AT&T is warning consumers about a data breach involving an insider who illegally accessed the personal information of an unspecified number of users.
Tag Archives: Web Security
Shellshock-like Weakness May Affect Windows
A weakness in Windows, similar to Shellshock, may put Windows Server deployments at risk to remote code execution.
Threatpost News Wrap, October 3, 2014
Dennis Fisher and Mike Mimoso talk about the Bash Shellshock bug nightmare and the BadUSB code release.
Google Changes SafeSearch Option for Administrators
Google is removing a feature that allowed administrator to require their users to employ a search option that removes explicit content from search results. The decision is tied to the fact that the option required the use of an unsecured connection to Google, something that the company said allowed it to become a target for […]
Researcher Takes Wraps off Two Undisclosed Shellshock Vulnerabilities in Bash
Researcher Michal Zalewski published details on two recently discovered Shellshock vulnerabilities in Bash.
Serious Hypervisor Bug Fix Causes Unexpected Cloud Downtime
A number of cloud service providers like Amazon Web Services and Rackspace had to shut some systems down over the weekend to address a critical Xen security vulnerability.
Second Same-Origin Policy Bypass Flaw Haunts Android Browser
There is another same-origin policy bypass vulnerability in the Android browser in versions prior to 4.4 that allows an attacker to steal data from a user’s browser.
Joomla Re-Issues Security Update After Patches Glitch
A security update for the Joomla content management system was pulled and re-issued after problems with the first set of patches for a remote file inclusion and denial of service vulnerability were discovered.
VMware Begins to Patch Bash Issues Across Product Line
VMware issued a progress report on fixes for four different types of products as they relate to the Bash vulnerability.
Xsser Trojan Spies on Jailbroken iOS Devices
An iOS espionage Trojan has been discovered spying on jailbroken Apple devices, primarily used against pro-democracy protestors in Hong Kong.