News & Commentary
Content posted in August 2003
JPMorgan Readies For Growth Business in Public Sector
News  |  8/26/2003  | 
The public sector is a "important, strategic" business for JP Morgan Treasury Services.
Which Electronic Signatures Will Count?
News  |  8/26/2003  | 
Two attorneys with e-commerce expertise describe the kind of e-signatures that might hold up in court.
And the Winner Is: Biller-Direct or Consolidator?
News  |  8/26/2003  | 
In electronic bill payment and presentment, the biller-direct model appears to have defeated the consolidator model. But it may be too early to declare a winner.
A Fine Night For Stargazing
News  |  8/18/2003  | 
Banks' business continuity plans, designed to last through Y2K and battle-tested on September 11th, came to the fore during the power grid failure.
One Wild Week
News  |  8/18/2003  | 
Business-technology executives had a rough go--and it may not be over yet
Credit-Card Processing: A Blackout Story
News  |  8/18/2003  | 
First Data's ability to process transactions continued apace during the blackout.
Aggregation Turns to Billers
News  |  8/12/2003  | 
Yodlee's new EBPP service will provide a standardized interface for connecting to the "biller-direct" Web sites of almost 2,500 service providers.
The Incredible Shrinking Legacy Workforces
News  |  8/12/2003  | 
Enterprise IT organizations are threatened by the collision of three ominous trends: the continued reliance on mainframe systems, an aging Baby Boomer population, and the limited skills base of younger IT workers.
How The Internet Can Help Serve Small Business Customers
News  |  8/12/2003  | 
Gomez's latest SOHO/Micro Banker Scorecard found that only 10 of 17 ranked banks offer prospective small business checking customers the ability to submit application data online.
Executive News
News  |  8/7/2003  | 
Spilling the Beans
News  |  8/7/2003  | 
There's more in common between banking and baseball than you might think.
Bank of America Keeps Merchants Informed With Visa Account Updater
News  |  8/4/2003  | 
Bank of America has rolled out a new Visa service that helps merchants stay appraised of changes involving customers who have established recurring bill payment services.
Merrill Gets Real About Managing Data
News  |  8/4/2003  | 
Merrill Lynch reins in real-time news from thousands of Web sites, with software that organizes, streamlines and customizes the news for 400 desktops in its equity-sales and trading groups.
How Secure Is Your SAN?
News  |  8/4/2003  | 
The topologies that make SANs cost effective and manageable also make them more vulnerable to security breakdowns. Here's what MasterCard has already done about it, and what other companies should consider.


Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Janice, I think I've got a message from the code father!
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.