Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

Dark Reading Celebrates 15th Anniversary

Cybersecurity news site begins 16th year with plans to improve site, deliver more content on cyber threats and best practices.

This week, Dark Reading marks the 15th anniversary of its launch on May 1, 2006. As we look back on the many revolutions and evolutions that have occurred in cybersecurity in years past, we are also looking forward to making the site better, and more useful to IT and security professionals in the years to come.

If you’ve been one of our readers since our early days, then you may have joined us as we explored some of the most significant breaches and vulnerabilities of the 2000s. Heartland Payment Systems, which affected retailers all of the world. The attack on Google China, which brought nation-state hacking into the open. The DNS cache poisoning vulnerability that affected all of the Internet and brought global prominence to Dan Kaminsky, the beloved researcher who passed away last week.

If you’re relatively new to cybersecurity or Dark Reading, you might still remember some of our coverage of more recent attacks and data compromises. The Yahoo breach of 2013-14, which affected more than 3 billion users and wasn’t revealed until 2016. WannaCry. NotPetya. SolarWinds.

Our news coverage, driven principally by executive editor and journalist Kelly Jackson Higgins, has also brought some of the giants of security research to the fore. Her profiles of HD Moore, Charlie Miller, David Litchfield, and many others have helped put a face to the name of ethical hacking. And our Commentary pages have been graced by many other important names, from Internet co-inventor Vint Cerf to the early blogs of Robert Hansen, then known to the industry only as RSnake.

Credit: Vjom via Adobe Stock
Credit: Vjom via Adobe Stock

Throughout all those stories, and many more, Dark Reading has had a single goal: to help cybersecurity professionals do their jobs. We’ve done our best to provide the most comprehensive, detailed coverage of threats and vulnerabilities, so that those who have to defend against them will be ready. And 15 years later, that’s still our goal today. We want to be the one site you rely on for the most up-to-date, in-depth, and useful information about cybersecurity threats and best practices.

To help achieve that goal, we’ve added many new features over the years, including specialized sections, webinars, all-day virtual events, e-zines, and original research. We’ve become a strong partner with our sister event, Black Hat, which provides the industry’s leading forum for new security research and disclosure. And today, we’re doing joint projects with Omdia Research, one of the industry’s fastest-growing research and consulting firms.

But we’re not stopping there. Last month, we launched an initiative to improve the look, performance, and usability of the Dark Reading site, which we hope will make the reader experience even more intuitive and helpful. In the months to come, you’ll see new page designs, new links to related content, and new connections to our research and events. It’s all part of the effort to help cybersecurity pros do their jobs.

Fifteen years. It’s been a wild ride, but a great one, as cyber researchers and defenders get better in their efforts to stop the bad guys. Do you have a memory to share? Or maybe a suggestion on something that Dark Reading could do better? Please send us an anniversary message! You can tweet us at @DarkReading, or you can write us an email at [email protected] . We’d love to hear from readers who’ve been on our site since its early days – or those who’ve just discovered us. We look forward to serving you for another 15 years!

Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
News
FluBot Malware's Rapid Spread May Soon Hit US Phones
Kelly Sheridan, Staff Editor, Dark Reading,  4/28/2021
Slideshows
7 Modern-Day Cybersecurity Realities
Steve Zurier, Contributing Writer,  4/30/2021
Commentary
How to Secure Employees' Home Wi-Fi Networks
Bert Kashyap, CEO and Co-Founder at SecureW2,  4/28/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-26543
PUBLISHED: 2021-05-06
The "gitDiff" function in Wayfair git-parse <=1.0.4 has a command injection vulnerability. Clients of the git-parse library are unlikely to be aware of this, so they might unwittingly write code that contains a vulnerability.
CVE-2021-27216
PUBLISHED: 2021-05-06
Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By leveraging a delete_pid_file race condition, a local user can delete arbitrary files as root. This involves the -oP and -oPX options.
CVE-2021-29490
PUBLISHED: 2021-05-06
Jellyfin is a free software media system that provides media from a dedicated server to end-user devices via multiple apps. Verions prior to 10.7.3 vulnerable to unauthenticated Server-Side Request Forgery (SSRF) attacks via the imageUrl parameter. This issue potentially exposes both internal and ex...
CVE-2021-29491
PUBLISHED: 2021-05-06
Mixme is a library for recursive merging of Javascript objects. In Node.js mixme v0.5.0, an attacker can add or alter properties of an object via 'proto' through the mutate() and merge() functions. The polluted attribute will be directly assigned to every object in the program. This will put the ava...
CVE-2021-29921
PUBLISHED: 2021-05-06
Improper input validation of octal strings in Python stdlib ipaddress 3.10 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many programs that rely on Python stdlib ipaddress. IP address octects are left stripped instead of evaluated as valid I...