Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


End of Bibblio RCM includes -->
09:45 AM
John Klossner
John Klossner
Cartoon Contest

Cartoon: Infosec Multitasking

John Klossner has been drawing technology cartoons for more than 15 years. His work regularly appears in Computerworld and Federal Computer Week. His illustrations and cartoons have also been published in The New Yorker, Barron's, and The Wall Street Journal. Web site: ... View Full Bio

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
User Rank: Apprentice
5/27/2016 | 10:34:53 PM
Very good post
Nice post buddy.. It's very helpful to us.. 
User Rank: Apprentice
5/27/2016 | 7:28:08 AM
Re: What's next?
The admin has given a wonderful post let's share in our accounts.. 
User Rank: Apprentice
5/27/2016 | 7:22:35 AM
Nice Post Dude
thanks for bro for giving awesome info 
User Rank: Apprentice
5/26/2016 | 7:17:45 AM
Very good post
Nice post buddy thanks for the awesome info ... 
User Rank: Apprentice
5/27/2015 | 7:12:26 AM
Re: What's next?
thank you for the info 
User Rank: Apprentice
5/5/2015 | 8:48:05 AM
Re: What's next?
yes really great post
User Rank: Apprentice
4/21/2015 | 6:06:15 AM
Re: What's next?
nice post thank you
User Rank: Apprentice
4/15/2015 | 10:15:24 AM
Re: What's next?
nice one
shankar nai
shankar nai,
User Rank: Apprentice
4/13/2015 | 8:36:22 AM
Re: What's next?
nice post
Marilyn Cohodas
Marilyn Cohodas,
User Rank: Strategist
4/6/2015 | 4:58:09 PM
What's next?
I can hardly wait to find out what the iWatch will tell me.
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Current Issue
Incorporating a Prevention Mindset into Threat Detection and Response
Threat detection and response systems, by definition, are reactive because they have to wait for damage to be done before finding the attack. With a prevention-mindset, security teams can proactively anticipate the attacker's next move, rather than reacting to specific threats or trying to detect the latest techniques in real-time. The report covers areas enterprises should focus on: What positive response looks like. Improving security hygiene. Combining preventive actions with red team efforts.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2022-05-21
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0.
PUBLISHED: 2022-05-21
Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "#admin"' value.
PUBLISHED: 2022-05-21
A Path Traversal vulnerability in Gitblit 1.9.3 can lead to reading website files via /resources//../ (e.g., followed by a WEB-INF or META-INF pathname).
PUBLISHED: 2022-05-21
Solana solana_rbpf before 0.2.29 has an addition integer overflow via invalid ELF program headers. elf.rs has a panic via a malformed eBPF program.
PUBLISHED: 2022-05-21
The route lookup process in beego through 1.12.4 and 2.x through 2.0.2 allows attackers to bypass access control. When a /p1/p2/:name route is configured, attackers can access it by appending .xml in various places (e.g., p1.xml instead of p1).