var _hmt = _hmt || []; (function() { var hm = document.createElement("script"); hm.src = "https://hm.baidu.com/hm.js?d387e539c1f2d34f09a9afbac8032280"; var s = document.getElementsByTagName("script")[0]; s.parentNode.insertBefore(hm, s); })();

Dark Reading is part of the Informa Tech Division of Informa PLC

7x彩票网appThis site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Careers & People

News & Commentary
ISACs Join Forces to Secure the Travel Industry
Dark Reading Staff, Quick Hits
Together, the Travel & Hospitality ISAC and the Retail & Hospitality ISAC intend to improve communications and collaboration about the evolving threat landscape.
By Dark Reading Staff , 1/15/2020
Comment0 comments  |  Read  |  Post a Comment
6 Traits to Develop for Cybersecurity Success
Curtis Franklin Jr., Senior Editor at Dark Reading
Cultivate these half-dozen qualities and watch your career soar.
By Curtis Franklin Jr. Senior Editor at Dark Reading, 12/20/2019
Comment0 comments  |  Read  |  Post a Comment
How a Password-Free World Could Have Prevented the Biggest Breaches of 2019
Ori Eisen, Founder & CEO at TrusonaCommentary
If history has taught us anything, it's that hackers can (and will) compromise passwords. Innovation in authentication technology is poised to change that in the coming year.
By Ori Eisen Founder & CEO at Trusona, 12/19/2019
Comment1 Comment  |  Read  |  Post a Comment
5 Security Resolutions to Prevent a Ransomware Attack in 2020
Shawn Taylor, Senior Systems Engineer at ForeScoutCommentary
Proactively consider tools to detect anomalous behavior, automatically remediate, and segment threats from moving across the network.
By Shawn Taylor Senior Systems Engineer at ForeScout, 12/18/2019
Comment5 comments  |  Read  |  Post a Comment
Your First Month as a CISO: Forming an Information Security Program
Lenny Zeltser, Chief Information Security Officer at AxoniusCommentary
It's easy to get overwhelmed in your new position, but these tips and resources will help you get started.
By Lenny Zeltser Chief Information Security Officer at Axonius, 12/18/2019
Comment0 comments  |  Read  |  Post a Comment
Higher Degree, Higher Salary? Not for Some Security Pros
Kelly Sheridan, Staff Editor, Dark ReadingNews
Turns out, skill beats experience and an academic degree doesn't guarantee higher compensation for five security positions.
By Kelly Sheridan Staff Editor, Dark Reading, 12/17/2019
Comment0 comments  |  Read  |  Post a Comment
Talking to the Board about Cybersecurity
Bill Ruckelshaus, CFO, ExtraHopCommentary
A chief financial officer shares five winning strategies for an effective board-level conversation about right-sizing risk.
By Bill Ruckelshaus CFO, ExtraHop, 12/17/2019
Comment0 comments  |  Read  |  Post a Comment
Don't Make Security 7x彩票网app a 'One-and-Done'
Dennis Dillman, VP of Security Awareness at Barracuda NetworksCommentary
How to move beyond one-off campaigns and build a true security awareness program.
By Dennis Dillman VP of Security Awareness at Barracuda Networks, 12/17/2019
Comment1 Comment  |  Read  |  Post a Comment
Lessons from the NSA: Know Your Assets
Robert Lemos, Contributing WriterNews
Chris Kubic worked at the National Security Agency for the past 32 years, finishing his tenure as CISO. He talks about lessons learned during his time there and what they mean for the private sector.
By Robert Lemos Contributing Writer, 12/12/2019
Comment1 Comment  |  Read  |  Post a Comment
5 Tips for Keeping Your Security Team on Target
Joshua 7x彩票网appfarb, Independent ConsultantCommentary
In nearly every security environment, competing priorities are a constant battleground. Here's how to keep the focus on what's important.
By Joshua 7x彩票网appfarb Independent Consultant, 12/11/2019
Comment0 comments  |  Read  |  Post a Comment
Success Enablers or Silent Killers?
Douglas Ferguson, Founder & CTO, Pharos SecurityCommentary
These five success enablers will help CISOs report, measure, and demonstrate ROI to the C-suite.
By Douglas Ferguson Founder & CTO, Pharos Security, 12/6/2019
Comment0 comments  |  Read  |  Post a Comment
Navigating Security in the Cloud
Diya Jolly, Chief Product Officer, OktaCommentary
Underestimating the security changes that need to accompany a shift to the cloud could be fatal to a business. Here's why.
By Diya Jolly Chief Product Officer, Okta, 12/4/2019
Comment2 comments  |  Read  |  Post a Comment
