vulnerability
Rapid7 updates vulnerability management solution
Rapid7 announced that the new capabilities of its vulnerability management solution, Nexpose, simplify the challenge of IT security risk management. Nexpose 5.5 introduces new …
Tumblr worm proliferated due to XSS flaw
Yesterday’s worm rampage that left many a Tumblr site “defaced” with a message by Internet troll group GNAA was the result of improper input sanitation. …
Hardcoded account in Samsung printers provides backdoor for attackers
US-CERT has issued an alert warning users of Samsung printers and some Dell printers manufactured by Samsung about the presence of a hardcoded account that could allow remote …
Researchers finds 23 vulnerabilities in SCADA software
The recent revelation that Malta-based start-up ReVuln is offering only to paying customers information about SCADA zero-day vulnerabilities has spurred security researcher …
eBay patches two critical security flaws on US website
Two critical vulnerabilities in eBay’s US website (ebay.com) have been closed by the company, preventing attackers from accessing and modifying one of its databases as …
Info about 0-day SCADA flaws offered for sale
Following in the footsteps of French Vupen Security, Malta-based start-up ReVuln has also decided to sell information about zero-day vulnerabilities to companies and …
Skype fixes account hijacking vulnerability
Skype has temporarily disabled its password reset function while it was investigating reports about a vulnerability that has been misused to hijack users’ accounts, but …
Facebook flaw allowed access to accounts without authentication
A commenter on the Hacker News website has discovered by accident a pretty big security flaw that could allow anyone who knew what to search for to access over a million …
Windows 8 exploit combining several 0-days already up for sale
Less that a week after Microsoft released is long awaited Windows 8, with new and improved security features, French bug hunters VUPEN Security have announced that they have …
Most organizations report an increase in external attacks
Organizations need to fundamentally shift their approach to information security in order to meet the threats presented by existing and emerging technologies according to …
Gang steals over $1M by exploiting Citigroup e-payment flaw
Fourteen individuals were charged following a FBI-led investigation into the theft of over $1 million from Citibank using cash advance kiosks at casinos located in Southern …
Microsoft’s worldwide threat assessment
In this podcast recorded at RSA Conference Europe 2012, Tim Rains, the Director of Product Management at Microsoft’s TWC group, talks about volume 13 of …
Featured news
Sponsored
Don't miss
- Void Banshee APT exploited “lingering Windows relic” in zero-day attacks
- SYS01 info-stealer pushed via Facebook ads, LinkedIn and YouTube posts
- ChatGPTriage: How can CISOs see and control employees’ AI use?
- Managing exam pressure: Tips for certification preparation
- Firmware update hides Bluetooth fingerprints