Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Name That Toon: SOC Puppets
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 2 / 5   >   >>
lakers85
25%
75%
lakers85,
User Rank: Strategist
10/4/2019 | 2:15:12 PM
Lack of Cybersecurity Talent is a Systemic Issue
Joan: "I thought our CISO was kidding when he said HR placed 2 new interns in the Security Department to help monitor all operations and infrastructure."

Pete: "Well, he did hit the 'easy button'."

Both: "hahahaha"
REISEN1955
0%
100%
REISEN1955,
User Rank: Ninja
10/3/2019 | 3:06:33 PM
Re: SOC Puppets
Norm was not taking the SOC analyst training very well.
sdenrich
0%
100%
sdenrich,
User Rank: Guru
10/3/2019 | 1:49:37 PM
SOC Puppets
"Marge, I think Larry is is trying to spoof our ID's again"
archeanchaos
25%
75%
archeanchaos,
User Rank: Apprentice
10/2/2019 | 3:18:03 PM
Re: Write a Caption, Win a Prize
George asked for advice on social engineering techniques. I told him the best methods involve something you know.
amaguhn
25%
75%
amaguhn,
User Rank: Strategist
10/1/2019 | 7:49:25 AM
Security Training
The security training budget has been hit hard this year.
Koalaking
40%
60%
Koalaking,
User Rank: Strategist
9/27/2019 | 3:55:25 PM
Replacement CISO
The last CISO moved us to the cloud and did not secure S3 buckets.  I would like to introduce you to his replacement, Socky McSockster.
reg2385
0%
100%
reg2385,
User Rank: Strategist
9/27/2019 | 12:35:29 PM
Cartoon contest
I feel harrassed. They keep saying to each other; Sock-it-to-me! Sock-it-to-me! Sock-it-to-me!
packetnarc
0%
100%
packetnarc,
User Rank: Apprentice
9/27/2019 | 11:57:22 AM
Sock Puppet Social Engineer
Our new Social Engineering campaign sure has brought Allen out of his shell. I just hope he washed them first.
jojoh
60%
40%
jojoh,
User Rank: Apprentice
9/26/2019 | 3:45:04 PM
Monitor This
It appears our SOC monitoring tools are up and running.
Doubleton
0%
100%
Doubleton,
User Rank: Apprentice
9/26/2019 | 8:30:42 AM
Identity theft.
His resume said "Identity Theft Expert."
<<   <   Page 2 / 5   >   >>


Stop Defending Everything
Kevin Kurzawa, Senior Information Security Auditor,  2/12/2020
Small Business Security: 5 Tips on How and Where to Start
Mike Puglia, Chief Strategy Officer at Kaseya,  2/13/2020
Architectural Analysis IDs 78 Specific Risks in Machine-Learning Systems
Jai Vijayan, Contributing Writer,  2/13/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-19325
PUBLISHED: 2020-02-17
SilverStripe through 4.4.x before 4.4.5 and 4.5.x before 4.5.2 allows Reflected XSS on the login form and custom forms. Silverstripe Forms allow malicious HTML or JavaScript to be inserted through non-scalar FormField attributes, which allows performing XSS (Cross-Site Scripting) on some forms built...
CVE-2020-1693
PUBLISHED: 2020-02-17
A flaw was found in Spacewalk up to version 2.9 where it was vulnerable to XML internal entity attacks via the /rpc/api endpoint. An unauthenticated remote attacker could use this flaw to retrieve the content of certain files and trigger a denial of service, or in certain circumstances, execute arbi...
CVE-2020-1828
PUBLISHED: 2020-02-17
Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have an input validation vulnerability where the IPSec module does not validate a field in a specific message. ...
CVE-2020-1857
PUBLISHED: 2020-02-17
Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have an information leakage vulnerability. Due to improper processing of some data, a local authent...
CVE-2020-1858
PUBLISHED: 2020-02-17
Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100; and USG9500 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have a denial of service vulnerability. Att...