Please turn on your JavaScript for this page to function normally.
Severe OpenSSL bug that allows certificate forgery has been plugged

The wait is over: the OpenSSL Project has issued security updates for the popular open-source implementation of the SSL and TLS protocols, and has shared some details about …

Security updates for OS X, iOS fix bucketload of serious bugs

Apple has released security updates for Safari, OS X Yosemite (and previous OS X versions), and iOS.The OS X update contains fixes for 77 vulnerabilities, many of which can be …

Major Xen update fixes over 20 vulns, including guest/host escape flaw

The newest version (v4.5.1) of popular hypervisor Xen has been released last week, and includes a bucketload of improvements and bug-fixes, including nearly 20 security …

Cisco finds, removes more default SSH keys on its software

Cisco has pushed out security updates to address two vulnerabilities in its Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Content …

Samsung disables Windows Update, undermines the security of your devices

Another example of how vendors sometimes choose to improve usability to the detriment of user security has been recently discovered by security researcher and Microsoft MVP …

Flash Player 0-day exploited in the wild, patch immediately!

Adobe has released an emergency patch for its notoriously buggy Flash Player software because attackers are actively exploiting a critical vulnerability that can lead to total …

HP releases exploit code for IE zero-day that Microsoft won’t patch

Despite having paid $125,000 for information about an Address Space Layout Randomisation (ASLR) vulnerability affecting Internet Explorer, Microsoft has decided against …

Critical RubyGems vulns can lead to installation of malicious apps

A serious vulnerability in RubyGems, a package manager for the Ruby programming language, can be exploited to trick end users into installing malware from attacker-controlled …

New Drupal versions fix admin account hijack flaw

New versions of popular open source content management system Drupal are out, and fix a series of vulnerabilities, including a critical one that can result in an attacker …

New OpenSSL versions squash LogJam bug

The OpenSSL Project has pushed another update for the eponymous open-source cryptographic library. This one plugs several moderate bugs, one low one, and LogJam …

Serious MitM flaw plugged in latest watchOS version

If you’ve recently bought an Apple Watch, or if you have had one for a while now, but you haven’t updated to the latest watchOS version, now is the time to do it …

Microsoft releases critical patches, improves IE security

This June Patch Tuesday we have a slightly smaller patch load from Microsoft, taking us back to more historic average releases of eight bulletins. We have just two critical …

Don't miss

Cybersecurity news