π΄ Leveraging the Cloud for Cyber Intelligence π΄
π Read
via "Dark Reading: ".
How fusing output datasets and sharing information can create a real-time understanding of suspicious activity across your enterprise.π Read
via "Dark Reading: ".
Dark Reading
Cloud Security recent news | Dark Reading
Explore the latest news and expert commentary on Cloud Security, brought to you by the editors of Dark Reading
ATENTIONβΌ New - CVE-2013-2228
π Read
via "National Vulnerability Database".
SaltStack RSA Key Generation allows remote users to decrypt communicationsπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-2106
π Read
via "National Vulnerability Database".
webauth before 4.6.1 has authentication credential disclosureπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-2103
π Read
via "National Vulnerability Database".
OpenShift cartridge allows remote URL retrievalπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-2101
π Read
via "National Vulnerability Database".
Katello has multiple XSS issues in various entitiesπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-4525
π Read
via "National Vulnerability Database".
piwigo has XSS in password.phpπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-4480
π Read
via "National Vulnerability Database".
mom creates world-writable pid files in /var/runπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-4428
π Read
via "National Vulnerability Database".
openslp: SLPIntersectStringList()' Function has a DoS vulnerabilityπ Read
via "National Vulnerability Database".
π΄ Siemens Offers Workarounds for Newly Found PLC Vulnerability π΄
π Read
via "Dark Reading: ".
An undocumented hardware-based special access feature recently found by researchers in Siemens' S7-1200 can be used by attackers to gain control of the industrial devices.π Read
via "Dark Reading: ".
Dark Reading
Siemens Offers Workarounds for Newly Found PLC Vulnerability
An undocumented hardware-based special access feature recently found by researchers in Siemens' S7-1200 can be used by attackers to gain control of the industrial devices.
β Critical Android Flaw Leads to βPermanent DoSβ β
π Read
via "Threatpost".
The December security update stomped out critical denial-of-service (DoS) and remote-code-execution (RCE) vulnerabilities in the Android operating system.π Read
via "Threatpost".
Threat Post
Critical Android Flaw Leads to βPermanent DoSβ
The December security update stomped out critical denial-of-service (DoS) and remote-code-execution (RCE) vulnerabilities in the Android operating system.
ATENTIONβΌ New - CVE-2013-4486
π Read
via "National Vulnerability Database".
Zanata 3.0.0 through 3.1.2 has RCE due to EL interpolation in loggingπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-4411
π Read
via "National Vulnerability Database".
Review Board: URL processing gives unauthorized users access to review listsπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-4235
π Read
via "National Vulnerability Database".
shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory treesπ Read
via "National Vulnerability Database".
π΄ Smith & Wesson Is Magecart's Latest Target π΄
π Read
via "Dark Reading: ".
Researchers estimate the gun manufacturer's website was compromised sometime before Black Friday.π Read
via "Dark Reading: ".
Darkreading
Smith & Wesson Is Magecart's Latest Target
Researchers estimate the gun manufacturer's website was compromised sometime before Black Friday.
β Android Ups the Mobile Security Ante with Default TLS Encryption β
π Read
via "Threatpost".
More than 90 percent of Android apps running on the latest OS encrypt their traffic by default.π Read
via "Threatpost".
Threat Post
Android Ups the Mobile Security Ante with Default TLS Encryption
More than 90 percent of Android apps running on the latest OS encrypt their traffic by default.
π Report highlights nation-state cyberthreats facing SMBs in 2020 π
π Read
via "Security on TechRepublic".
An increasing number of US executives expressed concern about the prevalence of threats coming from foreign powers.π Read
via "Security on TechRepublic".
TechRepublic
Report highlights nation-state cyberthreats facing SMBs in 2020
An increasing number of US executives expressed concern about the prevalence of threats coming from foreign powers.
π΄ What Security Leaders Can Learn from Marketing π΄
π Read
via "Dark Reading: ".
Employees can no longer be pawns who must be protected all the time. They must become partners in the battle against threats.π Read
via "Dark Reading: ".
Dark Reading
What Security Leaders Can Learn from Marketing
Employees can no longer be pawns who must be protected all the time. They must become partners in the battle against threats.
π European Data Protection Board Data Urges Protection by Design and by Default π
π Read
via "Subscriber Blog RSS Feed ".
A new set of guidelines from the European Data Protection Board helps inform data controllers of the safeguards that should be followed when designing data processing activities.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
European Data Protection Board Data Urges Protection by Design and by Default
A new set of guidelines from the European Data Protection Board helps inform data controllers of the safeguards that should be followed when designing data processing activities.
π΄ When Rogue Insiders Go to the Dark Web π΄
π Read
via "Dark Reading: ".
Employees gone bad sell stolen company information, sometimes openly touting their companies, researchers say.π Read
via "Dark Reading: ".
Dark Reading
When Rogue Insiders Go to the Dark Web
Employees gone bad sell stolen company information, sometimes openly touting their companies, researchers say.
π΄ TrickBot Expands in Japan Ahead of the Holidays π΄
π Read
via "Dark Reading: ".
Data indicates TrickBot operators are modifying its modules and launching widespread campaigns around the world.π Read
via "Dark Reading: ".
Darkreading
TrickBot Expands in Japan Ahead of the Holidays
Data indicates TrickBot operators are modifying its modules and launching widespread campaigns around the world.
β ThreatList: A Third of Biometric Systems Targeted by Malware in Q3 β
π Read
via "Threatpost".
A successful attack could wreak havoc, given the potential for biometric forgery, and a lack of options in the event oneβs biometric profile is stolen.π Read
via "Threatpost".
Threat Post
ThreatList: A Third of Biometric Systems Targeted by Malware in Q3
A successful attack could wreak havoc, given the potential for biometric forgery, and a lack of options in the event oneβs biometric profile is stolen.