It’s been a couple of months since we left our heroes on CSI: Cyber, and boy, have they been busy. They have apparently solved many crimes using cyber-sleuthing, acquired some decidedly non-cyber firearms skills, and, in the case of our man Krumitz, taken up running. We wanted to check in and see how our merry band […]
Tag Archives: Web Security
Default Credentials Lead to Massive DDoS-For-Hire Botnet
Tens of thousands of home and office-based routers have been hijacked over the last several months to stage a distributed denial of service attack campaign.
Firefox 38 Fixes 13 Flaws, Ships With DRM Support
Mozilla has fixed 13 security flaws in Firefox 38, including five critical vulnerabilities. The new version of the browser also includes a feature that enables the use of DRM-enabled video content in Firefox, a decision that comes with some controversy. DRM (digital rights management), the generic name for technologies that are used to restrict the […]
Adobe Unleashes Big Updates for Flash, Reader, Acrobat
Adobe released security updates for Flash, Reader and Acrobat, patching 52 vulnerabilities.
Microsoft Edge Browser Seen as a Big Security Upgrade
For many years now, the browser has been the most dangerous piece of software on most users’ machines. Attackers love to target browsers and a remote code execution bug in a major browser is gold for them. The browser vendors have been making gradual changes to better protect users in recent years, and now Microsoft […]
Ed Felten Joins White House as Deputy CTO
Ed Felten, a professor at Princeton University and a well-respected voice on security and privacy issues, is joining the White House as the deputy CTO. In his new role, Felten will be working under Megan Smith, the CTO of the United States and a former Google vice president. Felten has been at Princeton in various […]
Court’s Ruling a ‘Clear Signal’ About Mass Surveillance Programs, Experts Say
The ruling last week by the Second Circuit Court of Appeals that the NSA’s years-long bulk collection of phone metadata is illegal is a “clear signal” that courts are moving in the direction of striking down some mass surveillance programs, experts say. The decision, issued Thursday, is among the first major rulings to go against […]
WordPress Sites Backdoored, Leaking Credentials
Zscaler has discovered a number of WordPress sites that have been backdoored and sending credentials to a hacker-controlled website.
Rockwell Automation Patches Buffer Overflow in ICS App
There is a stack buffer overflow in a Rockwell Automation application that’s used to enable communications in industrial control applications used in manufacturing, energy, water,and other environments. The vulnerability is in the RSLinx Classic product and it can be used to crash the application or run arbitrary code. However, the bug is not exploitable remotely […]
Security Updates Coming for Adobe Reader, Acrobat
Adobe released pre-notification of security updates coming next week for its Reader and Acrobat products. The updates will address critical vulnerabilities in both products, Adobe said.