mobile URLs and "smishing" are top delivery techniques for malicious mobile code
Open Group Publishes Security Standard For Technology Supply Chain
Quick Hits  |  4/15/2013  | 
New O-TTPS standard is designed to improve security of commercial off-the-shelf IT products


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Enterprises Are Assessing Cybersecurity Risk in Today's Environment
The adoption of cloud services spurred by the COVID-19 pandemic has resulted in pressure on cyber-risk professionals to focus on vulnerabilities and new exposures that stem from pandemic-driven changes. Many cybersecurity pros expect fundamental, long-term changes to their organization's computing and data security due to the shift to more remote work and accelerated cloud adoption. Download this report from Dark Reading to learn more about their challenges and concerns.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-29785
PUBLISHED: 2022-01-20
IBM Security SOAR V42 and V43could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 203169...
CVE-2021-46061
PUBLISHED: 2022-01-20
An SQL Injection vulnerability exists in Sourcecodester Computer and Mobile Repair Shop Management system (RSMS) 1.0 via the code parameter in /rsms/ node app.
CVE-2021-44090
PUBLISHED: 2022-01-20
An SQL Injection vulnerability exists in Sourcecodester Online Reviewer System 1.0 via the password parameter.
CVE-2021-44092
PUBLISHED: 2022-01-20
An SQL Injection vulnerability exists in code-projects Pharmacy Management 1.0 via the username parameter in the administer login form.
CVE-2021-44244
PUBLISHED: 2022-01-20
An SQL Injection vulnerabiity exists in Sourcecodester Logistic Hub Parcel's Management System 1.0 via the username parameter in login.php.