Rapid7 released its National Exposure Index, which measures the top 30 ports and protocols on IPv4 and quantifies unsecured services running on the Internet.
Tag Archives: Web Security
Facebook Messenger Vulnerability Patched
Facebook has patched a vulnerability in its desktop and mobile Messenger apps that allows an attacker to modify chats and expose victims to malware and fraud.
Password Autocorrect Without Compromising Security
Academics have developed a framework for typo-tolerant passwords that significantly enhances usability without compromising security.
100M ‘Russian Facebook’ Credentials For Sale
Hackers infiltrated the European social network VK.com at some point over the last several years and made off with credentials for 100 million of its users.
NTP Patches Flaws That Enable DDoS
The network time protocol was updated to ntp-4.2.8p8, patching a handful of vulnerabilities that can be leveraged in DDoS attacks.
Threatpost News Wrap, June 13, 2016
Mike Mimoso and Chris Brook discuss the news of the week, including the back and forth around whether or not TeamViewer was hacked, the fallout around the years-old MySpace and Tumblr breaches, and a 90K Windows zero day.
WordPress Patches Zero Day in WP Mobile Detector Plugin
WordPress patched a zero day vulnerability in the WP Mobile Detector plugin that had been publicly attacked for close to a week.
Report: Federal Reserve Target of Constant Attacks
The U.S. Federal Reserve reported 50 breaches over the past five years including two that it is classifying as acts of cyber espionage, according to a Reuters Freedom of Information Request.
Google Patches Two High-Severity Flaws in Chrome
Chrome 51.0.2704.79 for Windows, Mac, and Linux was released Wednesday and patched 15 vulnerabilities, including two high-severity flaws eligible for bounties
Lenovo Tells Users to Uninstall Vulnerable Updater
An advisory from PC maker Lenovo recommends that users uninstall Lenovo Accelerator Application, which includes components rife with security vulnerabilities.