Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

News & Commentary
Stronger Defenses Force Cybercriminals to Rethink Strategy
Kelly Sheridan, Staff Editor, Dark ReadingNews
Researchers see the rise of new relationships and attack techniques as criminals put companies' resilience to the test.
By Kelly Sheridan Staff Editor, Dark Reading, 8/14/2019
Comment0 comments  |  Read  |  Post a Comment
Internet Routing Security Initiative Launches Online 'Observatory'
Kelly Jackson Higgins, Executive Editor at Dark ReadingNews
Mutually Agreed Norms for Routing Security (MANRS) lets network operators and the public view online router incidents worldwide.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 8/13/2019
Comment1 Comment  |  Read  |  Post a Comment
FBI Plans to Monitor Social Media May Spark Privacy Issues
Dark Reading Staff, Quick Hits
A new initiative to pull data from social media platforms may clash with policies prohibiting the use of information for mass surveillance.
By Dark Reading Staff , 8/12/2019
Comment1 Comment  |  Read  |  Post a Comment
Dark Reading News Desk Live at Black Hat USA 2019
Sara Peters, Senior Editor at Dark ReadingNews
Watch right here for 40 video interviews with speakers and sponsors. Streaming live from Black Hat USA Wednesday and Thursday 2 p.m. to 6 p.m. Eastern.
By Sara Peters Senior Editor at Dark Reading, 8/8/2019
Comment1 Comment  |  Read  |  Post a Comment
Buttigieg Campaign Adds a CISO
Dark Reading Staff, Quick Hits
Democratic presidential hopeful Pete Buttigieg's campaign reportedly may be the first to bring a security exec on board.
By Dark Reading Staff , 8/7/2019
Comment0 comments  |  Read  |  Post a Comment
Companies' 'Anonymized' Data May Violate GDPR, Privacy Regs
Robert Lemos, Contributing WriterNews
New study found that any database containing 15 pieces of demographic data could be used to identify individuals.
By Robert Lemos Contributing Writer, 7/26/2019
Comment3 comments  |  Read  |  Post a Comment
New IPS Architecture Uses Network Flow Data for Analysis
Curtis Franklin Jr., Senior Editor at Dark ReadingNews
Can a stream of data intended for network performance monitoring be the basis of network security? One company says the answer is 'yes.'
By Curtis Franklin Jr. Senior Editor at Dark Reading, 7/23/2019
Comment1 Comment  |  Read  |  Post a Comment
Where Businesses Waste Endpoint Security Budgets
Kelly Sheridan, Staff Editor, Dark Reading
Too many systems, failure to test tools, and fear of replacement drive endpoint complexity and render products less effective.
By Kelly Sheridan Staff Editor, Dark Reading, 7/15/2019
Comment3 comments  |  Read  |  Post a Comment
Back to Basics with Log Management, SIEMs & MSSPs
Terry Sweeney, Contributing Editor
Not fully clear about why your organization collects any (or all) log data? Experts offer their tips on making better use of log data and alerts to improve your security profile.
By Terry Sweeney Contributing Editor, 7/12/2019
Comment3 comments  |  Read  |  Post a Comment
NIST Sets Draft Guidelines for Government AI
Dark Reading Staff, Quick Hits
This is the first formal step in writing the standards that will guide the implementation of AI technologies within the federal government.
By Dark Reading Staff , 7/8/2019
Comment1 Comment  |  Read  |  Post a Comment
Toyota's Car-Hacking Tool Now Available
Kelly Jackson Higgins, Executive Editor at Dark ReadingNews
'PASTA' hardware and software kit now retails for $28,300.
By Kelly Jackson Higgins Executive Editor at Dark Reading, 7/2/2019
Comment3 comments  |  Read  |  Post a Comment
Chronicle Folds into Google
Curtis Franklin Jr., Senior Editor at Dark ReadingNews
Alphabet's enterprise cybersecurity division will become part of the Google security portfolio.
By Curtis Franklin Jr. Senior Editor at Dark Reading, 6/27/2019
Comment3 comments  |  Read  |  Post a Comment
7 Ways to Mitigate Supply Chain Attacks
Jai Vijayan, Contributing Writer
Breaches caused by external vendors and service providers have become a major and escalating problem for organizations.
