A report on the U.S. Office of Personnel Management breaches that exposed sensitive data belonging to more than 22 million people has sparked a cavalcade of finger pointing, politicking and squabbling over who knew what first.
Tag Archives: Vulnerabilities
WordPress Update Resolves XSS, Path Traversal Vulnerabilities
Developers with WordPress are strongly encouraging users of the content management system to update to the most recent version, 4.6.1, released on Wednesday.
Google Shares Android Nougat, Safe Browsing Security Enhancements
Google stepped up efforts this week to bolster its security strategy with news from both its Android Security Team and its Safe Browsing Team.
Critical Flaws Found in Network Management Systems
Four leading network management system providers patched nearly a dozen critical cross-site scripting vulnerabilities disclosed Wednesday by Rapid7.
Yelp Launches Public Bug Bounty
Yelp today announced a public bug bounty, which will pay up to $15,000 for critical vulnerabilities found on its mobile and desktop sites, public API and other areas of its infrastructure.
Apple Patches Trident Vulnerabilities in OS X, Safari
Apple has patched the Trident vulnerabilities in OS X and Safari. The flaws were originally disclosed in iOS and used to spy on a UAE human rights activist.
Threatpost News Wrap, September 2, 2016
Mike Mimoso, Tom Spring, and Chris Brook discuss the news of the week, including the MedSec/Muddy Waters story, how the Angler EK was traced back to the Lurk Gang, Fairware hitting Linux servers, and the Bashlite IoT malware.
Malvertising Campaign Pushing Neutrino Exploit Kit Shut Down
Researchers uncovered a global malvertising campaign exposing potentially millions of users to the risk of being hit with CrypMIC ransomware delivered via the Neutrino Exploit Kit.
Insecure Redis Instances at Core of Attacks Against Linux Servers
Attackers are targeting insecure Redis instances, exposed to the internet, to access Linux servers and delete web files and folders in exchange for ransom.
Chrome 53 Fixes Address Spoofing Vulnerability, 32 Other Bugs
Google patched 33 bugs in total in Chrome 53, almost half of which are branded high severity by the company.