Red Hat Security Advisory 2016-2064-01 – Red Hat OpenShift Container Platform is the company’s cloud computing Platform-as-a-Service solution designed for on-premise or private cloud deployments. Security Fix: It was found that Kubernetes did not correctly validate X.509 client intermediate certificate host name fields. An attacker could use this flaw to bypass authentication requirements by using a specially crafted X.509 certificate.
Monthly Archives: October 2016
Red Hat Security Advisory 2016-2070-01
Red Hat Security Advisory 2016-2070-01 – Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for Red Hat JBoss Enterprise Application Platform 6.4.10. It includes bug fixes and enhancements. All users of Red Hat JBoss Enterprise Application Platform 6.4 on Red Hat Enterprise Linux 5 are advised to upgrade to these updated packages. The JBoss server process must be restarted for the update to take effect. Multiple security issues have been addressed.
Donald Trump Is Running Some Really Insecure Email Servers
Julian Assange Has Had His Internet Access Cut
Trump's Twitter Debate Lead Was 'Swelled By Bots'
Watch Dogs 2 – How Real Are The Hacks?
Consumers still failing to protect themselves against cybercrime
Consumers are failing to appropriately protect themselves against the threat of cybercrime, according to a new survey from Get Safe Online.
The post Consumers still failing to protect themselves against cybercrime appeared first on WeLiveSecurity.
VeraCrypt Audit Reveals Critical Security Flaws — Update Now
After TrueCrypt mysteriously discontinued its service, VeraCrypt became the most popular open source disk encryption software used by activists, journalists, as well as privacy conscious people.
First of all, there is no such thing as a perfect, bug-free software.
Even the most rigorously tested software, like the ones that operate SCADA Systems, medical devices, and aviation software, have
Pluck CMS 4.7.3 Add-Page Cross Site Request Forgery
Pluck CMS version 4.7.3 suffers from an add-page cross site request forgery vulnerability.
Kaspersky Lab Announces New Industrial Control Systems Emergency Response Team
Fulfilling its mission to share cybersecurity knowledge, Kaspersky Lab launched today the Industrial Control Systems Computer Emergency Response Team (also known as Kaspersky Lab ICS-CERT) – a global CERT entity that welcomes collaboration with critical infrastructure operators, vendors and government institutions.