7x彩票网appDark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Application Security //

Database Security

News & Commentary
3 Data Breaches Disclosed This Week: J.Crew, T-Mobile, and Carnival
Dark Reading Staff, Quick Hits
The separate incidents show how data theft knows no market-based limits.
By Dark Reading Staff , 3/5/2020
Comment2 comments  |  Read  |  Post a Comment
Cathay Pacific Hit with Fine for Long-Lasting Breach
Dark Reading Staff, Quick Hits
The breach, which was active for four years, resulted in the theft of personal information on more than 9 million people.
By Dark Reading Staff , 3/4/2020
Comment0 comments  |  Read  |  Post a Comment
Walgreens' Mobile App Exposes Customers' Info
Dark Reading Staff, Quick Hits
An error in the app allowed some secure chat users to see medical information that wasn't theirs.
By Dark Reading Staff , 3/2/2020
Comment0 comments  |  Read  |  Post a Comment
How to Prevent an AWS Cloud Bucket Data Leak
Curtis Franklin Jr., Senior Editor at Dark Reading
Misconfigured AWS buckets have led to huge data breaches. Following a handful of practices will help keep you from becoming the next news story.
By Curtis Franklin Jr. Senior Editor at Dark Reading, 2/26/2020
Comment1 Comment  |  Read  |  Post a Comment
Israel's Entire Voter Registry Exposed in Massive Incident
Dark Reading Staff, Quick Hits
Personal details of nearly 6.5 million Israelis were out in the open after the entire registry was uploaded to an notably insecure app.
By Dark Reading Staff , 2/10/2020
Comment0 comments  |  Read  |  Post a Comment
Google Takeout Serves Up Video Files to Strangers
Dark Reading Staff, Quick Hits
A limited number of user videos were shared with others in a five-day incident from November.
By Dark Reading Staff , 2/7/2020
Comment0 comments  |  Read  |  Post a Comment
Ashley Madison Breach Returns with Extortion Campaign
Dark Reading Staff, Quick Hits
The recent attack messages use new techniques to extort Bitcoin payments from Ashley Madison users hit in massive 2015 data breach.
By Dark Reading Staff , 1/31/2020
Comment3 comments  |  Read  |  Post a Comment
Configuration Error Reveals 250 Million Microsoft Support Records
Dark Reading Staff, Quick Hits
Some the records, found on five identically configured servers, might have contained data in clear text.
By Dark Reading Staff , 1/22/2020
Comment1 Comment  |  Read  |  Post a Comment
FBI Seizes Domain That Sold Info Stolen in Data Breaches
Dark Reading Staff, Quick Hits
The website, WeLeakData.com, claimed to have more than 12 billion records gathered from over 10,000 breaches.
By Dark Reading Staff , 1/17/2020
Comment0 comments  |  Read  |  Post a Comment
CCPA Kickoff: What Businesses Need to Know
Kelly Sheridan, Staff Editor, Dark ReadingNews
The California Consumer Privacy Act is in full effect, prompting organizations to think about how they'll remain compliant.
By Kelly Sheridan Staff Editor, Dark Reading, 1/2/2020
Comment0 comments  |  Read  |  Post a Comment
'Honoring' CCPA's Binding Principles Nationally Won't Be Easy
Dr. Salvatore Stolfo, Founder & CTO, Allure SecurityCommentary
Even companies with the reach, capital, and innovative capacity of Microsoft or Google will struggle to adhere to the tenets of California's new consumer privacy law.
By Dr. Salvatore Stolfo Founder & CTO, Allure Security, 12/26/2019
Comment1 Comment  |  Read  |  Post a Comment
Ambiguity Around CCPA Will Lead to a Slow Start in 2020
Anurag Kahol, CTO, BitglassCommentary
But longer term, compliance to California's new privacy law represents an opportunity for companies to increase customer trust and market share.
By Anurag Kahol CTO, Bitglass, 12/20/2019
Comment0 comments  |  Read  |  Post a Comment
15 Million Patient Records Exposed Attack on Canadian Lab
Dark Reading Staff, Quick Hits
A cyberattack against LifeLabs exposed personal information on patients in Ontario and British Columbia.
By Dark Reading Staff , 12/17/2019
Comment0 comments  |  Read  |  Post a Comment
