Vulnerabilities / Threats

7/27/2017
01:30 PM
100%
0%

Dark Reading News Desk Live at Black Hat USA 2017

Over 40 interviews streaming live right from Black Hat USA, July 26-27, from 2 p.m. - 7 p.m. Eastern Time (11 - 4 P.T.).

The Dark Reading News Desk returns to Las Vegas today, bringing you live video coverage of Black Hat USA straight from the Mandalay Bay Wednesday, July 26 and Thursday, July 27 from 2 p.m. to 7 p.m. Eastern Time (11 a.m. to 4 p.m. P.T.). Watch the Day 1 interviews here. 

We'll be conducting over 40 interviews with a wide variety of Black Hat speakers and sponsors, including Dino Dai Zovi, Billy Rios, Ruben Santamarta, Paul Vixie, Chris Wysopal, Mikko Hypponen and Robert Lee.

We'll talk about the Shadow Brokers, ransomware-resilient file systems, IoT honeypots, Active Directory botnets, exploiting exploits, hacking Tesla, threat hunting, machine learning, killer robots and much more.

It all starts right here at 2:00 p.m. Eastern Time (11 a.m. Pacific) Wednesday, July 26.

Follow along on Twitter @DarkReading and #DRNewsDesk to see who's coming to the stage next.

 

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
7/26/2017 | 1:53:12 PM
Re: Wonderful post
Can't wait for the live show to begin!
SarahBishop
50%
50%
SarahBishop,
User Rank: Apprentice
7/24/2017 | 10:30:43 PM
Re: Wonderful post
Thanks for sharing the information about Dark Reading News Desk. I want to see the interviews with a wide variety of Black Hat speakers and sponsors.

NishantG025
0%
100%
NishantG025,
User Rank: Apprentice
7/22/2017 | 3:22:21 AM
Wonderful post
Nice and very wonderful content, Nice to see such innovative websites. these are wonderful to explore. Deep thanks to the author, Greeting from  codesgen.com
NishantG025
0%
100%
NishantG025,
User Rank: Apprentice
7/22/2017 | 3:22:02 AM
Wonderful post
Nice and very wonderful content, Nice to see such innovative websites. these are wonderful to explore. Deep thanks to the author, Greeting from  codesgen.com
Weaponizing IPv6 to Bypass IPv4 Security
John Anderson, Principal Security Consultant, Trustwave Spiderlabs,  6/12/2018
'Shift Left' & the Connected Car
Rohit Sethi, COO of Security Compass,  6/12/2018
Why CISOs Need a Security Reality Check
Joel Fulton, Chief Information Security Officer for Splunk,  6/13/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-12557
PUBLISHED: 2018-06-19
An issue was discovered in Zuul 3.x before 3.1.0. If nodes become offline during the build, the no_log attribute of a task is ignored. If the unreachable error occurred in a task used with a loop variable (e.g., with_items), the contents of the loop items would be printed in the console. This could ...
CVE-2018-12559
PUBLISHED: 2018-06-19
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The mount target path check in mounter.cpp `mpOk()` is insufficient. A regular user can consequently mount a CIFS filesystem anywhere (e.g., outside of the /home directory tree) by passing directory traversal sequ...
CVE-2018-12560
PUBLISHED: 2018-06-19
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring.
CVE-2018-12561
PUBLISHED: 2018-06-19
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain parameter of the samba URL.
CVE-2018-12562
PUBLISHED: 2018-06-19
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The wrapper script 'mount.cifs.wrapper' uses the shell to forward the arguments to the actual mount.cifs binary. The shell evaluates wildcards (such as in an injected string:/home/../tmp/* string).