News & Commentary
Content posted in April 2004
E-Trade Eases Funds Transfer
News  |  4/27/2004  | 
Online brokerage uses instant account verification software from Yodlee to make process simpler and in real time.
Metavante Acquires Kirchman Corporation
News  |  4/27/2004  | 
Software vendor extends outsourced offerings with new core banking product.
The Next Big Thing(s) in Mortgage Technology
News  |  4/27/2004  | 
Look for innovations in credit scoring and automated underwriting, business process management, enterprise document management and electronic closing systems.
Banks Checking Readiness for Check 21
News  |  4/20/2004  | 
A surprising number of issues are involved with preparing for Check 21.
Opportunities Exist for New Technologies in the Commercial Mortgage Space
News  |  4/20/2004  | 
Celent predicts rapid growth in the use of advanced integration and automation capabilities in commercial mortgage lending.
SWIFTNet Speeds Data Exchange
News  |  4/20/2004  | 
Upgraded IP messaging system lets banks share information faster, more securely, and less expensively.
Central Banks Eyeing E-Money
News  |  4/13/2004  | 
Card-based e-money projects have taken root in 34 countries, especially with schemes involving public transport, public telephones, parking meters and vending machines.
The New Economics of Information Security
News  |  4/13/2004  | 
As economists turn their attention to cybercrime prevention, information-security managers can benefit by borrowing a few tools of the trade.
The Paperless Chase
News  |  4/13/2004  | 
Banks are following through on their plans to take paper deposit statements and delivery of paper checks out of the system.
Electronic Payments Network to Launch OFAC Screening Service
News  |  4/6/2004  | 
EPN intends to offer OFAC screening capabilities to U.S.-based financial institutions.
IT Spending for Compliance: From SOX 404 to Comprehensive Compliance
News  |  4/6/2004  | 
Whereas 2003 was clearly a hype year for the compliance IT market, Financial Insights believes that 2004 and beyond will bring real spending on IT to automate and integrate new compliance processes.
The Place to Be
News  |  4/6/2004  | 
U.S. companies including MasterCard are using technology to overcome barriers to doing business in the world's hottest market.


Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Janice, I think I've got a message from the code father!
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.