By Jai Vijayan Contributing Writer, 6/27/2019
Comment6 comments  |  Read  |  Post a Comment
Developers and Security Teams Under Pressure to Collaborate
Kelly Sheridan, Staff Editor, Dark ReadingNews
The challenges and benefits to getting two traditionally adversarial groups on the same page.
By Kelly Sheridan Staff Editor, Dark Reading, 6/26/2019
Comment12 comments  |  Read  |  Post a Comment
McAfee Sues 3 Former Staffers Now at Rival Tanium
Dark Reading Staff, Quick Hits
Lawsuit alleges sales representatives stole trade secrets from McAfee before joining Tanium.
By Dark Reading Staff , 6/26/2019
Comment1 Comment  |  Read  |  Post a Comment
Startup Raises $13.7M to Stop Breaches with Behavioral Analytics
Dark Reading Staff, Quick Hits
TrueFort plans to use the funding to expand sales, marketing, R&D, customer support, and go-to-market initiatives.
By Dark Reading Staff , 6/21/2019
Comment1 Comment  |  Read  |  Post a Comment
7 2019 Security Venture Fund Deals You Should Know
Curtis Franklin Jr., Senior Editor at Dark Reading
2019 has, so far, been a busy year for venture capitalists in the security industry. Here are 7 funding rounds important because of the technologies or market trends they represent.
By Curtis Franklin Jr. Senior Editor at Dark Reading, 6/20/2019
Comment0 comments  |  Read  |  Post a Comment
Google Targets Deceptive Sites with New Chrome Tools
Dark Reading Staff, Quick Hits
A new extension and browser alert aim to help users report deceptive sites and prevent them from encountering fraud.
By Dark Reading Staff , 6/18/2019
Comment0 comments  |  Read  |  Post a Comment
10 Notable Security Acquisitions of 2019 (So Far)
Kelly Sheridan, Staff Editor, Dark Reading
In a year when security companies have been snapped up left and right, these deals stand out from the chaos.
By Kelly Sheridan Staff Editor, Dark Reading, 6/15/2019
Comment1 Comment  |  Read  |  Post a Comment
Better Cybersecurity Research Requires More Data Sharing
Robert Lemos, Contributing WriterNews
Researchers at the Workshop on the Economics of Information Security highlight the cost savings of sharing cybersecurity data and push for greater access to information on breaches, attacks, and incidents.
By Robert Lemos Contributing Writer, 6/14/2019
Comment1 Comment  |  Read  |  Post a Comment
More Stories
Current Conversations
Posted by allenred
Current Conversations nice post
In reply to: cyber security
Post Your Own Reply
More Conversations
PR Newswire
Microsoft Patches Wormable RCE Vulns in Remote Desktop Services
Kelly Sheridan, Staff Editor, Dark Reading,  8/13/2019
The Mainframe Is Seeing a Resurgence. Is Security Keeping Pace?
Ray Overby, Co-Founder & President at Key Resources, Inc.,  8/15/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
Flash Poll
The State of IT Operations and Cybersecurity Operations
The State of IT Operations and Cybersecurity Operations
Your enterprise's cyber risk may depend upon the relationship between the IT team and the security team. Heres some insight on what's working and what isn't in the data center.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-15160
PUBLISHED: 2019-08-19
The SweetXml (aka sweet_xml) package through 0.6.6 for Erlang and Elixir allows attackers to cause a denial of service (resource consumption) via an XML entity expansion attack with an inline DTD.
CVE-2019-15150
PUBLISHED: 2019-08-19
In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function.
CVE-2017-18550
PUBLISHED: 2019-08-19
An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_get_hba_info does not initialize the hbainfo structure.
CVE-2017-18551
PUBLISHED: 2019-08-19
An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel before 4.14.15. There is an out of bounds write in the function i2c_smbus_xfer_emulated.
CVE-2017-18552
PUBLISHED: 2019-08-19
An issue was discovered in net/rds/af_rds.c in the Linux kernel before 4.11. There is an out of bounds write and read in the function rds_recv_track_latency.