The United States is losing on the cyber-battlefield and face a bleak threat landscape, according to DHS chairman Michael McCaul. But, he says, there is still hope to turn things around.
Tag Archives: Web Security
Adobe Patches 13 Code Execution Vulnerabilities in Flash
Adobe patched 13 code execution vulnerabilities in Flash Player today as part of its regular patch update cycle.
Updated Firmware Due for Serious TP-Link Router Vulnerabilities
A researcher disclosed vulnerabilities in TP-Link C2 and C20i routers that allow for remote code execution and denial-of-service attacks with authentication.
Open Databases a Juicy Extortion Target
A sudden wave of attacks against insecure databases resulting in ransom demands points to wave of data hijacking attacks.
1.5M Unpatched WordPress Sites Hacked Following Vulnerability Disclosure
WordPress security experts said that 1.5M sites have been defaced following the disclosure of a silently fixed content injection vulnerability.
Uber Debuts SSH Key Authentication Module
Developers at Uber have unveiled a new module to help users enable the continuous re-authentication of SSH keys.
Attackers Capitalizing on Unpatched WordPress Sites
WordPress sites slow to update to the recent 4.7.2 security release run the risk of falling victim to a handful of defacement attacks spotted by Sucuri.
InterContinental Hotels Confirms Credit Card Breach
InterContinental Hotels Group confirmed and released addition details pertaining to a breach that targeted payment card systems used in 12 of its hotels.
Threatpost News Wrap, February 3, 2017
Mike Mimoso and Chris Brook recap the news of the week, including a Microsoft SMB zero day, the latest Netgear router vulnerability, and a new HTTPS milestone.
Microsoft Waits for Patch Tuesday to Fix SMB Zero Day
Microsoft said a Windows SMB zero day, which has a public proof-of-concept exploit available, is low risk and won’t be patched until an upcoming Patch Tuesday.