Data Security Startup Satori Cyber Launches with $5.25M Seed Round
Kelly Sheridan, Staff Editor, Dark ReadingNews
Satori Cyber aims to help businesses better protect and govern their information with its Secure Data Access Cloud.
By Kelly Sheridan Staff Editor, Dark Reading, 12/17/2019
Comment0 comments  |  Read  |  Post a Comment
SQL Server 2019 Tool Tells Attackers Which Data Is Sensitive
Kelly Sheridan, Staff Editor, Dark ReadingNews
The design of SQL Data Discovery & Classification could let attackers pinpoint sensitive information while flying under organizations' radars.
By Kelly Sheridan Staff Editor, Dark Reading, 12/16/2019
Comment0 comments  |  Read  |  Post a Comment
The Implications of Last Week's Exposure of 1.2B Records
Kelly Sheridan, Staff Editor, Dark ReadingNews
Large sums of organized data, whether public or private, are worth their weight in gold to cybercriminals.
By Kelly Sheridan Staff Editor, Dark Reading, 11/26/2019
Comment0 comments  |  Read  |  Post a Comment
1.2B Records Exposed in Massive Server Leak
Dark Reading Staff, Quick Hits
A single server leaked 4 terabytes of personal data, including social media profiles, work histories, and home and mobile phone numbers.
By Dark Reading Staff , 11/22/2019
Comment0 comments  |  Read  |  Post a Comment
Disney+ Credentials Land in Dark Web Hours After Service Launch
Dark Reading Staff, Quick Hits
The credentials, priced from free to $11 per account, appear to be due to victims' re-use of logins and passwords.
By Dark Reading Staff , 11/18/2019
Comment1 Comment  |  Read  |  Post a Comment
Joker's Stash Puts $130M Price Tag on Credit Card Database
Dark Reading Staff, Quick Hits
A new analysis advises security teams on what they should know about the underground payment card seller.
By Dark Reading Staff , 11/11/2019
Comment0 comments  |  Read  |  Post a Comment
California DMV Leak Spills Data from Thousands of Drivers
Dark Reading Staff, Quick Hits
Federal agencies reportedly had improper access to Social Security data belonging to 3,200 license holders.
By Dark Reading Staff , 11/6/2019
Comment0 comments  |  Read  |  Post a Comment
More Stories
Current Conversations
Posted by dmflows
Current Conversations
In reply to: Curtains Dubai
Post Your Own Reply
More Conversations
Many Ransomware Attacks Can be Stopped Before They Begin
Jai Vijayan, Contributing Writer,  3/17/2020
This Tax Season, Save the Scorn and Protect Customers from Phishing Scams
Dr. Salvatore Stolfo, Founder & CTO, Allure Security,  3/17/2020
Remote Workforce Jumps 15% In Two Weeks
Dark Reading Staff 3/17/2020
Register for Dark Reading Newsletters
White Papers
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.
7x彩票网app Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

PUBLISHED: 2020-03-18
A vulnerability was found in Moodle through version 3.6 before 3.6.7 and 3.7 before 3.7.3, where tokens used to fetch inline atachments in email notifications were not disabled when a user's account was no longer active. Note: to access files, a user would need to know the file path, and their token...

PUBLISHED: 2020-03-18
A vulnerability was found in Moodle through versions 3.7 before 3.73, 3.6 before 3.6.7 and 3.5 before 3.5.9, where a reflected XSS possible from some fatal error messages.

PUBLISHED: 2020-03-18
Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. Multiple stack-based buffer overflows can be exploited when a valid user opens a specially crafted, malicious input file.

PUBLISHED: 2020-03-18
Zulip Desktop before 4.0.3 loaded untrusted content in an Electron webview with web security disabled, which can be exploited for XSS in a number of ways. This especially affects Zulip Desktop 2.3.82.

PUBLISHED: 2020-03-18
A vulnerability was found in moodle through 3.7 to 3.7.2 and before 3.7.3, where there is blind XSS reflected in some locations where user email is displayed.
66?????? 7072???? 7073???? 689????? 963???? 66????? 7073???? 7073???? 66???app 8????app