Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Content by theb0x

theb0x
Member Since: April 2, 2014
Ninja
Posts: 97

Most Recently Posted

97 items
Comment: AP Proximity - theb0x - 10/22/2017
Comment: Ridiculous Statements - theb0x - 9/14/2017
Comment: Paper-Based Voting - theb0x - 8/10/2017
Comment: ATA Admin Access - theb0x - 6/19/2017
Comment: Email - theb0x - 7/11/2016
Comment: Root - theb0x - 7/11/2016
Comment: More ways - theb0x - 7/4/2016
Comment: Re: Wifi - theb0x - 6/21/2016
Comment: Re: pwn storm - theb0x - 5/15/2016
Comment: Re: PCI-DSS - theb0x - 5/11/2016
Comment: Re: Why hack stock? - theb0x - 4/6/2016
Comment: Why hack stock? - theb0x - 4/5/2016
Comment: iphone - theb0x - 4/1/2016
Comment: Darkreading - theb0x - 3/23/2016
Comment: Re: Clinton hypocrisy - theb0x - 3/12/2016
Comment: Password reminder... - theb0x - 2/16/2016
Comment: Ransomware - theb0x - 2/9/2016
Comment: Re: Remote Backup - theb0x - 2/2/2016
Comment: NetFlow vs SFlow - theb0x - 1/26/2016
Comment: 2.4Ghz - theb0x - 1/10/2016
Comment: Re: "Transparent" - theb0x - 12/2/2015
Comment: Re: Scope? - theb0x - 11/13/2015
Comment: Re: Back up your data! - theb0x - 11/4/2015
Comment: Re: DarkComet RAT - theb0x - 8/31/2015
Comment: RATS - theb0x - 8/31/2015
Comment: Port 6667 - theb0x - 8/13/2015
Comment: Windows 10 - theb0x - 5/8/2015
Comment: 5 Digit PIN - theb0x - 2/20/2015
Comment: Directly From Microsoft - theb0x - 11/13/2014
Comment: Spear Phishing - theb0x - 9/15/2014
Comment: Re: Good Reading - theb0x - 9/11/2014
Comment: Re: Spot on! - theb0x - 9/4/2014
Comment: Re: Spot on! - theb0x - 9/4/2014
Comment: To scan or not to scan - theb0x - 8/15/2014
Comment: Account Lockout fail - theb0x - 8/1/2014
Comment: Re: Naming Names - theb0x - 7/31/2014
Comment: Government-Grade? Lol. - theb0x - 7/28/2014
Comment: Re: Poor TLS - theb0x - 7/14/2014
Comment: Re: Spy vs Spy - theb0x - 6/28/2014
Comment: Re: UFO Hacking - theb0x - 6/20/2014
Comment: Re: Phishing - theb0x - 6/19/2014
Comment: FalseCrypt - theb0x - 6/18/2014
Comment: Phishing - theb0x - 6/18/2014
Comment: Carbon - theb0x - 6/15/2014
Comment: Re: TruCrypt users - theb0x - 5/30/2014
Comment: Re: clarification - theb0x - 5/7/2014
Comment: Disabled users. - theb0x - 5/7/2014
Comment: Re: EMET - theb0x - 5/1/2014
Comment: Re: Protect Yourselves - theb0x - 4/30/2014
Comment: Heartbleed and Android - theb0x - 4/23/2014
Comment: Encryption - theb0x - 4/22/2014


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Enterprise Cybersecurity Plans in a Post-Pandemic World
Download the Enterprise Cybersecurity Plans in a Post-Pandemic World report to understand how security leaders are maintaining pace with pandemic-related challenges, and where there is room for improvement.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-41073
PUBLISHED: 2021-09-19
loop_rw_iter in fs/io_uring.c in the Linux kernel through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free of a kernel buffer, as demonstrated by using /proc/<pid>/maps for exploitation.
CVE-2021-23441
PUBLISHED: 2021-09-19
All versions of package com.jsoniter:jsoniter are vulnerable to Deserialization of Untrusted Data via malicious JSON strings. This may lead to a Denial of Service, and in certain cases, code execution.
CVE-2021-41393
PUBLISHED: 2021-09-18
Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows forgery of SSH host certificates in some situations.
CVE-2021-41394
PUBLISHED: 2021-09-18
Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows alteration of build artifacts in some situations.
CVE-2021-41395
PUBLISHED: 2021-09-18
Teleport before 6.2.12 and 7.x before 7.1.1 allows attackers to control a database connection string, in some situations, via a crafted database name or username.