Vulnerabilities / Threats

11/12/2018
05:00 PM
50%
50%

Paris Agreement on Cybercrime Falls Short of Unanimous Agreement

More than 50 nations and 150 global companies agree to join effort to fight cybercrime.

A group of 50 nations and 150 companies signed an agreement to fight cybercrime and other illicit activity, including election tampering and hate speech, on the Internet. French president Emmanuel Macron had pushed for the agreement, reached one day after a gathering of global leaders in Paris.

The French leader, calling for greater regulation of the Internet, said that there's an urgent need for better regulation of the global network. As part of that effort, he said that Facebook has agreed to allow a team of French officials to observe the social network's efforts to monitor and delete hate speech.

While agreed to by many, the statement, titled, "Paris call for trust and security in cyberspace," was not universally accepted, with Russia, China, and the US among the holdouts. Some American companies, will, however, be involved.

For more, read here and here

 

Black Hat Europe returns to London Dec 3-6 2018  with hands-on technical Trainings, cutting-edge Briefings, Arsenal open-source tool demonstrations, top-tier security solutions and service providers in the Business Hall. Click for information on the conference and to register.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
DavidHamilton
50%
50%
DavidHamilton,
User Rank: Apprentice
1/4/2019 | 1:53:32 AM
Help when it's needed
Ok this shocks me that there could be people who wouldn't agree to such a contract. Perhaps some countries just don't want to have to protect others, but I reckon that we need everybody to cooperate to make cyberspace more protected for everyone right? How can some of them be so selfish?
UdyRegan
50%
50%
UdyRegan,
User Rank: Apprentice
12/18/2018 | 11:11:22 PM
Global concern
It takes the cooperation from everyone if we wish to make this happen. We need to know that we can get the commitment of every single party that is involved to gain as many resources as possible to eradicate this long-ongoing issue. This isn't a small matter that we are handling but it concerns every single person on earth. Now, that's a great deal of work to deal with so we need everyone's agreement!
Devastating Cyberattack on Email Provider Destroys 18 Years of Data
Jai Vijayan, Freelance writer,  2/12/2019
Up to 100,000 Reported Affected in Landmark White Data Breach
Kelly Sheridan, Staff Editor, Dark Reading,  2/12/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-1695
PUBLISHED: 2019-02-15
IBM QRadar SIEM 7.2 and 7.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 134177.
CVE-2018-1701
PUBLISHED: 2019-02-15
IBM InfoSphere Information Server 11.7 could allow an authenciated user under specialized conditions to inject commands into the installation process that would execute on the WebSphere Application Server. IBM X-Force ID: 145970.
CVE-2018-1727
PUBLISHED: 2019-02-15
IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 147630.
CVE-2018-1895
PUBLISHED: 2019-02-15
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...
CVE-2019-4059
PUBLISHED: 2019-02-15
IBM Rational ClearCase 1.0.0.0 GIT connector does not sufficiently protect the document database password. An attacker could obtain the password and gain unauthorized access to the document database. IBM X-Force ID: 156583.