What Security Leaders Can Learn from Marketing
Christopher Kenessey, Chief Executive Officer at NetMotion SoftwareCommentary
Employees can no longer be pawns who must be protected all the time. They must become partners in the battle against threats.
By Christopher Kenessey Chief Executive Officer at NetMotion Software, 12/3/2019
Comment0 comments  |  Read  |  Post a Comment
Cybersecurity Team Holiday Guide: 2019 Gag Gift Edition
Ericka Chickowski, Contributing Writer
Make your favorite security experts laugh with these affordable holiday gifts.
By Ericka Chickowski Contributing Writer, 12/2/2019
Comment2 comments  |  Read  |  Post a Comment
5 Ways to Champion and Increase Your 2020 Security Budget
George Wrenn, Founder and CEO, CyberSaint SecurityCommentary
Give your organization's leadership an impactful, out-of-office experience so they know what's at stake with their budgeting decisions.
By George Wrenn Founder and CEO, CyberSaint Security, 11/26/2019
Comment0 comments  |  Read  |  Post a Comment
6 Top Nontechnical Degrees for Cybersecurity
Curtis Franklin Jr., Senior Editor at Dark Reading
A computer science degree isn't the only path into a cybersecurity career.
By Curtis Franklin Jr. Senior Editor at Dark Reading, 11/21/2019
Comment7 comments  |  Read  |  Post a Comment
The 'Department of No': Why CISOs Need to Cultivate a Middle Way
Malcolm Harkins, Chief Security & Trust OfficerCommentary
A chief information security officer's job inherently involves conflict, but a go-along-to-get-along approach carries its own vulnerabilities and risks.
By Malcolm Harkins Chief Security & Trust Officer, 11/21/2019
Comment0 comments  |  Read  |  Post a Comment
Employee Privacy in a Mobile Workplace
Michael J. Covington, Vice President of Product Strategy at WanderaCommentary
Why businesses need guidelines for managing their employees' personal information -- without compromising on security.
By Michael J. Covington Vice President of Product Strategy at Wandera, 11/20/2019
Comment0 comments  |  Read  |  Post a Comment
A Security Strategy That Centers on Humans, Not Bugs
Andrea Little Limbago, Chief Social Scientist, VirtruCommentary
The industry's fixation on complex exploits has come at the expense of making fundamentals easy and intuitive for end users.
By Andrea Little Limbago Chief Social Scientist, Virtru, 11/19/2019
Comment0 comments  |  Read  |  Post a Comment
13 Security Pros Share Their Most Valuable Experiences
Kelly Sheridan, Staff Editor, Dark Reading
From serving as an artillery Marine to working a help desk, infosec practitioners pinpoint experiences that had the greatest influence on their careers.
By Kelly Sheridan Staff Editor, Dark Reading, 11/18/2019
Comment0 comments  |  Read  |  Post a Comment
More Stories
Current Conversations
More Conversations
Major Brazilian Bank Tests Homomorphic Encryption on Financial Data
Kelly Sheridan, Staff Editor, Dark Reading,  1/10/2020
7 Free Tools for Better Visibility Into Your Network
Curtis Franklin Jr., Senior Editor at Dark Reading,  1/9/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The Year in Security: 2019
This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Flash Poll
Organizations have invested in a sweeping array of security technologies to address challenges associated with the growing number of cybersecurity attacks. However, the complexity involved in managing these technologies is emerging as a major problem. Read this report to find out what your peers biggest security challenges are and the technologies they are using to address them.
7x彩票网app Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

PUBLISHED: 2020-01-16
The LearnDash LMS plugin before 3.1.2 for WordPress allows XSS via the ld-profile search field.

PUBLISHED: 2020-01-16
The Ultimate FAQ plugin before 1.8.30 for WordPress allows XSS via Display_FAQ to Shortcodes/DisplayFAQs.php.

PUBLISHED: 2020-01-16
In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >= and <= to resolve off-by-one errors.

PUBLISHED: 2020-01-16
In Wireshark 3.0.x before 3.0.8, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by validating opcodes.

PUBLISHED: 2020-01-16
async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL pointer dereference because malloc return values are unchecked.
66?????? 7072???? 7073???? 689????? 963???? 66????? 7073???? 7073???? 66???app 8????app